Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_EnMA2Znr4l1rTezvXqmo1XVxRM.roa
File: _EnMA2Znr4l1rTezvXqmo1XVxRM.roa (raw, json)
Hash identifier: Jxy12bT2PMIk9IsL1Uq0dvmNgZotJ+7yUCsCJ29sHys=
Subject key identifier: FC:49:CC:03:66:67:AF:89:75:AD:37:B3:BD:7A:A6:A3:55:D5:C5:13
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C91
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_EnMA2Znr4l1rTezvXqmo1XVxRM.roa
Signing time: Sun 07 Feb 2021 11:44:00 +0000
ROA not before: Sun 07 Feb 2021 11:44:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 106.106.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3217 (0xc91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FC49CC036667AF8975AD37B3BD7AA6A355D5C513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b9:6a:4b:48:6e:c4:91:5c:34:8c:d2:8b:db:
fe:bb:92:91:81:a6:d1:18:9a:06:c4:9c:ee:c1:17:
c3:fe:38:bd:07:e1:77:50:ec:fc:b4:26:80:38:66:
59:13:10:9d:94:de:e8:8e:89:23:cd:2e:07:96:66:
ce:d5:71:f6:13:69:c4:38:21:59:09:8f:ee:19:c9:
69:1a:38:d2:26:b2:7c:af:6e:db:20:d0:b6:3a:ed:
31:2c:9a:dc:f8:37:10:c0:86:b1:11:37:9a:07:1a:
a4:ff:da:80:cc:f8:56:93:3b:0b:c9:bf:c6:8e:35:
2d:9a:5c:03:55:3c:a3:97:5f:58:a1:0c:33:00:27:
f5:65:a0:f8:92:f1:41:18:76:43:02:ad:ef:42:89:
95:90:33:33:ef:9b:96:95:30:81:43:72:62:df:d3:
17:e9:73:e4:e8:a0:8c:a8:18:72:2e:19:f8:7b:f1:
c4:29:a8:39:d6:61:20:1b:94:41:7d:6d:a2:4c:c0:
88:31:54:a8:49:19:56:8e:50:e4:2b:68:2f:35:c2:
08:3c:8d:71:c2:bd:d0:65:de:bb:51:1d:7e:7c:31:
ba:68:06:58:72:7c:c0:ae:56:13:d3:ef:cf:8c:e7:
c4:04:d2:ce:16:24:7e:d5:a1:d9:b3:6b:40:c2:5c:
35:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:49:CC:03:66:67:AF:89:75:AD:37:B3:BD:7A:A6:A3:55:D5:C5:13
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_EnMA2Znr4l1rTezvXqmo1XVxRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.220.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:79:84:99:4d:12:5c:a9:02:6d:cb:52:ed:b9:04:f8:6e:65:
ce:90:8d:46:21:22:0d:c0:09:73:60:b4:35:96:ea:ed:04:9a:
cd:0a:1a:60:7c:9e:57:bf:2c:18:2c:8e:7a:28:31:99:82:85:
9b:29:fc:6f:77:11:51:4b:5a:64:41:5f:a6:66:42:a5:74:62:
9d:76:41:36:70:15:c0:dc:70:9b:2b:b0:39:09:e7:4b:3d:a7:
1e:b1:bd:81:58:0f:dd:5e:a4:15:0e:8b:9d:02:43:67:8f:ba:
97:c9:9e:e8:8e:54:ba:7a:25:6e:6e:c0:4e:56:eb:14:4b:2d:
a8:5c:90:98:e6:3d:ec:da:85:26:0c:ab:21:ef:82:11:72:17:
6c:81:e7:7c:98:3d:cf:a4:f2:39:97:98:36:95:10:e8:7f:51:
2b:16:1e:65:71:a8:d1:e6:7d:ef:25:66:69:4a:b3:42:2a:78:
b4:04:8b:43:bc:36:a0:b8:fa:e3:77:48:45:a8:e6:e9:e0:ac:
0c:9d:1f:58:59:c8:31:61:34:12:32:a4:88:69:8b:ff:f0:0d:
13:a6:fb:52:5c:65:68:1f:e4:cb:ea:8e:d0:d0:be:51:53:3c:
59:1e:dc:12:d8:ca:9a:34:23:43:ef:8b:72:8c:96:aa:36:f6:
0b:a8:56:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org