Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QNgjM5djKVYUEe3dHe0S-BaiYUg.roa
File: QNgjM5djKVYUEe3dHe0S-BaiYUg.roa (raw, json)
Hash identifier: BmSq0cVnn+woo25oZdI+G74W9M0VzOt/5nilENr7Jvk=
Subject key identifier: 40:D8:23:33:97:63:29:56:14:11:ED:DD:1D:ED:12:F8:16:A2:61:48
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C55
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QNgjM5djKVYUEe3dHe0S-BaiYUg.roa
Signing time: Sun 07 Feb 2021 11:42:56 +0000
ROA not before: Sun 07 Feb 2021 11:42:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 106.104.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3157 (0xc55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:42:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=40D82333976329561411EDDD1DED12F816A26148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:20:79:e2:3e:1c:35:5f:b8:b6:f3:4d:e8:
d2:a6:ae:e4:ba:40:df:85:01:d1:72:dc:f7:78:57:
e5:20:0b:bf:53:6a:37:70:f1:2d:39:ce:81:25:53:
05:62:57:0a:3b:0e:0c:ec:37:16:5a:22:11:78:fd:
ee:f1:d6:73:d4:ab:b3:87:ac:2c:0b:f3:3d:99:00:
1c:9b:32:6b:ff:e0:c9:28:d8:2c:c5:6b:94:fe:10:
a0:f8:42:15:cb:d4:49:f2:1b:ae:2e:0a:d3:b6:ba:
4d:6c:cf:26:eb:42:85:9f:7b:c8:04:21:d5:cb:07:
87:d0:a8:32:00:db:a9:53:53:ca:02:8b:b8:c5:a8:
61:e6:8c:f4:b5:6f:bb:7c:d0:96:74:39:17:f3:58:
58:5b:3e:55:7f:6b:6f:86:ac:47:98:97:cc:ee:c1:
c8:df:66:2f:b1:eb:e7:d1:d8:16:ca:2d:0a:a8:91:
2a:5d:84:ef:3a:af:36:7c:16:48:5f:f6:fb:d3:31:
24:b7:a9:fe:65:d6:c3:d6:ec:a2:e6:35:22:19:3f:
5f:bf:b8:61:06:ba:c3:c2:c0:03:c2:be:b0:c6:95:
60:91:86:65:e2:4c:70:88:56:84:c7:de:22:87:64:
b3:08:f4:8c:af:75:e8:e0:7a:cb:16:68:d6:25:fb:
dd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D8:23:33:97:63:29:56:14:11:ED:DD:1D:ED:12:F8:16:A2:61:48
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QNgjM5djKVYUEe3dHe0S-BaiYUg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9e:a8:aa:c4:a8:04:95:bb:b1:f3:97:02:c7:0c:53:e6:1b:99:
b7:b3:30:9d:64:2b:11:ac:0b:be:5a:6b:28:43:ed:ec:1e:ac:
87:bf:25:69:f0:9a:4c:bd:a7:dc:3d:2f:2d:f9:c0:42:80:64:
80:19:c3:77:b6:0e:e0:4d:06:d1:d8:9c:c3:18:7d:e3:7c:72:
9e:02:08:e9:6e:7d:96:99:a7:9e:97:f3:4a:a0:3c:94:73:a1:
bf:25:b1:f8:43:25:05:ec:f0:6c:19:ff:93:41:9f:2c:96:f5:
c3:05:cf:a8:1f:63:9c:88:a5:e7:13:7c:1b:64:e1:a5:b4:05:
4e:ae:00:78:9d:77:21:ad:50:e0:32:f2:01:a1:70:6b:c0:4f:
a6:2e:f4:e2:d1:fb:17:b1:2e:67:37:91:e7:c1:02:4e:f3:15:
bd:92:73:58:ae:72:f9:c6:c6:27:52:4e:90:92:f5:60:89:32:
a9:3b:da:ab:8f:e6:58:81:62:aa:25:23:74:70:27:72:aa:2d:
13:76:60:bf:d7:d9:77:da:05:54:be:db:28:5c:89:af:b6:9a:
85:b2:cc:b7:b1:90:c3:a4:9c:ee:3a:5f:60:a4:a6:9c:76:7a:
f0:45:0b:06:0e:82:87:1b:86:9e:bb:1b:a2:c8:29:58:e5:7e:
24:e5:41:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org