Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MbhL2yuIRQp7Xi9Kc1sTjn3KhZA.roa
File: MbhL2yuIRQp7Xi9Kc1sTjn3KhZA.roa (raw, json)
Hash identifier: IkHrR4PqrhWHlUUk8H+STYxKgaqFppBMHoX8qRbX04M=
Subject key identifier: 31:B8:4B:DB:2B:88:45:0A:7B:5E:2F:4A:73:5B:13:8E:7D:CA:85:90
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E41
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MbhL2yuIRQp7Xi9Kc1sTjn3KhZA.roa
Signing time: Wed 29 Sep 2021 02:43:22 +0000
ROA not before: Wed 29 Sep 2021 02:43:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.105.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3649 (0xe41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=31B84BDB2B88450A7B5E2F4A735B138E7DCA8590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8e:3b:89:71:8d:83:8e:87:8f:13:d6:0b:11:
72:5b:c6:26:52:7b:1d:bb:ad:41:6f:2a:e3:01:ec:
27:2a:91:b0:df:1c:1b:4f:d3:9f:f5:04:f2:48:07:
05:03:aa:73:07:f9:fa:0d:c9:cc:cb:8c:a9:e0:59:
f3:34:d1:ef:88:97:2a:02:3e:20:0b:f4:ec:c7:8a:
0d:d2:39:cd:66:27:f9:9e:86:0d:56:eb:82:7c:4e:
78:43:bf:80:7d:ca:c0:3f:5e:9e:f5:06:2c:ef:9c:
5c:77:42:ad:04:a0:ea:22:f7:61:30:a6:16:31:e1:
56:55:1c:31:e3:08:70:2e:b9:21:5e:60:14:2f:11:
9c:cb:5f:d7:c4:35:09:06:9f:4e:3e:05:96:b0:25:
9d:26:cc:e5:e1:95:80:05:cb:97:37:fe:e4:64:57:
8a:d5:4a:6e:3d:58:07:1d:c2:cc:a2:b4:89:fe:7c:
0d:30:66:fb:49:2e:78:45:99:8c:19:a9:39:ac:00:
a2:de:c0:a3:a4:2a:65:08:97:50:b6:ce:e2:57:52:
f9:85:9d:9b:0d:f5:8d:79:69:30:8a:f2:d9:e5:d4:
54:35:fd:2e:2a:54:74:b9:06:80:22:d8:31:7b:9d:
bf:d0:63:65:47:28:b0:0c:22:d8:2f:b2:62:9e:a1:
61:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B8:4B:DB:2B:88:45:0A:7B:5E:2F:4A:73:5B:13:8E:7D:CA:85:90
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MbhL2yuIRQp7Xi9Kc1sTjn3KhZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/19
Signature Algorithm: sha256WithRSAEncryption
91:de:84:b5:e0:bb:76:7b:06:ab:89:bb:89:67:50:d6:cc:42:
88:52:30:46:04:b5:b0:30:c5:d1:f6:50:c3:48:59:cd:d7:af:
02:52:50:17:99:87:63:fe:d1:7b:45:40:89:76:0d:0b:da:eb:
a4:bf:a6:e1:58:e0:85:ba:70:ba:e7:10:18:d6:95:34:af:c1:
0d:05:e7:d5:05:50:9d:8c:88:e8:fb:3f:c1:df:ae:92:a9:8d:
ff:70:f8:b6:2c:a4:17:ff:a4:e7:7e:5e:ab:89:25:af:48:93:
f2:ee:0c:76:8a:d8:44:6d:85:42:7f:fd:1f:84:d5:36:e6:d3:
38:bc:64:b9:0d:90:7f:01:d4:4d:f8:3c:64:38:2c:1c:dd:d6:
28:fb:e2:eb:e1:d0:bf:6f:2d:ec:66:53:05:76:c8:c4:92:bc:
3b:29:cd:ff:4f:a4:9f:96:01:d3:64:da:44:3e:0d:9a:fc:71:
c1:15:42:0d:86:f5:a8:d6:93:5b:c1:55:8b:b5:f6:82:fc:80:
b8:d7:20:62:57:84:9a:e2:ff:3c:6e:02:c5:e3:12:3c:c7:a3:
a1:3d:5a:2d:11:27:28:3d:1e:04:d7:dd:91:7c:c9:e3:15:74:
44:aa:ac:da:83:75:96:a5:c5:d5:e4:b3:da:72:1c:e4:e8:9f:
85:c0:55:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org