Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RelflZiZcUpcsAhmIkVrx8VwRlQ.roa
File: RelflZiZcUpcsAhmIkVrx8VwRlQ.roa (raw, json)
Hash identifier: ykIKI/RBvkKSTxVmYcJh1YdjhiTPC/JZ12azpBEfy4E=
Subject key identifier: 45:E9:5F:95:98:99:71:4A:5C:B0:08:66:22:45:6B:C7:C5:70:46:54
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08E2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RelflZiZcUpcsAhmIkVrx8VwRlQ.roa
Signing time: Tue 29 Sep 2020 09:52:33 +0000
ROA not before: Tue 29 Sep 2020 09:52:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 106.105.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2274 (0x8e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=45E95F959899714A5CB0086622456BC7C5704654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:58:54:5d:b8:d1:8b:4f:26:18:e8:1f:a3:
46:0b:ec:3d:15:3b:e3:52:8b:65:69:c0:88:33:5c:
e1:99:f0:f6:f0:68:89:ec:46:f4:c0:fb:c4:f6:c2:
8f:c2:89:f7:c6:73:35:5c:e7:ef:d8:82:40:38:b3:
e8:e7:ac:2b:eb:f9:51:fb:50:75:15:3e:46:18:bf:
fc:3f:55:7a:3f:0e:39:b9:bf:32:f6:13:c0:75:05:
9c:9f:10:96:cd:c5:23:7e:f3:11:eb:bb:b1:3b:fd:
24:2c:4a:d8:2a:ed:57:86:3e:e6:aa:2b:fa:74:85:
d7:ad:ba:4e:22:20:a0:b0:d3:5f:f9:88:a1:d9:69:
9e:78:2c:5f:ab:30:c8:5c:26:88:8c:7a:93:83:85:
34:da:10:76:5d:85:26:40:39:e4:39:74:d8:dc:71:
5e:e8:59:5a:79:64:f3:ad:0b:b8:33:28:84:ba:e3:
b3:29:60:c8:c2:ef:3b:d1:52:39:22:38:f1:81:08:
96:cb:eb:77:2d:cf:aa:c4:60:e9:3b:a5:e2:21:65:
57:84:3e:59:14:9d:b9:a7:53:8f:78:1f:b1:a2:e2:
74:87:53:f2:84:88:12:69:f0:52:5f:6a:c3:ba:0d:
42:d9:26:73:a2:ea:d7:0c:13:73:58:7c:8b:95:dd:
71:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E9:5F:95:98:99:71:4A:5C:B0:08:66:22:45:6B:C7:C5:70:46:54
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RelflZiZcUpcsAhmIkVrx8VwRlQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.32.0/19
Signature Algorithm: sha256WithRSAEncryption
66:88:40:f6:ea:36:36:94:3f:7b:47:6b:44:cf:92:35:10:e2:
a4:ad:62:d9:3f:85:2a:b2:4b:ba:68:c6:6d:95:f9:e1:88:41:
12:f1:14:67:89:9d:23:39:d8:35:5c:e4:0a:37:2e:ce:54:d6:
35:08:50:ed:42:f9:d9:91:e5:aa:6e:9e:f6:a4:c4:54:03:f7:
09:96:a0:5e:cc:1b:a0:ab:30:87:90:2f:fa:0f:fe:a5:73:5c:
a8:6d:b0:be:b8:02:86:4e:0c:c8:96:e1:33:e4:b6:fc:be:91:
35:b4:6b:85:8c:3f:eb:f7:80:2a:72:f5:99:b1:ee:6f:36:f3:
7f:b3:c6:3c:8c:d4:58:03:ef:48:d9:88:a1:de:5c:6b:f1:e3:
44:ff:e3:77:c5:9b:c8:e1:c1:2f:fb:9b:92:b9:88:af:41:08:
59:2d:32:9f:1c:5e:80:30:23:01:c0:ed:11:54:b1:ba:82:57:
b8:ad:73:4c:39:c4:55:56:0c:2b:aa:15:26:b2:29:77:21:14:
42:ce:7f:3f:1f:d0:66:07:1b:c9:01:1d:9f:61:f9:55:66:c1:
84:57:a8:2c:72:06:12:59:e6:df:cb:e4:da:32:19:d9:fc:f1:
c2:92:9d:77:be:f6:2f:48:c9:38:40:07:9e:1f:d2:e9:83:0b:
bb:70:dd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org