Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Le-BUOw1vghw-teKWWmTZQQwHKI.roa
File: Le-BUOw1vghw-teKWWmTZQQwHKI.roa (raw, json)
Hash identifier: bCrrHyGyCHRm0Day91TOV19jSui2XT++Xhf6qlg1Nuw=
Subject key identifier: 2D:EF:81:50:EC:35:BE:08:70:FA:D7:8A:59:69:93:65:04:30:1C:A2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C69
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Le-BUOw1vghw-teKWWmTZQQwHKI.roa
Signing time: Sun 07 Feb 2021 11:43:16 +0000
ROA not before: Sun 07 Feb 2021 11:43:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3177 (0xc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2DEF8150EC35BE0870FAD78A5969936504301CA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c1:51:e6:d4:23:9d:fd:93:25:92:b3:d5:64:
a2:2b:db:6d:51:69:84:9c:62:bc:25:01:5c:60:15:
67:0c:1f:8a:a1:0b:79:dd:66:41:83:af:15:de:1e:
e0:0e:a4:7e:96:29:ca:7b:45:13:63:e3:92:ca:27:
a1:42:dd:94:df:7b:f4:b7:53:55:13:a2:b6:fa:34:
e7:76:84:97:53:fc:ec:d8:0a:56:91:c9:94:f9:67:
fa:50:93:bb:5b:32:98:5d:62:a5:9f:e7:01:91:24:
45:d6:6e:a5:06:9f:76:83:98:30:dd:f0:17:e8:8f:
47:e2:f7:82:09:7d:17:b5:a9:62:f3:08:73:ee:a3:
37:7c:af:7f:c1:9c:6d:3c:fa:36:b5:4c:42:2e:8d:
c3:40:f0:d2:bb:ef:18:c8:86:39:c3:da:58:95:45:
da:d6:b5:f2:b7:9c:5f:6f:ae:d7:01:31:ef:9a:ba:
b3:35:ca:16:62:8e:08:f8:d4:3a:f6:39:79:70:35:
0c:f8:77:3f:7b:93:5d:07:12:ce:14:7e:70:b1:c5:
e2:7f:87:5b:a3:58:24:4f:06:b9:b0:5f:f0:ce:3f:
53:15:3e:f5:44:2e:e5:21:ff:9c:40:1a:be:e1:ea:
13:e3:17:b2:4f:00:9f:2c:e1:54:17:db:8a:0e:44:
16:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EF:81:50:EC:35:BE:08:70:FA:D7:8A:59:69:93:65:04:30:1C:A2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Le-BUOw1vghw-teKWWmTZQQwHKI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.72.0/21
Signature Algorithm: sha256WithRSAEncryption
82:87:f9:72:d7:c1:0c:19:d2:75:4a:2d:42:4e:64:37:ba:ed:
34:e5:02:ba:66:8d:45:d3:f9:5c:9f:4a:4e:be:8f:ea:d4:43:
53:ef:14:dc:6b:fc:1f:f8:3f:12:1a:ca:57:8b:05:7f:d8:dd:
d5:06:b6:d6:54:1f:6f:b5:29:b9:75:06:50:ac:b8:46:83:03:
35:32:f3:10:6a:11:4f:85:92:7c:0f:b8:5e:51:f6:8c:27:b8:
ff:2d:da:0a:fc:89:66:e0:89:e7:59:ae:45:6a:46:11:be:fc:
d2:5a:a9:a4:65:ae:89:66:77:19:3b:e9:6e:93:f9:d6:ad:cb:
53:97:69:2c:b4:4f:fd:5a:f3:72:9f:c0:6a:23:bf:38:06:d7:
c6:79:6a:39:87:c0:48:22:6e:20:8d:fd:15:b0:8c:7c:6f:31:
7d:5f:cd:70:d0:19:b0:2b:5a:13:02:84:b2:cf:a9:b8:54:16:
a8:2e:d3:3f:cb:91:0c:74:54:7d:d7:80:83:35:a3:91:2c:2f:
e1:8d:17:60:e9:02:08:b0:fe:a4:ce:0e:95:9d:ef:48:cf:ca:
53:d7:e1:f7:15:6c:aa:cc:0d:ba:f6:6d:77:b2:7c:84:49:c6:
e7:9d:35:6c:72:56:ab:38:a8:a0:d3:a8:93:fe:f6:27:b0:b0:
cf:73:89:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org