Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Fhs7ZbtyQ-pOSyuWTlKID4qlCD4.roa
File: Fhs7ZbtyQ-pOSyuWTlKID4qlCD4.roa (raw, json)
Hash identifier: cBNmOWq7795bnKB59mGEG493Ez/g1pMUWAyPeV4HMFc=
Subject key identifier: 16:1B:3B:65:BB:72:43:EA:4E:4B:2B:96:4E:52:88:0F:8A:A5:08:3E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E67
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Fhs7ZbtyQ-pOSyuWTlKID4qlCD4.roa
Signing time: Wed 29 Sep 2021 02:43:33 +0000
ROA not before: Wed 29 Sep 2021 02:43:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 106.105.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3687 (0xe67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=161B3B65BB7243EA4E4B2B964E52880F8AA5083E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0e:88:ae:cf:71:32:53:c1:01:a3:b8:14:a3:
f7:67:7e:c6:07:1c:7d:a2:b6:fc:06:35:cf:35:eb:
f0:2b:fd:11:a1:b2:74:42:99:28:00:7e:28:18:03:
9d:5a:37:f0:62:44:79:8d:9f:78:50:37:26:9b:96:
39:16:f8:fe:1d:c2:79:09:86:49:fe:d5:ee:71:59:
30:79:81:1a:56:c6:f5:6a:63:03:33:ef:62:00:69:
90:27:98:8e:61:ed:05:8d:c8:95:a6:6d:3d:fe:1f:
96:fe:a6:87:87:8a:96:74:55:e4:35:ff:40:4b:13:
5d:31:4e:11:cd:b7:13:1f:92:20:03:45:d7:33:88:
35:b8:1e:03:5a:78:46:37:93:9c:22:52:ce:14:e5:
3a:78:3c:95:ad:4e:87:84:c5:e3:96:72:7d:de:8b:
b3:df:a0:f1:9e:bc:f8:82:b5:c4:f6:1b:45:43:c8:
2b:c6:8b:cb:f1:dd:5a:a6:34:9d:d7:83:0a:e0:04:
74:5e:9f:de:8d:43:6d:9c:e9:f7:bf:bf:e5:5a:97:
31:82:bf:e0:97:c4:9b:a8:ca:78:c8:09:52:6b:6a:
0d:93:5c:03:83:d4:ab:69:18:93:32:3d:ba:46:c6:
7a:09:78:32:ae:d0:23:43:95:5a:15:14:48:7c:37:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1B:3B:65:BB:72:43:EA:4E:4B:2B:96:4E:52:88:0F:8A:A5:08:3E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Fhs7ZbtyQ-pOSyuWTlKID4qlCD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.164.0/22
Signature Algorithm: sha256WithRSAEncryption
94:06:dd:43:12:ff:88:ee:d0:97:ce:46:5d:b1:f7:df:d1:95:
9a:de:d2:7f:87:bc:77:47:84:d9:59:05:ae:13:6b:b5:14:ea:
58:4e:d2:22:33:79:43:a4:06:43:ba:a9:34:75:d1:88:93:4d:
27:76:4d:17:e9:bf:de:e9:61:c6:0c:8d:f8:fb:4b:ec:3b:6c:
9e:f9:37:32:2c:64:fb:72:eb:cb:b2:8c:87:c8:ca:d0:7c:36:
e2:02:8b:61:df:bb:d3:16:d0:b2:58:cc:5c:f6:f2:de:cc:41:
f9:34:75:d4:c6:06:27:75:87:68:64:d2:27:83:ac:98:92:4f:
70:3f:74:f9:ab:74:94:5d:e0:22:45:90:25:3a:f6:fd:5d:b7:
62:f8:18:d0:cf:dd:b3:e2:a2:f2:f4:73:cd:08:6e:40:dc:78:
0c:a3:ad:5d:3d:d0:fb:01:6e:de:e8:e9:72:80:d7:3d:07:b7:
f5:f9:91:4d:83:d9:1b:19:27:3a:2b:a5:32:11:f9:59:1a:c1:
16:bc:49:be:76:5f:f0:02:2a:50:a9:66:f5:d1:54:35:d1:ae:
01:9c:7c:aa:9f:34:0a:23:3b:0a:0e:f6:50:6a:d2:ab:c6:47:
b0:93:3c:21:a9:ed:13:09:bf:cf:77:c6:60:c4:91:d8:a5:68:
f2:1f:d9:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org