Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y3kI-NXHxNlC17TZNDHhPMx7VkY.roa
File: Y3kI-NXHxNlC17TZNDHhPMx7VkY.roa (raw, json)
Hash identifier: 5IPw1pLeSY8fR34g4V/unvgI+MtxkKIIJq4nCGJFEr8=
Subject key identifier: 63:79:08:F8:D5:C7:C4:D9:42:D7:B4:D9:34:31:E1:3C:CC:7B:56:46
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E72
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y3kI-NXHxNlC17TZNDHhPMx7VkY.roa
Signing time: Wed 29 Sep 2021 02:43:36 +0000
ROA not before: Wed 29 Sep 2021 02:43:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 106.105.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3698 (0xe72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=637908F8D5C7C4D942D7B4D93431E13CCC7B5646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ff:54:1a:94:56:fe:6c:a5:27:1d:a2:f3:ef:
66:84:60:97:52:e3:94:a5:ee:0b:92:c4:06:03:4d:
41:31:28:6f:9a:e2:73:5c:16:8a:b4:1f:36:ad:f4:
37:2e:6a:40:4c:56:9a:90:b9:0e:d5:75:8a:41:60:
eb:51:b1:16:60:b1:b4:0d:66:6c:cf:c3:3c:7b:97:
4c:87:f6:24:d1:3a:93:de:f8:97:d2:02:0b:3f:08:
56:f4:9a:88:3b:40:80:e1:93:6b:25:84:a5:c8:1e:
cf:72:39:42:30:ac:70:19:f6:5b:f4:a9:1a:a1:4f:
57:56:82:d1:0d:9c:35:14:e5:62:ff:6d:5c:76:95:
1f:27:99:39:2f:bc:e7:fd:cd:3f:9b:13:a0:82:ed:
ca:51:99:f3:84:ba:9e:16:01:b2:31:df:2f:7c:0f:
e5:b2:d9:65:92:67:7a:e4:95:06:da:3d:21:46:50:
88:97:e9:9e:03:a9:6a:b6:77:95:19:6c:98:1d:ab:
5e:63:6e:e4:ab:56:b4:96:ad:bc:74:55:5d:24:28:
1f:e9:30:04:ac:8b:69:c0:7f:55:8a:3f:91:6c:38:
77:3c:c5:ff:02:e8:c9:93:27:99:4c:95:47:19:4d:
a4:7c:d1:7e:99:42:d0:0d:a7:69:cc:d8:05:f4:a5:
8b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:79:08:F8:D5:C7:C4:D9:42:D7:B4:D9:34:31:E1:3C:CC:7B:56:46
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y3kI-NXHxNlC17TZNDHhPMx7VkY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.232.0/21
Signature Algorithm: sha256WithRSAEncryption
52:3d:92:07:52:9e:a6:ef:32:b5:6e:62:e8:a2:fb:a8:ef:79:
49:c7:9d:0b:2f:af:48:9e:9c:9d:70:a1:dd:e3:a5:26:b3:3a:
fe:b7:82:ba:ec:d3:4b:b3:4a:09:9e:90:a6:be:7b:7e:08:72:
33:ad:22:a7:3f:af:87:e8:94:9f:48:e4:c9:92:89:0a:15:23:
95:ac:50:db:50:77:d6:8a:da:21:18:83:6c:3a:91:17:b4:81:
e7:14:33:97:3c:7a:fb:49:67:d3:3c:79:fb:ba:d8:3e:a4:cb:
54:1f:ea:ac:93:a3:e2:93:97:3e:4b:0b:80:27:b0:49:01:05:
03:c7:5e:2f:9a:53:08:b1:5e:97:94:3a:b6:01:2e:d1:00:f7:
1f:cb:30:da:ad:c8:b9:06:c9:80:c6:2a:c1:8a:ab:44:14:31:
70:77:92:25:2c:a3:cf:1b:87:07:52:c9:d4:ed:0e:4c:33:d9:
13:f3:11:56:73:9e:f5:3c:af:80:4d:3b:93:03:8a:12:c9:4e:
e9:33:82:45:48:c8:43:f0:d4:1a:36:a0:7f:22:16:4c:92:57:
d0:5e:22:2b:30:34:80:07:0c:66:fa:b9:37:93:bd:cd:f0:3f:
fb:65:fc:36:2e:74:6f:80:33:f7:7a:dc:e1:b7:11:5d:71:c9:
a6:2c:7d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org