Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DSI5Qk8hggEMCw17Vz8aoEgYxlQ.roa
File: DSI5Qk8hggEMCw17Vz8aoEgYxlQ.roa (raw, json)
Hash identifier: SDbsoQ97+XApxFm5eIq9Yf3Rqwby7aXtTUs2xYK2qAA=
Subject key identifier: 0D:22:39:42:4F:21:82:01:0C:0B:0D:7B:57:3F:1A:A0:48:18:C6:54
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C9F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DSI5Qk8hggEMCw17Vz8aoEgYxlQ.roa
Signing time: Sun 07 Feb 2021 11:44:15 +0000
ROA not before: Sun 07 Feb 2021 11:44:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3231 (0xc9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0D2239424F2182010C0B0D7B573F1AA04818C654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6b:b6:a2:50:5f:4e:ee:46:81:c4:da:1c:13:
92:9e:2a:7c:1c:9a:77:66:05:e9:02:8b:a0:3d:29:
7d:13:c2:5d:7a:f9:11:47:f0:b2:b1:7c:cd:89:6a:
60:74:bf:8e:1f:38:0f:9a:82:e2:1a:6c:28:62:8a:
3d:4b:a7:67:45:e8:53:6c:b5:cb:31:ea:3f:8c:25:
09:73:b7:b8:4f:f6:e4:f2:b9:d7:ee:79:11:79:76:
2a:5b:96:36:9c:82:72:79:75:04:fe:3d:9b:97:08:
c8:5c:64:db:39:b4:6c:02:ba:37:c1:e3:8c:7b:94:
b2:9e:6c:dd:de:a5:e9:f3:99:e4:4a:be:33:3d:90:
5c:53:4a:6d:2d:52:81:21:fc:01:9f:a7:6d:da:2a:
0c:0e:37:9e:a5:35:43:40:8a:04:8d:5a:8f:02:f2:
10:1a:60:97:5e:ab:d0:be:5b:7a:d6:7d:2a:02:e4:
55:42:d9:8d:93:df:82:b2:c5:d0:be:77:06:44:16:
70:1b:ad:f2:40:e0:79:56:a7:05:ac:ab:72:3b:22:
db:3d:7c:37:bd:20:12:f8:d7:3c:e8:16:7a:42:66:
90:b3:3d:35:48:25:2a:9b:11:1a:bf:1c:ae:01:da:
35:01:40:0b:be:42:22:b1:6d:a5:f5:81:68:af:37:
52:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:22:39:42:4F:21:82:01:0C:0B:0D:7B:57:3F:1A:A0:48:18:C6:54
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DSI5Qk8hggEMCw17Vz8aoEgYxlQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.176.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:80:81:af:1b:45:19:fa:ee:87:09:0b:e7:e5:b8:8c:95:eb:
f5:aa:5f:4d:f8:00:19:7d:fd:06:75:f1:60:8f:b7:17:11:6d:
8a:49:54:16:37:ad:b3:e4:da:8a:b7:0c:19:da:53:c5:0d:76:
ef:49:d3:98:a4:73:ec:11:ef:c3:b1:1b:34:07:d7:3c:56:25:
2b:4e:73:29:a1:61:f5:88:b5:62:7e:38:b5:9d:71:6f:20:de:
df:4d:df:59:2b:cd:9f:1c:1a:07:f1:56:5b:16:07:bd:eb:a7:
cf:5e:b2:bf:cc:1d:ad:fb:cc:7e:f3:0f:79:15:c3:e4:b0:e8:
33:e0:c5:67:5f:0b:4b:b1:aa:59:ff:4d:fe:f9:6b:44:cf:cc:
f6:cd:35:a7:fe:ea:80:ac:93:73:97:97:40:00:4b:8c:7c:59:
a0:54:fb:28:bd:21:3a:6a:ed:84:bc:ed:13:13:d4:33:34:1a:
2a:a3:07:f3:d6:fc:97:ba:ab:fc:14:57:e8:8e:24:60:05:3d:
2e:65:5d:d2:de:05:42:e4:5d:d4:2f:6a:45:ff:cc:de:bf:d8:
f6:fa:d9:de:a6:1c:9b:78:80:26:80:2c:6d:18:1b:32:2b:0f:
66:6e:71:58:3e:e9:43:3b:a9:35:ef:73:67:b3:40:c9:10:a7:
1f:38:fc:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org