Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8D56vSBxKerK3E89HNjiHmluO3c.roa
File: 8D56vSBxKerK3E89HNjiHmluO3c.roa (raw, json)
Hash identifier: v6m89Vt0DTl0el47NkBoGrYjYFfS05uPfb9AnENz0gI=
Subject key identifier: F0:3E:7A:BD:20:71:29:EA:CA:DC:4F:3D:1C:D8:E2:1E:69:6E:3B:77
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E35
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8D56vSBxKerK3E89HNjiHmluO3c.roa
Signing time: Wed 29 Sep 2021 02:43:18 +0000
ROA not before: Wed 29 Sep 2021 02:43:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 106.105.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3637 (0xe35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F03E7ABD207129EACADC4F3D1CD8E21E696E3B77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fa:5d:a4:2a:64:63:de:d5:49:1b:ce:a4:61:
a3:d0:dd:67:11:1f:ab:aa:67:5c:f9:f8:ff:b2:1a:
92:f9:47:91:72:b4:cc:8c:28:6e:c8:92:8a:51:b3:
55:3a:1b:3e:28:42:37:1b:d3:27:fa:5b:20:ad:c9:
81:02:a9:39:87:24:f4:2f:76:ab:52:2d:69:6c:a6:
0c:a4:68:7a:78:1b:71:46:a6:0a:5b:4d:99:74:c1:
e9:bb:40:35:cf:32:b1:e6:1d:47:07:09:2c:b7:ab:
80:16:bf:5c:22:0e:ee:78:7a:aa:55:f3:30:92:54:
3f:84:70:5e:8a:d3:b1:26:f0:11:d4:e6:6a:82:0e:
69:2a:89:78:b0:7c:8c:eb:3e:58:4a:2e:71:af:27:
08:ad:80:d9:2e:ef:77:43:ff:6d:7e:cd:de:b2:3e:
ca:2a:a5:cd:37:2d:a6:93:cf:44:ec:40:08:58:39:
51:22:e2:dd:71:52:62:a3:86:9f:04:51:92:a6:52:
c4:4c:22:8f:f8:0b:3b:7d:b1:dc:a1:bf:89:28:6e:
12:97:44:67:2e:7b:84:80:a7:5b:70:ef:4c:3c:e3:
0c:14:ea:4b:9c:65:ba:1b:66:d9:e4:49:53:4a:2e:
57:f9:3c:ba:71:f2:5c:7c:9f:bf:83:04:34:d4:24:
1e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:3E:7A:BD:20:71:29:EA:CA:DC:4F:3D:1C:D8:E2:1E:69:6E:3B:77
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8D56vSBxKerK3E89HNjiHmluO3c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.96.0/21
Signature Algorithm: sha256WithRSAEncryption
15:9c:75:09:2a:e3:9b:fc:1b:13:0e:a8:3f:11:c5:5f:4a:45:
fc:92:b0:e9:71:43:27:9f:86:e2:04:3c:ce:64:91:65:4c:a9:
7d:f6:41:4a:0b:39:cb:3f:c3:81:40:78:f3:94:13:17:2a:bc:
45:1e:34:7b:ef:09:20:27:87:63:45:80:21:c6:ba:e5:bd:1a:
56:55:29:f8:11:e5:56:79:90:4e:97:1b:4c:f4:1d:54:6e:e7:
14:41:e3:96:2c:d3:62:2c:7e:74:9a:c5:0d:41:68:85:27:37:
7c:5f:37:a1:ea:99:96:b2:ab:96:ee:ea:a1:24:78:f2:f3:8f:
c7:28:c7:fb:ad:b3:54:c2:4d:4e:16:4a:44:84:1a:1e:da:15:
81:78:47:10:66:21:30:10:a6:86:7b:4f:ed:77:6e:35:ac:4f:
5a:ba:e4:3b:ba:8f:76:d0:6d:28:34:7b:de:ac:c6:e8:17:d5:
fd:99:9e:8a:9a:1b:98:ed:f3:12:9a:77:17:d1:f0:b2:f7:1c:
74:21:69:e9:29:1f:2b:8e:19:ab:36:f3:84:78:fe:d7:a2:9f:
be:63:b7:6d:23:a5:3e:e2:74:7d:be:d9:de:e7:68:90:6a:62:
f5:f6:a6:cc:22:d1:b6:13:d0:b5:03:60:ea:e6:a3:3d:33:ab:
fc:5a:cb:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org