Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/98Qf3fplTbRGOwrmchDfemHfOHE.roa
File: 98Qf3fplTbRGOwrmchDfemHfOHE.roa (raw, json)
Hash identifier: rqx6qBV7R770biU2M7+b33QkbC7g2agZfsgz9P1kU4I=
Subject key identifier: F7:C4:1F:DD:FA:65:4D:B4:46:3B:0A:E6:72:10:DF:7A:61:DF:38:71
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C7D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/98Qf3fplTbRGOwrmchDfemHfOHE.roa
Signing time: Sun 07 Feb 2021 11:43:37 +0000
ROA not before: Sun 07 Feb 2021 11:43:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 106.105.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3197 (0xc7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F7C41FDDFA654DB4463B0AE67210DF7A61DF3871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:08:c2:74:0d:17:57:07:8a:b9:6c:61:79:38:
cc:90:4f:13:7d:0e:cc:ae:0d:fe:ea:5e:88:ed:6e:
9a:c4:50:b6:21:40:a7:87:86:75:36:76:7a:08:91:
65:e6:fb:3d:cb:90:84:82:a5:c2:45:b6:96:80:30:
53:b9:fd:de:20:2f:d9:fe:d1:6c:38:3a:4c:7d:5d:
57:ec:4d:8d:10:f0:5d:e6:23:10:ab:e9:c9:ba:f1:
03:f0:9b:fc:cc:99:d7:a0:96:f4:0e:da:45:af:2b:
83:7d:c7:5c:90:a7:98:7b:4c:44:8a:79:51:24:74:
06:c2:04:3f:47:75:ee:51:9d:dd:dd:05:86:c5:b9:
7c:43:43:63:db:b4:c7:52:0f:3c:ea:af:38:65:77:
20:fa:40:86:f1:3a:d5:25:6c:dd:c7:06:a1:e2:40:
59:97:95:1e:cd:67:a0:22:2d:b3:83:42:41:ea:26:
25:19:74:f0:8a:61:d6:18:19:5f:a0:04:29:31:5d:
07:4d:84:ee:23:6b:1f:69:96:5b:17:ab:20:79:51:
0e:39:8b:04:66:06:80:87:b3:fb:d7:a4:1b:69:7a:
6f:1b:fc:b4:71:82:33:6a:c0:6b:74:59:d9:f5:f0:
6f:88:e5:db:05:bf:05:fb:c0:5b:fd:a0:b8:89:de:
2d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C4:1F:DD:FA:65:4D:B4:46:3B:0A:E6:72:10:DF:7A:61:DF:38:71
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/98Qf3fplTbRGOwrmchDfemHfOHE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.181.0/24
Signature Algorithm: sha256WithRSAEncryption
71:66:1b:db:33:84:6e:d8:ed:1f:af:c7:13:b2:53:8b:2b:69:
18:06:b4:e9:3e:3a:2a:9d:fa:c8:5f:bf:16:c4:53:37:30:c4:
c8:90:70:79:b0:9d:9e:90:c6:a8:5e:fb:e9:73:6a:ac:91:30:
c5:db:00:2c:92:bc:1e:32:c4:84:eb:b8:0e:eb:23:47:2d:ec:
5e:71:aa:48:12:4a:56:c9:23:1f:f7:84:d6:34:ef:97:42:81:
a6:db:b8:a8:96:56:ee:c4:43:ec:86:1c:5c:d3:17:67:10:f5:
1e:9b:ec:63:c7:4b:ee:d9:57:4a:85:a0:a3:a4:d2:13:e5:e0:
15:33:0a:92:03:f4:1b:08:43:73:87:bb:57:7f:fd:a6:53:33:
c6:3d:07:9c:05:b3:fc:89:35:31:43:7b:f2:66:03:10:5a:22:
ac:f6:9e:1d:41:a6:e9:da:ca:8d:0e:17:52:10:d1:87:02:04:
7e:70:23:d6:a2:1b:f2:51:09:dc:52:c6:a5:4b:a9:2f:77:c4:
b4:f8:50:18:c4:a1:0e:e2:34:a5:fd:99:4a:a5:57:0a:d9:65:
8f:08:34:ee:e0:c2:0f:a2:c1:a2:ab:7b:6a:e7:a0:3e:ab:15:
b0:a2:b9:6c:6c:28:9d:2d:00:9a:8f:98:20:4f:59:0b:a8:6f:
f3:1c:f0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org