Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QepXzrNl04BuJraInB3JAf30zNQ.roa
File: QepXzrNl04BuJraInB3JAf30zNQ.roa (raw, json)
Hash identifier: SPEot+6Ch2zP2EqeFzxpweAyHLVIuRmzrhioltl77uM=
Subject key identifier: 41:EA:57:CE:B3:65:D3:80:6E:26:B6:88:9C:1D:C9:01:FD:F4:CC:D4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08CB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QepXzrNl04BuJraInB3JAf30zNQ.roa
Signing time: Tue 29 Sep 2020 09:52:28 +0000
ROA not before: Tue 29 Sep 2020 09:52:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 106.105.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2251 (0x8cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=41EA57CEB365D3806E26B6889C1DC901FDF4CCD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:31:6e:1b:b7:c3:c1:16:18:14:54:46:fb:3b:
7e:35:9a:ad:98:d6:24:17:15:0b:de:69:9a:07:40:
00:fb:dd:8a:74:f3:a9:cf:f9:90:5e:3e:e9:79:62:
b9:38:3f:7f:9c:0c:04:8d:c7:1c:b7:7d:93:50:63:
c8:e6:55:83:ef:7c:b1:17:a2:8f:34:85:b9:f7:91:
b6:94:e6:36:b5:3e:c0:de:49:00:41:82:9c:ba:a7:
4e:d9:c0:30:38:14:ed:8a:2a:da:ab:02:0c:88:fb:
d3:e2:97:58:a3:36:8f:f8:97:10:0e:72:1f:38:86:
e7:f5:5b:ce:f1:04:40:ed:05:44:ec:0e:5f:ca:94:
9b:ea:76:b7:ea:66:e9:9c:4d:62:e2:57:fd:bc:64:
bb:3a:66:06:fb:5a:16:33:a6:1e:e7:ce:d8:e0:6a:
ce:05:79:7d:b6:29:a9:39:24:58:1e:8f:ff:10:ee:
5c:ac:fe:89:02:9b:31:02:99:d5:05:79:c2:7f:22:
7c:33:c3:00:01:13:84:b0:ee:9a:49:29:f6:45:e9:
b1:cf:d7:57:52:4a:83:17:73:04:ff:4b:16:e7:0f:
76:53:5a:47:77:6e:35:7d:37:ea:bc:0a:71:c0:51:
4d:aa:73:60:77:9a:02:95:80:c9:e0:f9:44:7e:81:
58:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EA:57:CE:B3:65:D3:80:6E:26:B6:88:9C:1D:C9:01:FD:F4:CC:D4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QepXzrNl04BuJraInB3JAf30zNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.232.0/21
Signature Algorithm: sha256WithRSAEncryption
85:40:f9:5e:ad:d1:e1:3c:40:43:6f:84:73:b6:24:8c:ed:b0:
12:c8:30:77:1e:06:f7:95:7a:b9:6a:11:31:34:91:f6:a2:2d:
51:5c:0e:a8:1d:98:5d:18:bc:32:43:a4:5c:8e:75:c3:17:52:
f1:f5:82:b6:48:dd:8d:55:59:bc:63:b1:46:13:78:ed:dc:74:
2c:9b:93:bb:db:41:31:d2:25:62:b3:76:15:b2:b6:40:8b:cc:
e1:ae:65:70:48:64:57:20:1e:a9:51:76:cb:24:65:1a:03:8b:
97:80:9b:40:9e:5e:ba:d8:0e:e8:be:20:02:6e:8d:96:e6:61:
3a:9f:08:c7:93:5d:6b:ce:ca:09:ef:63:8e:f4:c3:8a:21:d7:
8a:7e:a4:93:2c:e1:94:00:66:3a:62:94:d3:40:73:80:0e:71:
28:e4:bb:0c:72:e9:fb:0e:75:93:fb:6d:75:57:30:7a:3f:09:
2b:5d:8c:83:90:94:86:c1:57:93:92:29:10:02:1f:eb:05:cc:
e2:8b:32:34:92:f4:ba:64:d3:e1:d0:55:e7:e2:44:d5:fa:06:
ba:8e:c6:55:2f:52:50:1f:e8:06:65:f3:29:d5:c6:94:7d:83:
12:5b:b7:47:8c:e2:e8:23:00:13:4c:b9:06:ef:35:29:e9:db:
6e:eb:c0:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org