Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LQ4XtDEBAif1ipejgKCYm4jLdOw.roa
File: LQ4XtDEBAif1ipejgKCYm4jLdOw.roa (raw, json)
Hash identifier: 2KKoTVecmWFFJTxIQPwfEgqHalwnGzmInsbUIwg2rt0=
Subject key identifier: 2D:0E:17:B4:31:01:02:27:F5:8A:97:A3:80:A0:98:9B:88:CB:74:EC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C73
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LQ4XtDEBAif1ipejgKCYm4jLdOw.roa
Signing time: Sun 07 Feb 2021 11:43:27 +0000
ROA not before: Sun 07 Feb 2021 11:43:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3187 (0xc73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2D0E17B431010227F58A97A380A0989B88CB74EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:7e:d6:2f:bd:f8:92:e5:a1:4e:70:a7:3e:
75:6a:9f:e5:00:d9:c8:90:9f:0c:56:ce:85:ce:b7:
93:72:3b:e9:33:84:0c:ee:82:41:7f:67:6a:c5:ee:
c1:35:8a:0c:1f:c9:7c:8f:e8:37:d5:dd:91:20:02:
34:ad:86:0a:4c:66:65:f6:42:ff:21:09:94:4b:54:
2e:25:cf:b2:3e:8b:f1:73:e0:e1:87:c8:0f:df:65:
dc:0e:19:52:de:c0:09:4b:ca:f9:8a:e6:b9:8d:98:
55:1c:ac:b6:7c:f1:35:d0:f8:ea:27:36:a7:a4:01:
ed:90:aa:75:9f:73:3a:2d:15:3e:82:bd:95:0c:58:
be:92:97:25:5d:c7:fd:55:08:6e:f0:3d:b5:d5:95:
f5:bf:c7:1f:f5:0e:2a:68:09:ae:39:97:89:4f:99:
ee:ad:77:2e:b2:31:7e:71:a1:2e:af:95:16:bf:43:
81:40:7b:97:5a:22:f1:b2:88:06:e5:d6:c2:26:83:
a9:a0:b1:99:8a:a0:91:42:8a:ec:d3:d1:03:a7:75:
31:e3:74:fe:44:18:1f:17:5a:07:41:a3:dd:4c:81:
5e:34:b3:c9:33:19:3b:39:98:b4:b9:6c:4d:1b:ea:
b1:b7:2d:f3:7a:39:e9:9b:92:92:c2:e6:c6:a5:82:
14:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:0E:17:B4:31:01:02:27:F5:8A:97:A3:80:A0:98:9B:88:CB:74:EC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LQ4XtDEBAif1ipejgKCYm4jLdOw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.164.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:fe:c4:d2:97:ad:1d:bf:6a:f0:c5:d4:53:1e:c9:c2:7e:c3:
53:49:5a:7f:5d:7c:9e:cc:29:5a:e0:6b:6d:5e:54:b8:e8:ed:
72:ba:53:46:4a:7c:62:c3:94:a6:56:ea:ef:21:98:49:ca:70:
1c:14:f1:66:8f:2b:93:a5:a6:bf:c2:37:17:37:f4:55:41:3f:
88:9d:3c:bc:f6:1b:bf:f9:78:50:00:16:59:a6:7f:a5:da:e0:
ce:76:fc:4c:2c:76:e0:7e:c8:9f:c2:6e:4b:f5:33:06:4b:c3:
a5:7d:21:00:f0:cd:67:e0:58:1c:b6:ad:de:00:61:ee:59:02:
05:41:9f:b3:70:83:c4:91:90:8a:31:3f:4b:1a:4c:bf:5b:0f:
e2:21:e3:64:a6:51:b7:e3:5c:d5:c4:cc:ec:2e:9a:c7:99:9b:
42:3f:60:73:b9:bf:50:a8:11:91:8d:b5:95:55:03:b8:e6:96:
e1:7c:ea:f1:ae:df:e3:e5:95:2a:13:6c:6f:3f:7e:2f:17:c3:
e5:d1:a6:f0:58:8f:61:11:5a:d2:c2:97:c6:5f:6b:6b:91:0b:
e2:9c:e4:a8:31:3b:85:fd:78:e5:e1:49:ff:a4:c3:7b:03:ae:
08:20:5d:2e:33:50:08:f9:6d:bf:9c:84:16:ca:b8:3f:07:37:
b7:4b:2d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org