Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9YlIjvCGWBFokS4SehoNSbYDt7Q.roa
File: 9YlIjvCGWBFokS4SehoNSbYDt7Q.roa (raw, json)
Hash identifier: nuLqGqGtnKrZBel2RjUmdkg1Y+5uoZOuffaRbHc9hu8=
Subject key identifier: F5:89:48:8E:F0:86:58:11:68:91:2E:12:7A:1A:0D:49:B6:03:B7:B4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 090F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9YlIjvCGWBFokS4SehoNSbYDt7Q.roa
Signing time: Tue 29 Sep 2020 09:52:45 +0000
ROA not before: Tue 29 Sep 2020 09:52:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2319 (0x90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F589488EF086581168912E127A1A0D49B603B7B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:be:22:b3:c2:9f:b2:6d:5a:83:71:89:aa:33:
fc:e6:2d:01:d7:ca:72:a5:37:fd:8b:9b:6f:ff:83:
f0:fe:ed:a1:2b:69:c7:9a:21:02:50:85:73:9e:3f:
08:6c:50:73:9a:ba:6d:13:b2:93:ae:7b:55:26:6c:
ef:88:9a:36:98:fb:ea:b6:1e:a3:57:8a:ca:b2:a4:
fb:43:0f:c5:c1:dd:86:4f:c8:a5:02:b6:c5:ae:45:
24:1b:08:04:3f:76:45:11:6b:7d:ce:73:f7:30:8a:
b3:da:b6:11:5b:66:05:55:da:f9:dc:cf:9b:bb:d6:
83:10:a4:9b:47:fc:38:e5:32:a5:c8:04:96:07:89:
55:bc:be:07:6d:b9:ad:f7:e4:9a:63:2f:15:0b:ce:
db:64:7f:7b:b3:3b:a9:42:87:dd:25:ef:a6:1f:4d:
b4:5d:03:ff:1d:2c:e3:0e:71:3f:d1:bb:fa:90:e8:
22:34:f2:39:85:e3:4b:0a:f9:7c:31:af:bc:7f:ca:
b4:b1:9b:5d:2f:23:a7:c4:34:46:8e:46:a9:54:89:
d9:a5:cf:9d:6d:8c:46:80:5f:ec:ef:c3:27:41:37:
86:17:cb:1b:bb:15:d5:0f:30:47:90:11:8d:80:df:
c6:c6:92:ea:1e:05:e4:eb:9c:f3:23:77:22:3b:5b:
09:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:89:48:8E:F0:86:58:11:68:91:2E:12:7A:1A:0D:49:B6:03:B7:B4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9YlIjvCGWBFokS4SehoNSbYDt7Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/19
Signature Algorithm: sha256WithRSAEncryption
2e:78:9f:16:67:8e:52:0c:8c:1e:28:c8:70:1f:41:49:1c:c7:
9e:6e:a9:15:33:08:aa:52:42:6e:1b:9a:57:0d:21:ef:9f:44:
a7:56:4e:5e:7a:6e:87:40:47:bb:11:69:bb:39:e3:0b:74:8d:
08:44:f1:0a:6c:58:a8:72:cb:bd:77:94:15:a9:b6:1c:d7:da:
2f:36:e4:21:d0:fb:a6:cd:4d:16:05:9c:35:c9:c6:b6:87:11:
96:0a:9f:2e:1b:56:a5:e3:61:28:9b:1b:97:c3:b9:47:70:20:
99:d3:94:ab:6d:35:5f:10:be:d5:16:d2:67:6d:22:0c:e2:be:
34:33:16:a5:c3:ba:91:b0:95:ba:d9:bc:11:d0:76:a1:7d:fb:
4e:9e:e3:09:14:ab:57:5e:13:52:7e:e4:42:a1:81:ca:e0:46:
9b:31:6a:b6:7f:d7:29:1a:d9:7e:b7:77:5a:31:64:98:d9:f2:
24:ab:a5:e0:bc:df:79:d9:fc:fe:e9:34:d4:b6:05:a4:01:9a:
3b:1b:8a:73:98:9d:6c:9a:56:4d:1a:d7:7a:0f:46:40:f4:0a:
18:bb:41:06:a7:a7:64:85:45:7f:80:f5:27:11:b7:51:6d:1c:
e5:c2:62:2b:7c:8d:cb:78:33:dd:84:4d:1a:d0:59:08:6e:25:
99:21:6c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org