Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YNq0wXiLkZnmV4GVgeq7G9uAhEA.roa
File: YNq0wXiLkZnmV4GVgeq7G9uAhEA.roa (raw, json)
Hash identifier: sVKpjcH2lhBigYG2bHhxUsAfopeZJnKeYJcrAdtdnKo=
Subject key identifier: 60:DA:B4:C1:78:8B:91:99:E6:57:81:95:81:EA:BB:1B:DB:80:84:40
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08C0
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YNq0wXiLkZnmV4GVgeq7G9uAhEA.roa
Signing time: Tue 29 Sep 2020 09:52:24 +0000
ROA not before: Tue 29 Sep 2020 09:52:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 106.106.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2240 (0x8c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=60DAB4C1788B9199E657819581EABB1BDB808440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:46:bf:05:6d:ce:f4:3a:15:ef:c7:07:93:88:
f2:d2:4c:71:bf:24:ad:dd:fd:51:1c:6e:b1:86:98:
85:65:71:49:df:52:79:b0:6a:05:b5:24:e0:28:7c:
27:1f:65:52:cd:6b:8c:c3:31:74:b8:75:10:7d:05:
c1:09:6e:f0:04:3a:11:c2:b4:dc:cd:ee:c1:4c:f1:
dc:76:c2:59:48:e4:2d:16:87:26:66:8f:16:ff:48:
6b:bc:59:e6:b6:b6:79:42:8f:94:e8:b1:12:6c:42:
31:06:d3:cf:40:79:b2:33:fe:56:f4:d3:74:52:80:
28:03:99:bf:b2:c7:30:9d:f3:12:9e:92:ab:45:a4:
c7:93:fd:20:34:b2:52:d6:9c:ae:1d:62:3e:f9:a3:
0e:12:94:7c:40:91:92:cb:2d:28:df:ec:40:bd:fc:
b8:a1:e6:79:38:b1:1d:a6:4e:94:c6:c9:50:95:96:
a6:be:03:75:31:59:25:dc:32:6a:8e:6a:ad:f2:fe:
6b:e6:f3:75:f3:6c:8c:ec:f4:bc:c9:55:f4:a5:4f:
3d:52:3d:94:f1:62:6c:bc:3b:6a:d2:e5:7a:77:f3:
7e:c4:a4:10:42:69:d9:0a:61:f8:88:65:a6:7d:87:
c9:65:b2:45:2d:61:26:d8:da:9b:fb:be:d5:f0:a3:
38:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:DA:B4:C1:78:8B:91:99:E6:57:81:95:81:EA:BB:1B:DB:80:84:40
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YNq0wXiLkZnmV4GVgeq7G9uAhEA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.236.0/24
Signature Algorithm: sha256WithRSAEncryption
31:1c:f5:26:c2:0a:6c:f7:eb:19:21:3b:a0:0b:3f:8a:06:2d:
6f:d8:ce:c9:c6:c1:9a:50:ac:fe:cc:63:5a:25:dc:aa:ef:c5:
4a:8e:9c:00:6a:f7:00:8e:46:39:92:d8:8a:07:2c:10:19:a5:
53:c4:82:bb:9b:9b:2e:55:d6:9f:ce:ce:e0:c8:49:40:f0:0e:
31:33:a3:d2:53:5c:86:dc:30:78:74:e4:de:ca:b9:c2:13:13:
30:fa:fa:e5:f7:eb:de:ef:d0:ce:01:59:f8:aa:84:7f:ad:4b:
93:59:dc:47:71:40:9d:e5:41:61:81:80:0c:ba:ee:b2:09:85:
19:97:f3:fd:84:89:10:78:0d:a5:37:de:59:28:1d:9e:cc:54:
ca:98:7f:ff:e9:8e:24:a1:1b:12:6c:17:48:cf:81:a8:4e:cf:
eb:99:57:e5:c6:43:9e:20:03:a3:1a:6b:4f:36:82:a2:f6:d9:
00:84:8d:1d:9d:ba:3f:30:45:21:fc:6a:85:2c:0f:3f:26:b2:
ad:95:1f:75:36:a3:71:15:30:18:92:ba:14:bb:e6:3d:43:58:
f9:18:02:4c:5b:48:d7:f4:be:2e:a5:86:63:1d:e5:c7:56:90:
90:2b:f0:67:64:ea:9f:97:97:21:6f:cc:a4:35:8a:2a:ba:e7:
4d:f0:de:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org