Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YAfkZGYRIXV80q1xZMZsKmXCVHw.roa
File: YAfkZGYRIXV80q1xZMZsKmXCVHw.roa (raw, json)
Hash identifier: V4y0bUflXuSJRnv8cDg0RaWcgReYaQmlwHnR72rUYN0=
Subject key identifier: 60:07:E4:64:66:11:21:75:7C:D2:AD:71:64:C6:6C:2A:65:C2:54:7C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E88
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YAfkZGYRIXV80q1xZMZsKmXCVHw.roa
Signing time: Wed 29 Sep 2021 02:43:42 +0000
ROA not before: Wed 29 Sep 2021 02:43:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 112.105.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3720 (0xe88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6007E464661121757CD2AD7164C66C2A65C2547C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f5:c4:ff:f6:ed:f3:cf:79:35:8a:2f:99:eb:
b5:a5:36:16:9f:bf:c9:7e:6c:eb:05:60:27:5c:6a:
de:9b:c5:e8:53:be:d2:62:d7:c4:58:ec:87:77:b1:
2f:67:c9:ab:76:1f:5a:ba:2e:99:93:dd:3a:e3:b2:
66:9f:be:32:6f:bf:9a:b3:dc:76:4b:ca:3e:18:5c:
6c:e5:42:d9:94:95:d2:94:24:e2:5a:d2:b6:20:6d:
a8:cb:a5:70:f0:f6:d3:f3:f0:4f:0f:5c:f8:65:6d:
cb:95:89:d7:41:76:05:bc:90:c5:ec:45:0e:69:d7:
4b:ce:c6:47:07:50:92:db:f5:e4:2e:c1:96:1f:73:
8b:a5:7f:0f:7a:83:2a:7f:0b:e1:c2:4b:f8:5b:b0:
79:67:c8:ca:99:a1:2c:ea:62:7b:e7:69:1a:82:ea:
4f:80:59:4b:6b:75:44:55:69:1d:38:9b:5b:cd:56:
4d:94:23:70:cb:52:a8:46:d9:b8:a0:9a:06:38:7d:
9c:3a:bb:05:da:36:1c:c6:9b:ec:11:9e:07:a2:74:
1e:ef:96:95:c6:bc:1b:15:b6:b3:f2:bb:61:01:47:
e4:71:eb:e9:db:1e:23:9d:10:cf:9a:ea:76:9a:3b:
09:67:7a:a9:48:fd:77:94:0d:c1:84:b3:a7:70:e8:
18:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:07:E4:64:66:11:21:75:7C:D2:AD:71:64:C6:6C:2A:65:C2:54:7C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YAfkZGYRIXV80q1xZMZsKmXCVHw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a6:43:ad:3c:82:22:e9:e0:21:8d:d5:21:c5:6e:8b:fe:d5:81:
cd:5b:c4:8f:2a:e3:8c:2b:fe:b2:0f:4e:76:16:d8:19:a9:4d:
0c:1d:b1:cf:2b:8b:54:31:0c:ca:ec:f2:37:8b:9e:21:75:17:
e2:6b:43:87:93:46:cc:fb:2a:cf:67:ab:39:4c:2e:85:2e:cb:
a1:55:f7:e0:fc:f1:ee:b8:f0:f5:ff:f8:91:a3:a3:b9:9c:04:
15:82:c7:34:cb:13:4d:54:d8:16:21:2c:46:5c:34:6a:40:9f:
64:e9:0b:e1:13:da:bc:e8:d2:fc:1f:f5:89:18:b9:69:5e:0f:
9e:10:e8:0a:a5:7a:07:99:12:58:0b:3b:67:76:7e:e1:cb:61:
11:c0:8e:9d:12:a3:fd:8f:25:24:54:f7:a2:8b:a0:ed:62:8d:
21:a6:b3:89:fa:1e:8d:3b:5e:ba:b8:10:0d:a2:68:72:5d:d2:
3c:52:ec:36:63:8d:41:68:ac:8b:99:8a:bc:7f:bf:f3:99:0a:
ca:cd:c2:9e:ae:57:d2:5f:21:50:75:2b:87:10:4a:28:54:ef:
fd:b6:99:8e:77:fd:49:0d:ef:7b:85:b3:8a:f8:ba:ae:bb:60:
9d:63:27:93:67:c8:0e:97:ba:5e:fa:52:36:00:c0:8a:45:dc:
b0:78:1b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org