Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_ydzmO-xB6TfqcD8GXV-pvgyxKk.roa
File: _ydzmO-xB6TfqcD8GXV-pvgyxKk.roa (raw, json)
Hash identifier: Gizo6EMnSDSLppR6mIx/337owDTqpKJH6Ev4q0S6aAU=
Subject key identifier: FF:27:73:98:EF:B1:07:A4:DF:A9:C0:FC:19:75:7E:A6:F8:32:C4:A9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D37
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_ydzmO-xB6TfqcD8GXV-pvgyxKk.roa
Signing time: Sun 07 Feb 2021 13:06:00 +0000
ROA not before: Sun 07 Feb 2021 13:06:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 112.105.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3383 (0xd37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 13:06:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FF277398EFB107A4DFA9C0FC19757EA6F832C4A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:23:40:47:b9:26:9a:24:00:eb:c4:23:1f:83:
31:77:7b:82:24:40:56:0b:20:10:66:c4:3f:56:83:
a6:41:0f:fc:e4:de:04:64:51:e9:87:55:49:3f:fd:
33:b0:9b:0f:ab:87:f6:57:df:ca:83:90:14:f7:ba:
0b:a8:ab:2f:67:46:64:13:e2:94:0e:79:dd:73:35:
01:c1:22:5c:41:14:8d:10:fe:b0:2c:a7:f0:47:07:
7a:e6:7d:b7:16:a5:8e:65:da:3c:33:a6:6d:ce:8b:
48:56:5e:0c:78:d2:4d:77:87:80:54:90:33:9b:08:
68:a9:1b:7c:d1:83:2f:b1:89:1a:97:92:82:8e:4f:
18:83:fe:c3:84:b8:fb:41:4e:a5:02:b6:a8:a9:cc:
12:29:31:82:51:4a:10:34:3a:44:8d:65:bd:a6:b4:
33:b3:e5:de:2e:78:f4:30:93:80:4f:fc:a1:94:b0:
ef:38:90:07:b7:6b:dd:23:db:e5:9d:88:07:60:0a:
6b:9e:99:9d:a9:76:e3:d6:d9:d4:21:ad:b0:c0:47:
da:ca:9d:c8:fd:2f:6c:83:ce:fe:6a:cc:ce:28:3a:
6a:c7:57:06:08:32:63:08:0c:7c:24:a5:40:ec:31:
9f:81:87:49:a8:44:e4:8c:2c:cb:2a:e3:ac:83:fd:
1d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:27:73:98:EF:B1:07:A4:DF:A9:C0:FC:19:75:7E:A6:F8:32:C4:A9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_ydzmO-xB6TfqcD8GXV-pvgyxKk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.0.0/18
Signature Algorithm: sha256WithRSAEncryption
b0:23:cb:09:f3:d0:eb:9e:a1:07:e9:b4:6c:63:5e:df:b6:97:
78:26:fd:4a:b7:69:12:1d:63:0d:f8:cb:36:a1:16:31:56:96:
9f:a8:2b:66:58:5a:d4:c8:39:80:6c:af:3e:48:e9:5a:0b:16:
32:5e:1d:67:7c:84:02:e8:d7:49:4b:58:7d:ad:29:f2:fd:ad:
2c:3a:55:18:8d:fd:2b:14:8a:11:68:0d:6b:a4:6e:fb:f2:a5:
29:61:98:6b:92:fc:04:2a:d4:ad:fc:6a:c9:6f:10:1e:14:0b:
7f:6f:34:3f:02:6b:f1:66:6f:8d:f0:14:15:95:f2:74:61:a2:
e8:8f:1a:90:aa:53:20:1d:4a:60:bc:02:4f:70:68:e3:f9:84:
14:f6:64:c3:63:bc:b4:fb:3a:4a:f1:3b:58:eb:20:42:fc:52:
74:6e:32:29:f7:e5:bf:fd:3a:c5:0b:94:46:1c:a1:e2:bb:86:
dd:6b:43:c6:b9:ae:f4:a2:aa:3c:33:9c:8c:ad:90:3a:b3:74:
97:72:d0:cc:5d:bb:96:63:69:85:bb:ab:e4:61:68:1e:43:24:
a3:10:29:f8:62:70:b7:e5:d5:75:2b:65:45:75:90:31:24:c7:
df:80:b4:af:fe:18:8b:3c:87:f4:61:7e:8c:49:65:2a:4e:92:
f4:d2:2d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org