Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vin6AbFFlBUokUES_rHmQALeu6I.roa
File: Vin6AbFFlBUokUES_rHmQALeu6I.roa (raw, json)
Hash identifier: dz4khgkBNcD31tRncZ3zVOxIOyegIB4wMahpVxGnnVY=
Subject key identifier: 56:29:FA:01:B1:45:94:15:28:91:41:12:FE:B1:E6:40:02:DE:BB:A2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 089F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vin6AbFFlBUokUES_rHmQALeu6I.roa
Signing time: Tue 29 Sep 2020 09:52:14 +0000
ROA not before: Tue 29 Sep 2020 09:52:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2207 (0x89f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5629FA01B145941528914112FEB1E64002DEBBA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:11:ea:d2:0f:ff:c5:a1:9f:ce:f5:55:d9:b1:
28:e0:55:a3:11:98:16:3e:b4:14:ee:1d:1f:8b:33:
62:90:ca:5d:6e:c1:d6:6d:3b:e8:08:43:8d:06:93:
7d:d6:3e:fa:26:d1:87:80:06:ca:ca:9e:46:4e:17:
4d:c1:97:95:dc:6c:64:c0:2a:ef:8f:7f:b8:f3:07:
ce:f6:3b:bb:a5:5d:33:29:23:dd:fa:55:b9:2c:12:
55:44:6d:77:c8:2e:54:c1:9f:57:31:ad:8b:e1:a5:
16:f7:51:f6:01:64:a7:18:5a:4d:6d:cf:9d:db:5a:
71:45:04:03:3d:03:21:19:ed:16:38:8d:8c:62:26:
b6:2c:28:00:ec:6c:f6:03:a0:e1:d2:83:a9:a4:ae:
6f:f1:50:23:ce:ac:de:71:4b:3b:2d:6c:fa:7b:50:
ae:ae:70:82:6a:5b:a8:d6:b2:e5:40:94:0a:45:e3:
01:fc:48:62:84:fb:bc:21:b5:26:50:50:8c:3c:d8:
2a:95:20:a6:7c:3b:96:db:17:fa:17:f8:dd:ed:f9:
1e:ec:fa:8f:d1:46:2b:12:97:ff:d5:f5:7d:cd:4b:
57:41:41:d1:1d:7e:2b:39:13:78:d4:c4:3e:e5:f7:
52:f2:8a:2e:5c:95:62:ef:69:62:cb:31:41:11:cd:
8c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:29:FA:01:B1:45:94:15:28:91:41:12:FE:B1:E6:40:02:DE:BB:A2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vin6AbFFlBUokUES_rHmQALeu6I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.252.0/22
Signature Algorithm: sha256WithRSAEncryption
95:87:83:ec:b4:e0:fb:5a:31:56:38:47:b7:7f:04:d8:24:63:
e9:37:e8:7c:56:17:6a:10:50:f4:4e:28:fb:cc:7c:d8:b6:14:
17:f4:45:05:eb:d2:c6:f5:09:da:c4:66:67:3c:38:71:f6:9f:
ed:7e:56:a9:44:de:09:7c:1d:8a:86:1d:4c:38:d3:ad:6d:85:
d1:6d:14:9b:d7:77:8b:01:8e:c4:4e:69:b4:75:7b:eb:df:0b:
12:08:7a:57:5d:9d:e8:09:a7:82:3f:d9:f3:b0:1f:86:65:ed:
30:fd:a2:95:06:71:ce:76:90:30:bf:44:47:a5:ad:7a:41:ec:
2a:8a:70:81:79:f6:77:36:61:a3:29:91:cd:77:bb:4c:7e:b3:
0d:d3:de:72:80:5c:f8:c7:b6:9c:c8:b1:a3:9c:b5:06:d6:69:
0b:b3:b3:2f:3a:e5:08:52:8a:bd:d3:74:1e:f9:1c:0e:d7:83:
cc:5e:a0:67:05:c3:57:04:86:a8:75:fd:7c:59:16:30:28:9e:
e4:6b:25:7e:ee:30:42:0d:2d:a6:38:53:12:5d:c8:37:7f:98:
e2:43:17:5d:5f:74:04:f0:17:da:89:97:3b:f3:d3:43:c1:a1:
fe:7c:22:47:58:b8:77:dc:9e:d5:c1:8e:85:72:22:6c:e8:cc:
dc:5e:df:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org