Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZdFTfE5JlxxFqsEF3aQrZ2nWDPU.roa
File: ZdFTfE5JlxxFqsEF3aQrZ2nWDPU.roa (raw, json)
Hash identifier: ZN0rZT+m2ZYQbtIHp2IA2G6MnzHhrSaLb/iuJexyLII=
Subject key identifier: 65:D1:53:7C:4E:49:97:1C:45:AA:C1:05:DD:A4:2B:67:69:D6:0C:F5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08A8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZdFTfE5JlxxFqsEF3aQrZ2nWDPU.roa
Signing time: Tue 29 Sep 2020 09:52:17 +0000
ROA not before: Tue 29 Sep 2020 09:52:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 106.105.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216 (0x8a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=65D1537C4E49971C45AAC105DDA42B6769D60CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:8d:6a:d8:a4:eb:60:74:2f:0a:c9:b7:c2:
65:a6:e9:b6:45:5d:18:2d:28:78:55:88:85:e1:92:
c6:6f:9c:da:79:8e:3c:de:fa:3c:31:bb:d9:d7:23:
18:c9:ef:3b:93:af:d8:d2:64:a9:c6:6e:df:9c:3d:
d3:83:7a:1f:8d:d2:5d:85:0a:3a:71:3e:fd:a4:dd:
ab:0b:0f:5c:14:a4:7d:30:2a:15:25:f7:01:95:dd:
b9:94:9e:94:5b:66:ba:37:a8:7c:7a:53:2e:37:37:
51:7c:d4:4b:6d:31:6b:e7:75:dd:c1:19:2e:fa:8b:
8b:73:21:34:79:e2:55:ce:45:c2:9a:98:e4:4a:98:
11:05:f5:a0:bb:b3:a5:49:4a:dd:5f:e7:3f:e0:cc:
27:5d:ab:07:ab:b2:93:2a:a9:03:d7:f3:c8:18:a7:
fe:50:bc:fd:79:01:3c:cd:55:a0:f1:1e:41:14:74:
3c:eb:29:31:2b:17:46:c0:4a:db:1a:77:19:7d:d3:
b7:18:26:a4:06:08:19:01:45:8f:3d:c4:29:db:22:
85:93:47:8e:d9:90:a4:d9:3d:7f:ad:71:c7:6d:1f:
47:26:fa:7e:53:ee:66:f9:fd:26:e7:88:58:e4:f4:
aa:3c:f0:8b:e9:af:53:a8:85:6c:97:a6:80:f2:e9:
35:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D1:53:7C:4E:49:97:1C:45:AA:C1:05:DD:A4:2B:67:69:D6:0C:F5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZdFTfE5JlxxFqsEF3aQrZ2nWDPU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/21
Signature Algorithm: sha256WithRSAEncryption
63:74:07:d7:2e:d3:6e:f8:f2:c4:ce:e1:60:a9:21:13:64:8c:
de:2f:c2:57:b1:3b:de:6e:75:12:1f:c3:f3:03:4c:df:db:e3:
2c:43:80:01:f1:68:0d:6f:93:48:99:96:8f:59:38:d3:d4:93:
ee:53:d0:cd:11:84:be:26:5f:ba:5f:4b:7a:55:06:81:46:7d:
f0:f9:33:f5:37:59:11:7d:d5:c1:22:e4:6d:c6:2d:d0:79:54:
3c:d6:0d:7b:28:53:ad:f6:e6:e3:92:79:c9:a7:3b:aa:f3:cf:
85:5f:ea:9b:07:88:79:71:08:61:ba:aa:25:cb:25:0f:01:6a:
9d:d2:b6:69:18:dc:56:d3:7d:7c:a7:a2:3a:fa:56:a2:20:79:
c8:78:f2:8f:85:f8:eb:53:ab:6c:ea:90:56:d8:c7:44:55:65:
90:cd:58:f5:28:51:3e:a5:42:94:e0:b5:dd:43:4c:6e:4b:e4:
f1:53:ef:b8:03:93:56:4b:90:ba:b6:2c:0b:80:0a:a5:11:d3:
a1:b1:14:ce:95:86:bc:3a:25:37:fb:37:96:e1:7b:df:44:46:
aa:a5:05:b9:19:49:47:a2:12:dd:07:02:df:96:83:16:10:84:
ae:d8:0a:43:a2:90:2c:5c:7a:18:cb:1a:4c:5c:64:4f:6e:ce:
07:fa:55:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org