Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BXMlsDAr3RpqGDBTP4r_Kb3j7OM.roa
File: BXMlsDAr3RpqGDBTP4r_Kb3j7OM.roa (raw, json)
Hash identifier: uoY0QFqXeHQgGHkAfn+VnrIC/SDynQacerY7mUQ7QGE=
Subject key identifier: 05:73:25:B0:30:2B:DD:1A:6A:18:30:53:3F:8A:FF:29:BD:E3:EC:E3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0A01
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BXMlsDAr3RpqGDBTP4r_Kb3j7OM.roa
Signing time: Fri 13 Nov 2020 02:27:47 +0000
ROA not before: Fri 13 Nov 2020 02:27:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 112.105.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2561 (0xa01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Nov 13 02:27:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=057325B0302BDD1A6A1830533F8AFF29BDE3ECE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:69:56:b7:b1:4b:7a:8f:6f:f5:3b:7c:c9:e7:
14:97:17:1e:5a:c9:4a:01:b0:2a:80:e6:64:e7:81:
1c:4e:31:68:e4:d3:dd:13:2c:10:fe:fd:27:8f:48:
2c:7f:e7:76:86:e5:e9:d4:06:f3:fe:ae:a1:d7:bb:
00:78:07:2e:b9:01:f4:65:10:00:ad:a1:02:f0:0e:
f8:e5:8c:db:aa:a7:53:cc:b1:24:a5:aa:63:90:91:
d6:0e:e8:f7:a3:24:05:52:d8:7b:1a:20:a7:fe:d3:
44:41:c0:b5:2a:da:4e:64:79:dd:8f:16:b4:bb:d5:
1b:6b:f7:69:2c:83:bb:1a:16:f6:0f:99:4e:d9:82:
6c:b1:2e:89:e6:3d:db:55:31:b2:e4:fb:f9:6f:d5:
b7:89:de:1d:fa:5b:6f:cd:88:30:82:4d:40:fa:57:
15:ed:6f:3d:b8:ba:1b:7d:e8:c5:29:b8:e5:74:e6:
fa:b1:da:94:01:0a:8d:64:68:6a:3e:da:43:b7:2c:
58:fe:b1:4c:b9:93:7c:fb:b8:6d:03:1e:7d:e3:a8:
13:83:90:9d:2b:7b:16:b5:b0:4e:e7:fc:d7:0f:3b:
94:66:03:86:74:03:2c:c0:1d:ee:6d:7d:3c:82:fb:
2f:85:a9:18:a3:46:2e:be:b8:7d:de:96:ae:ee:58:
4b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:73:25:B0:30:2B:DD:1A:6A:18:30:53:3F:8A:FF:29:BD:E3:EC:E3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BXMlsDAr3RpqGDBTP4r_Kb3j7OM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.0.0/18
Signature Algorithm: sha256WithRSAEncryption
73:ae:3d:36:3b:49:76:49:b5:28:2a:c5:41:08:5c:ef:dc:7f:
af:c0:d6:91:b7:99:c7:2a:69:51:ba:e3:27:41:cd:50:6f:6a:
0f:4f:96:e3:48:54:e7:87:6d:93:48:8a:1e:89:ed:c5:9b:fd:
c3:15:59:2e:2d:0e:ae:3b:d0:15:69:d2:ec:df:cd:8b:a6:c2:
3b:82:6c:2f:af:67:f8:7b:2d:79:8a:84:bb:a5:64:47:2b:04:
0a:e9:35:2c:c3:ae:75:4f:33:af:9e:e6:85:dd:e4:b1:15:3d:
9b:9a:bf:76:bc:b5:68:59:73:ff:fa:82:40:f6:b3:b9:a5:92:
93:e6:63:c8:99:a7:a4:e3:44:d2:9b:cb:8d:0f:d7:d4:ce:e2:
e9:a8:96:6c:48:25:f3:18:21:16:4e:1c:71:65:74:f2:20:99:
f9:1f:e6:e1:07:0c:94:23:98:dd:be:4b:61:fe:f9:5e:0d:43:
f5:c2:bc:d7:4e:3e:21:60:f3:1c:41:e7:82:a1:f4:29:94:f2:
49:59:93:16:fb:23:84:1e:a3:20:e8:5e:c5:8d:97:ff:b7:dc:
8a:9e:ee:8e:1b:0d:ac:74:23:b1:23:df:46:95:89:72:d5:18:
7e:22:11:fd:a7:bb:fe:de:8d:b3:48:ff:7b:c8:62:34:6e:04:
14:7e:64:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org