Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/I3eZsieBGmpSjfuyhgVAl9_oI2g.roa
File: I3eZsieBGmpSjfuyhgVAl9_oI2g.roa (raw, json)
Hash identifier: 4j+FLEN12GyXcTgmdbZQILQZwn0JHrNFMHglnfOJ4GE=
Subject key identifier: 23:77:99:B2:27:81:1A:6A:52:8D:FB:B2:86:05:40:97:DF:E8:23:68
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C85
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/I3eZsieBGmpSjfuyhgVAl9_oI2g.roa
Signing time: Sun 07 Feb 2021 11:43:45 +0000
ROA not before: Sun 07 Feb 2021 11:43:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 106.105.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3205 (0xc85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=237799B227811A6A528DFBB286054097DFE82368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:39:90:0b:be:fa:82:c2:aa:b0:c7:12:0e:04:
ac:7e:6c:3d:f0:ff:b0:38:ff:1d:dd:e3:b9:ab:60:
7e:f6:4e:e3:71:49:ae:f3:0a:a8:98:0d:ef:0a:43:
f7:c8:5d:02:33:14:0b:8f:ea:8a:dd:39:6e:37:b7:
23:a4:2e:32:87:99:72:cb:f4:fc:bd:d2:73:e0:d3:
52:5e:59:9b:24:9f:46:b4:04:b9:cd:24:1c:2a:04:
69:8f:48:17:4a:f6:14:9d:a7:90:91:41:2c:5f:55:
bf:5f:f2:aa:65:ea:b4:d6:0d:c6:fb:02:11:ce:fe:
9d:c0:dc:c1:50:b8:63:e6:a6:2b:f7:93:9b:a6:19:
66:26:eb:5f:91:ea:d8:63:16:f6:4a:7a:54:0f:f5:
af:e0:9c:d9:e2:73:58:06:b8:66:59:44:7f:bd:5e:
93:94:bb:3b:56:d0:25:59:a2:be:77:3d:72:66:05:
a2:1a:7f:b9:5c:e7:8d:f4:16:80:a0:f0:1d:25:a6:
d7:83:7e:c6:bb:64:1a:42:83:a5:6d:2e:3f:58:7b:
ca:96:b0:af:7b:98:96:3d:4d:cc:63:c1:41:72:70:
ac:c3:bf:fe:4f:42:83:7b:39:0e:70:d1:18:29:53:
4c:47:77:21:d2:94:54:9a:8a:ff:6b:c4:1e:7e:c4:
35:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:77:99:B2:27:81:1A:6A:52:8D:FB:B2:86:05:40:97:DF:E8:23:68
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/I3eZsieBGmpSjfuyhgVAl9_oI2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/21
Signature Algorithm: sha256WithRSAEncryption
07:26:2a:4e:bb:38:17:87:a5:15:7d:8a:f3:15:b3:1d:12:80:
66:99:59:6f:87:78:2c:fb:59:b5:87:0b:11:9c:29:22:7c:38:
04:55:ff:6e:2c:e8:97:80:0c:14:37:e8:e7:7b:e4:01:39:6f:
a7:0a:af:91:a2:8d:ea:18:ed:ab:5d:77:4d:3f:da:75:91:cf:
00:53:06:20:b4:93:9f:d2:28:56:14:82:c4:14:7c:ad:b7:f4:
d4:8b:a1:eb:74:0c:c7:df:08:62:8d:6a:f0:1b:cc:5a:2d:d3:
a5:39:ba:eb:1e:d8:1d:c1:19:e8:67:74:58:97:1b:b9:5d:bf:
6b:84:4f:b4:5a:1a:a4:eb:90:41:0e:b5:88:d4:48:f1:5d:7b:
f7:d9:73:0d:eb:03:d0:f0:32:bb:a1:7e:6d:a5:d4:dd:b0:65:
ab:e3:49:8f:f4:41:be:58:fa:8f:7e:9b:3d:de:ad:62:62:87:
fc:bb:01:4f:6d:57:83:f2:94:55:2a:d9:ae:27:7e:61:5c:46:
d6:0f:19:e9:a8:69:80:0e:8a:51:4e:be:47:90:f8:29:d5:7a:
51:b2:38:7d:b6:34:97:be:ba:d4:75:ab:68:3e:2b:bf:13:9d:
bd:33:38:1c:a9:bb:58:74:34:9e:8b:07:2b:77:0f:7b:da:84:
93:1c:9a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org