Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YYNoEuyKh2e5BhGjT8l7fYaLBZA.roa
File: YYNoEuyKh2e5BhGjT8l7fYaLBZA.roa (raw, json)
Hash identifier: n7oGHyqlBpS9jx3l7xVDqRC+M5lkOzP65ADPI617qVs=
Subject key identifier: 61:83:68:12:EC:8A:87:67:B9:06:11:A3:4F:C9:7B:7D:86:8B:05:90
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C13
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YYNoEuyKh2e5BhGjT8l7fYaLBZA.roa
Signing time: Sun 07 Feb 2021 06:54:39 +0000
ROA not before: Sun 07 Feb 2021 06:54:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3091 (0xc13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:54:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=61836812EC8A8767B90611A34FC97B7D868B0590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:04:65:71:72:09:1d:e2:d8:65:0c:b1:71:2f:
e4:d2:ad:96:30:dc:6a:40:8e:8c:77:bb:21:4f:16:
79:6c:a9:f1:86:d3:f5:cb:2a:79:18:f4:5c:19:70:
15:e5:a0:14:6e:ce:42:ea:8a:0a:28:81:b3:77:1e:
bc:5a:47:10:26:7a:cc:d8:d2:e1:44:fe:b6:3d:b3:
f1:aa:45:14:cd:dc:21:fe:e8:6d:57:64:17:92:61:
af:27:30:02:06:0e:76:9c:98:b4:b4:68:9b:68:52:
43:f9:6e:2a:0e:9a:4c:8b:a5:12:f8:5f:ef:1d:a4:
21:7e:23:12:03:2a:fc:22:27:cb:4c:3e:57:dd:6f:
28:f2:9c:f1:89:39:b9:0f:58:10:46:0b:78:93:86:
f2:c1:4b:a3:ac:8a:6b:da:a1:a0:7f:d0:f3:30:7d:
d2:dc:31:14:43:cc:e2:45:3d:42:09:dd:cc:65:cb:
61:2e:58:68:83:24:2e:7c:7a:ba:bd:d5:59:b6:42:
b3:ff:bb:b9:b7:5a:d4:d5:9c:97:04:4f:57:09:c3:
22:b8:22:2e:32:39:8a:c3:68:8c:cb:ee:40:75:f8:
05:f6:fe:21:87:9b:8d:f7:39:9f:52:cc:3e:56:d8:
95:26:e9:7d:15:8b:69:e9:b5:d1:39:0a:37:47:e9:
b6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:83:68:12:EC:8A:87:67:B9:06:11:A3:4F:C9:7B:7D:86:8B:05:90
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YYNoEuyKh2e5BhGjT8l7fYaLBZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.96.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:1c:5f:fd:e5:16:11:71:cf:e8:96:ae:bf:b3:a6:1f:73:bd:
c7:e8:74:45:af:ba:4b:3a:b4:92:86:78:30:5c:e1:b1:82:07:
c1:ba:5c:29:c6:ab:d4:f8:28:2c:36:42:79:92:2a:b3:96:d2:
cd:fb:eb:00:3a:17:5b:29:ca:d8:7b:b2:64:33:67:89:46:bd:
80:2a:24:9d:65:45:14:85:00:40:9a:4b:d2:00:f9:d5:e9:7c:
bc:14:fa:d1:63:1f:40:2c:4a:b9:72:f2:a1:e0:de:35:a1:f8:
3f:8b:16:4c:51:eb:bd:a8:35:94:e8:26:9e:74:53:97:d6:fe:
44:cd:92:10:db:e2:c2:49:22:a8:85:4d:d6:fe:13:76:08:7a:
0e:4c:a4:3d:03:e9:50:03:12:d2:41:13:11:a2:b3:d9:69:c0:
06:01:88:11:77:d9:fe:b1:48:b5:d7:0a:e2:72:99:c5:19:38:
bf:32:4a:8e:b5:fb:0d:00:26:3c:ec:5a:84:83:c5:77:34:e1:
00:68:27:a5:d3:b2:73:9c:0c:99:12:05:75:f5:eb:33:ce:40:
d2:ad:9e:dc:99:3a:7f:f8:5f:59:3b:b5:d9:fc:e3:83:80:0c:
84:62:70:6b:a7:4b:9c:9b:90:93:2a:d5:ee:80:20:b0:97:12:
e8:93:53:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org