Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MwZt_ik29HmbnfaiWpCot11OS7k.roa
File: MwZt_ik29HmbnfaiWpCot11OS7k.roa (raw, json)
Hash identifier: Opl4SJbe3b7KTb5RtEbg9ZX0Nlu16ojHitC91IFj1mI=
Subject key identifier: 33:06:6D:FE:29:36:F4:79:9B:9D:F6:A2:5A:90:A8:B7:5D:4E:4B:B9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D29
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MwZt_ik29HmbnfaiWpCot11OS7k.roa
Signing time: Sun 07 Feb 2021 11:48:44 +0000
ROA not before: Sun 07 Feb 2021 11:48:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 106.106.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3369 (0xd29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=33066DFE2936F4799B9DF6A25A90A8B75D4E4BB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:75:31:2c:c9:be:58:2e:ed:66:77:50:7b:e8:
dd:a5:d3:72:68:ac:de:12:36:b8:c1:24:fb:b2:f3:
95:71:1e:a4:02:de:eb:b3:14:11:db:a6:22:da:b6:
5f:fc:f4:88:4d:b9:09:b7:6c:7b:43:89:65:9f:db:
b1:cc:78:35:67:4f:25:29:6f:84:97:48:11:e8:73:
15:bc:cc:ad:c4:05:cf:79:4b:17:d9:ae:a5:9d:70:
92:a1:f6:a4:a1:d9:94:77:99:51:a0:64:07:6d:27:
a7:08:3a:a2:f8:49:2e:90:68:9f:ac:94:85:93:83:
15:c3:41:de:b4:05:c4:0d:35:45:67:b9:8e:13:cf:
21:af:6b:09:04:c1:fe:23:b0:3a:f7:d2:27:db:79:
e0:3e:0b:f0:06:a5:a7:b7:e1:03:5d:29:b4:0c:a4:
5d:d6:0b:51:e1:18:7e:6f:bf:cd:58:79:14:8e:c7:
76:5e:d8:92:92:70:41:f0:b4:95:ee:fa:35:d8:79:
18:7a:c1:d7:1a:c4:5e:40:0b:df:79:6e:52:1f:ec:
cb:ca:22:33:48:cb:09:ad:79:ca:c7:f9:f2:fa:36:
aa:e3:cf:ff:82:79:cc:48:c3:85:62:91:9e:c2:1b:
9a:e2:ce:f1:10:25:c9:df:08:01:e8:9d:11:97:90:
74:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:06:6D:FE:29:36:F4:79:9B:9D:F6:A2:5A:90:A8:B7:5D:4E:4B:B9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MwZt_ik29HmbnfaiWpCot11OS7k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.236.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:83:be:d9:47:7c:ba:2c:73:4d:dd:b2:b2:8a:e7:d5:4f:33:
7c:8d:23:7e:a0:30:b3:cc:e2:dc:95:51:23:95:6a:d6:f1:cd:
78:d5:dd:a7:32:73:c2:1e:48:f8:f1:8e:45:e5:f4:c8:db:5e:
14:29:31:c2:be:5b:0f:95:00:4d:ae:91:c7:f4:d2:a4:77:88:
0d:0f:19:5f:f7:18:d9:ff:4c:63:ae:0e:64:02:a0:72:f6:29:
f1:cb:6e:47:59:26:1e:eb:66:d3:b4:64:25:48:53:a5:1a:78:
ea:ab:ae:5e:6c:df:ba:6f:97:59:57:71:e1:df:66:5a:5c:fb:
55:6d:9d:37:61:d6:fa:1e:19:bf:ac:55:68:99:9e:e5:b9:67:
ca:d0:59:aa:b6:c5:e5:73:23:70:e4:1f:de:4d:72:8d:8f:08:
89:be:04:96:df:26:3b:3c:2d:f5:15:94:2d:56:5e:f1:11:ee:
1a:8c:21:64:0e:83:cb:67:97:c6:ed:5b:8d:46:15:b6:a4:b1:
bb:bf:6e:e1:5a:6a:22:c2:58:68:2a:74:e8:be:01:bb:d1:aa:
d5:93:16:a7:4e:7f:c5:36:62:52:eb:d6:87:dc:59:2d:58:a5:
a2:f5:59:8b:86:68:19:67:c1:b1:4a:34:e3:dd:e4:c6:a6:21:
c0:4d:fb:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org