Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LLV8mvtloHaZIBhDgsDRsC3VbuQ.roa
File: LLV8mvtloHaZIBhDgsDRsC3VbuQ.roa (raw, json)
Hash identifier: beO3/WjEpsUzsEHdEA8q5y/CibhelsSHL9DZ6u6RtFQ=
Subject key identifier: 2C:B5:7C:9A:FB:65:A0:76:99:20:18:43:82:C0:D1:B0:2D:D5:6E:E4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E78
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LLV8mvtloHaZIBhDgsDRsC3VbuQ.roa
Signing time: Wed 29 Sep 2021 02:43:37 +0000
ROA not before: Wed 29 Sep 2021 02:43:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 106.107.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3704 (0xe78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2CB57C9AFB65A0769920184382C0D1B02DD56EE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a0:87:5c:e8:5b:cc:64:26:85:0a:2e:92:d6:
73:45:cc:1c:b1:7c:84:06:4a:22:5e:80:00:44:16:
93:c9:16:6a:2d:09:9e:33:e3:f8:c5:31:f0:42:f0:
7f:47:07:9f:c9:d9:13:15:16:54:ed:93:8b:e1:7a:
fa:5a:5e:f9:15:6a:b9:ef:1f:64:a7:b0:7c:79:c0:
2b:63:3a:97:4a:07:6c:fe:73:f1:d8:4a:85:d6:0b:
c1:b6:90:6e:8b:fc:93:26:e2:4f:7a:eb:b7:b5:24:
7b:04:5e:1d:d2:b6:7c:cc:09:25:c7:19:30:f9:01:
f2:f5:e0:15:68:4e:e3:ed:65:c6:8d:b2:93:01:82:
24:16:d8:4e:ee:7f:b0:af:74:31:91:d5:b0:ee:3e:
e0:ba:46:16:22:5c:74:b1:df:b9:ef:c7:aa:e3:02:
96:fe:49:15:b3:93:e4:89:53:e3:82:d1:dc:09:b2:
18:b2:d4:e4:db:94:3c:2c:c2:73:16:e5:87:1c:55:
c5:2c:ba:11:b9:e2:11:32:17:50:fa:fa:6e:cf:7b:
8a:ed:c1:ad:06:8e:8c:e5:fd:87:22:21:45:36:27:
48:d9:09:b0:9d:f3:da:c1:24:19:2a:3a:f7:19:94:
4b:97:b7:8f:fa:f4:60:e1:2e:71:f0:5e:4d:e9:76:
16:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:B5:7C:9A:FB:65:A0:76:99:20:18:43:82:C0:D1:B0:2D:D5:6E:E4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LLV8mvtloHaZIBhDgsDRsC3VbuQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.0.0/16
Signature Algorithm: sha256WithRSAEncryption
24:ff:3d:7a:29:8a:26:5d:c5:6d:32:78:b9:58:85:e4:31:ec:
49:fb:e8:b0:b9:7a:33:ab:cb:fb:78:28:de:7c:12:ca:9f:af:
3f:c4:83:f6:fb:a1:0b:21:2b:84:57:31:b0:89:3b:bf:db:7f:
ce:89:53:ac:5b:58:52:2c:5d:3b:c7:58:92:3f:f6:fc:6c:de:
ac:43:78:5c:c1:9c:7f:55:1c:60:7a:33:94:5a:9b:83:87:e3:
f5:20:40:4a:b4:f1:3a:53:46:1d:8c:42:7c:00:d5:f5:f0:e5:
16:3f:0c:96:72:a9:c3:65:a8:73:9a:45:71:17:f8:c0:87:c9:
ca:33:0d:89:2f:73:a7:ec:e6:b9:d4:25:65:ca:49:97:d7:4c:
5c:b0:65:b1:36:d6:82:12:9e:02:93:ee:d1:44:bd:4e:3d:c4:
5b:da:7a:43:4b:d3:8b:00:d7:17:b2:27:b9:00:a3:6e:2e:52:
f3:f4:e8:f2:da:89:d6:2c:45:84:f1:a6:a1:07:52:45:e4:11:
f8:08:f5:aa:b1:0a:77:b1:05:df:5d:70:6b:c1:9d:e1:03:43:
e7:2d:16:af:99:eb:12:aa:fa:5d:a2:cc:5a:d6:e5:44:f0:ea:
d5:1b:ea:58:d5:90:fa:a3:43:78:17:26:ef:d7:5d:c3:30:92:
95:0c:bf:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org