Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YII0-GHmghoy03O-yGiC4gMu0bQ.roa
File: YII0-GHmghoy03O-yGiC4gMu0bQ.roa (raw, json)
Hash identifier: VnV1L89Auo4OLp8MN5jWQ4r/NIrfbuIsMG7YucCNegI=
Subject key identifier: 60:82:34:F8:61:E6:82:1A:32:D3:73:BE:C8:68:82:E2:03:2E:D1:B4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E58
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YII0-GHmghoy03O-yGiC4gMu0bQ.roa
Signing time: Wed 29 Sep 2021 02:43:28 +0000
ROA not before: Wed 29 Sep 2021 02:43:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 106.104.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3672 (0xe58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=608234F861E6821A32D373BEC86882E2032ED1B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ca:8c:73:b3:1d:28:03:84:84:29:55:10:b9:
1a:47:e2:2f:15:ac:96:46:8b:e0:ea:d1:c1:01:f7:
b4:3e:d4:76:37:e2:40:5c:48:54:c5:cb:59:d3:8f:
f3:23:07:19:93:2d:f8:21:5e:8d:c0:d6:ab:5d:f7:
9b:48:fe:4b:e7:1b:9d:3a:05:52:9a:72:60:c8:04:
c1:66:b8:87:02:20:2b:79:bb:63:74:3c:93:a6:96:
cd:e1:7b:49:c3:8c:47:34:e1:ee:5f:ec:78:69:56:
9d:ca:b1:07:eb:d5:b1:6f:7b:77:40:54:9c:a7:7c:
f4:5d:82:b6:49:74:a7:00:b8:83:fb:98:a2:3d:00:
11:52:ec:76:f3:ba:c1:0a:b2:50:ad:36:d7:a2:c0:
ca:da:56:96:e2:a5:09:62:57:ce:5b:5d:06:e8:1a:
5f:5d:86:47:21:20:65:8f:05:8c:c6:4d:e3:57:9f:
4b:c5:a8:61:f3:dd:9e:d6:ee:9c:56:61:11:9f:1f:
75:e1:52:e4:db:0a:76:92:40:dd:25:c5:0e:6d:c5:
bc:8c:b9:36:ba:df:80:b3:f0:8b:da:8b:ca:b4:f6:
5b:63:9c:a6:cc:06:94:c6:90:38:6d:d6:3b:d2:41:
0e:77:49:9c:b0:b9:cf:e4:55:e5:bb:e4:88:be:a0:
05:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:82:34:F8:61:E6:82:1A:32:D3:73:BE:C8:68:82:E2:03:2E:D1:B4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YII0-GHmghoy03O-yGiC4gMu0bQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c5:d9:16:48:30:0c:6b:45:62:85:2f:8d:73:20:f9:da:0b:89:
e1:2e:2e:c9:30:8a:8e:60:1f:d6:9c:f9:e1:f9:ef:3a:bf:32:
3b:7f:fd:df:cc:df:07:7c:5a:34:76:ce:b2:8e:ef:c4:c0:0e:
14:6a:c8:78:42:62:0a:4e:c2:81:65:9d:46:7b:51:be:74:3f:
5d:b1:21:f3:ad:45:35:3e:c5:11:f1:a6:75:da:d7:de:fe:15:
67:cc:fa:ca:2c:0f:18:52:14:16:3a:13:8f:1e:ff:8a:2d:44:
ed:81:28:48:1e:2e:71:c3:b1:c4:bb:31:b8:34:a0:ef:38:80:
0c:12:f8:dc:47:f2:76:36:1a:ee:1e:79:58:af:a4:3c:7b:fe:
82:79:1f:51:af:0a:35:a1:71:a2:6f:37:6d:e4:71:ed:29:e4:
e5:13:3b:55:38:33:5a:e0:6d:b1:26:37:0b:8a:39:34:56:57:
fa:d6:e2:27:dd:80:5a:e2:fc:c5:ce:bd:30:94:77:7c:48:03:
6d:78:01:50:bd:9c:5c:02:5c:5a:4b:e0:b5:a4:e9:f5:85:13:
a4:56:e3:5d:ee:37:5e:7d:5f:38:c8:a6:85:9f:73:f8:bd:f3:
9b:aa:67:43:40:94:87:b0:32:74:9e:ba:39:1e:50:fc:10:1a:
d6:d1:07:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org