Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/X6UlHJ1H4mZw-_3G5O1WnTwXpLw.roa
File: X6UlHJ1H4mZw-_3G5O1WnTwXpLw.roa (raw, json)
Hash identifier: 2PTC69Vaod8UvrF9+o5Hfc3igdiopyh81C1aW/nqKvk=
Subject key identifier: 5F:A5:25:1C:9D:47:E2:66:70:FB:FD:C6:E4:ED:56:9D:3C:17:A4:BC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E4D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X6UlHJ1H4mZw-_3G5O1WnTwXpLw.roa
Signing time: Wed 29 Sep 2021 02:43:25 +0000
ROA not before: Wed 29 Sep 2021 02:43:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 106.105.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3661 (0xe4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5FA5251C9D47E26670FBFDC6E4ED569D3C17A4BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:71:2f:55:82:8d:09:e8:3c:54:6f:9d:10:
6f:95:a6:17:e9:c4:0a:c9:92:14:99:16:b8:17:6e:
3b:92:f1:71:78:d0:87:84:24:98:29:61:0f:c5:e4:
7e:44:65:36:9d:1c:48:f2:e2:99:7d:de:29:f9:15:
41:84:72:63:5a:72:6a:9c:e7:a4:d4:04:d2:6d:ff:
fd:ed:47:6b:2b:a6:73:18:92:3e:ba:46:b0:41:2d:
3f:20:ab:ac:6a:4a:ed:5e:34:43:71:f6:38:1f:47:
8e:04:d0:32:6f:36:1e:a0:52:05:bb:37:a7:03:b7:
60:7b:1e:2b:dc:0b:2b:8f:b7:ab:15:6d:92:5f:55:
ea:2a:a1:31:a6:66:12:73:11:21:5f:e5:0d:5f:c2:
c2:a7:62:fd:59:f2:94:63:29:5a:92:82:9a:7f:6e:
d2:e5:90:84:85:a8:5a:10:52:e7:c7:3a:9a:a1:01:
5c:50:a7:8d:74:82:67:70:31:e7:46:39:22:3f:fc:
dd:0b:c2:77:73:11:cb:f7:b9:1a:65:fb:31:b4:05:
a5:b1:03:2e:26:5b:6c:9a:e2:99:03:69:e7:fe:e4:
20:f4:a4:80:c2:5b:ca:19:cb:06:86:14:28:de:d0:
67:00:6c:6b:3d:c6:9e:2e:63:6d:a2:35:86:19:31:
bd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A5:25:1C:9D:47:E2:66:70:FB:FD:C6:E4:ED:56:9D:3C:17:A4:BC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X6UlHJ1H4mZw-_3G5O1WnTwXpLw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.24.0/21
Signature Algorithm: sha256WithRSAEncryption
a4:66:39:83:99:a5:9e:9e:06:4d:52:91:8e:7d:5f:a9:5f:59:
10:89:32:54:2e:c0:60:7b:28:52:21:5d:a7:74:fb:ad:a7:d4:
52:89:af:64:80:de:94:c4:ed:bc:51:69:9d:67:e5:b7:d3:d8:
89:15:d4:ec:48:f8:e0:58:77:14:f3:1f:dd:fe:70:80:0e:2e:
23:bb:48:84:a6:33:df:31:58:bf:ae:83:20:70:3e:ca:5e:48:
49:1e:00:ec:50:06:d8:f2:4c:9a:e6:22:2c:e7:96:af:40:f5:
16:17:60:f4:c9:6d:cf:5e:43:7d:74:93:57:05:34:34:db:dc:
21:90:b5:b9:3a:d0:1c:c3:bb:6a:12:8f:83:54:7e:99:f7:c7:
7f:dc:21:2b:80:d8:fd:55:a6:ef:7b:31:94:04:67:1a:21:53:
ff:cc:36:aa:76:db:35:92:79:39:4c:70:93:d7:18:67:81:d9:
b0:2b:ee:fb:ab:c0:da:23:02:8a:5e:96:a5:43:22:4d:1e:21:
31:42:56:87:72:57:1c:4b:6a:b9:e4:ea:b1:73:67:48:bf:84:
60:a2:ce:f1:54:e4:ae:a8:4e:8c:89:6d:d6:46:15:f2:15:fa:
c2:40:f3:5c:79:c1:d7:a1:d7:bb:30:94:88:05:04:33:2f:9c:
ef:40:18:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org