Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LM9vTOlwfzCF4VnTedx7WTLFqlY.roa
File: LM9vTOlwfzCF4VnTedx7WTLFqlY.roa (raw, json)
Hash identifier: QUSdccUZa9PdilLAmiBbu+MjxZRX9vWKYVqMq5QikSg=
Subject key identifier: 2C:CF:6F:4C:E9:70:7F:30:85:E1:59:D3:79:DC:7B:59:32:C5:AA:56
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C87
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LM9vTOlwfzCF4VnTedx7WTLFqlY.roa
Signing time: Sun 07 Feb 2021 11:43:50 +0000
ROA not before: Sun 07 Feb 2021 11:43:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 106.105.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3207 (0xc87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2CCF6F4CE9707F3085E159D379DC7B5932C5AA56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:30:d5:56:1b:41:1c:18:72:b6:45:41:5c:37:
d3:3b:ed:d0:3d:6f:74:89:9a:23:a0:8c:45:c4:cf:
f6:66:93:ab:b9:bb:99:4f:b7:d8:a4:ef:aa:67:15:
e5:6e:dc:c0:82:ff:f3:dc:c5:3c:ef:f9:2a:68:bb:
cb:29:5f:aa:f7:80:57:91:fb:9a:f1:9a:8c:bb:44:
17:04:fb:76:c6:c1:fc:f1:29:8f:df:1d:ae:c2:53:
ac:b9:73:be:e1:eb:2a:07:ac:81:88:81:12:71:76:
e0:43:09:2d:a1:16:e4:2f:8f:8a:c9:b4:89:38:1c:
7e:96:40:1d:7d:49:48:ea:f4:3e:8d:e5:de:42:06:
3d:9f:c5:33:6f:33:55:03:52:e4:1f:5e:9d:38:b2:
3e:02:53:47:ab:69:d1:5e:7d:ce:46:ed:ee:e1:6d:
c8:9b:b7:35:61:30:c6:00:19:72:fa:a4:bf:62:41:
43:22:c0:f9:1e:30:53:e4:d5:75:99:6f:31:42:b0:
b6:de:80:64:c3:d4:2a:2a:b0:e4:62:a3:6f:74:f4:
7d:c9:45:ca:62:94:79:3e:4e:5d:e1:3d:28:8f:c2:
92:d1:91:b9:e4:e5:5f:6d:46:01:d0:07:a2:00:fd:
1c:87:02:15:9e:49:94:8c:62:74:dc:53:5e:e5:6c:
d0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CF:6F:4C:E9:70:7F:30:85:E1:59:D3:79:DC:7B:59:32:C5:AA:56
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LM9vTOlwfzCF4VnTedx7WTLFqlY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.232.0/21
Signature Algorithm: sha256WithRSAEncryption
b1:f7:79:6f:af:88:63:d6:8f:7a:b2:b0:8a:49:07:b9:23:61:
38:e9:9a:a7:31:d8:bf:4e:98:0f:44:2f:69:8d:e8:95:8d:4f:
b0:3c:ea:4b:13:e6:ac:c5:a4:2f:19:9d:46:7c:c6:db:4d:d5:
04:98:7a:09:c3:97:fe:35:df:77:d5:3a:cb:36:db:cd:5f:97:
53:3d:98:0f:c4:64:6e:ae:aa:27:0b:f4:6d:d8:b2:55:ec:ed:
e0:e7:97:6a:e9:47:e0:21:a6:6b:db:8b:de:e5:dd:e8:5a:ad:
4f:c7:e5:78:65:61:eb:98:95:cd:e4:ef:5d:c0:cf:70:4f:7e:
5f:b5:fb:46:11:52:55:86:9a:19:6a:5c:37:18:bb:39:b5:43:
b2:d7:48:1c:01:67:40:5e:03:ce:69:cf:59:26:e8:e0:19:f5:
c2:07:fa:92:5e:0f:b7:05:3b:ad:e0:a6:d3:73:83:39:90:2a:
4b:d1:67:a8:bb:b3:ae:fe:73:5d:6e:16:c5:1e:85:53:54:8a:
9b:9d:6d:87:84:da:31:8b:1c:98:e8:d0:31:2e:59:a4:2b:bf:
57:71:98:08:69:c1:4a:fb:ae:5d:3c:b5:3c:e9:2d:9b:79:2d:
b6:36:be:09:c6:c7:d2:d7:67:72:33:24:47:47:3a:b2:d1:29:
65:42:f4:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org