Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BlDa9Dbds6ppwGEEGIrNnzYUKio.roa
File: BlDa9Dbds6ppwGEEGIrNnzYUKio.roa (raw, json)
Hash identifier: Nl9m77HM9Yk5TlRnlj2zzcZaini77c8BGX2iVD14dzo=
Subject key identifier: 06:50:DA:F4:36:DD:B3:AA:69:C0:61:04:18:8A:CD:9F:36:14:2A:2A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E76
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BlDa9Dbds6ppwGEEGIrNnzYUKio.roa
Signing time: Wed 29 Sep 2021 02:43:37 +0000
ROA not before: Wed 29 Sep 2021 02:43:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 106.105.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3702 (0xe76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0650DAF436DDB3AA69C06104188ACD9F36142A2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:47:8a:c7:84:56:e9:67:d7:f9:81:3a:c7:50:
8b:47:d9:be:a8:ec:f1:1b:db:0c:f3:7a:b7:73:09:
a2:29:4b:8f:78:31:dd:43:4b:0d:27:f8:37:66:6f:
a7:d9:a3:ed:e7:46:1a:30:74:ec:0f:15:6e:82:24:
dc:66:d7:d2:b4:a8:b8:6d:91:21:c1:d9:92:17:ac:
14:80:31:c4:37:39:f1:09:5d:94:d2:7d:21:5c:66:
e1:09:54:e3:2a:c7:a8:24:87:87:29:6f:c1:3e:0e:
74:e5:f3:58:8b:92:f3:20:a6:bf:6c:e0:82:bf:04:
64:90:e9:9b:2c:84:c7:74:0e:e5:00:38:65:3c:6b:
b8:f6:3b:d5:62:a2:37:08:af:f3:8f:93:bd:0f:74:
f9:af:f5:31:21:d4:7f:14:b5:c0:bd:35:09:91:70:
31:c0:97:0b:d1:39:ef:2d:ba:6f:59:25:1b:3c:cc:
65:7e:6f:42:cd:2c:12:5a:f1:03:3a:35:7e:db:ca:
e3:4a:1b:dd:ed:92:f7:00:12:28:6d:1c:85:8c:b3:
57:01:bc:17:72:fb:1e:4d:0b:89:b3:b5:fa:50:3a:
e4:ce:ca:f6:04:16:25:51:e5:ad:b2:9c:bb:bb:f9:
1c:fa:95:f9:01:51:ec:55:16:08:94:20:5a:da:69:
1a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:50:DA:F4:36:DD:B3:AA:69:C0:61:04:18:8A:CD:9F:36:14:2A:2A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BlDa9Dbds6ppwGEEGIrNnzYUKio.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.252.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:8e:c3:97:6e:b3:53:c7:28:d5:0a:8f:6c:7e:44:59:2e:4f:
63:6c:4c:66:4b:08:a3:24:af:60:23:94:b9:59:a3:cf:bb:f7:
01:82:1c:8a:d5:2d:68:59:8a:d7:59:6f:8e:9c:9a:6a:2f:da:
6f:47:af:37:81:d3:fc:b4:0a:e1:ed:46:ae:9e:cc:cc:bd:ab:
3b:ee:78:c6:bc:0d:07:00:9b:05:3e:80:b1:25:17:53:24:35:
94:0c:40:ee:d0:38:bb:db:f7:ac:ef:54:5c:8c:20:c4:59:90:
fe:a6:83:fe:6b:a1:7e:58:e4:08:18:32:60:46:57:c5:dd:b6:
a2:b6:32:00:ff:37:20:85:66:08:6d:15:9b:5b:de:c7:24:3f:
ce:84:99:98:bd:97:fc:21:02:2f:bf:8c:8e:c3:75:d5:30:2b:
49:26:2b:aa:4c:bc:8b:9c:cf:90:af:36:26:07:c2:47:07:18:
21:2f:a4:31:94:27:6a:30:58:30:3a:f3:8a:c2:b6:11:f8:fd:
50:eb:fa:d8:b7:91:fd:cf:4d:a8:5d:01:2b:90:29:64:d0:e3:
2a:98:e2:19:ec:53:12:8c:84:aa:93:bd:d3:0f:f7:5e:86:e2:
2c:d2:2c:0e:1f:b5:78:f3:8c:f3:83:2a:6c:be:bb:d8:95:6f:
09:be:17:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org