Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aVJuRmKdKMuEjLglf4lP7woh4Yk.roa
File: aVJuRmKdKMuEjLglf4lP7woh4Yk.roa (raw, json)
Hash identifier: TRwgc++tBVIKw0kXRIbD1LpOj81QK6N+WOOyO1ZGxWc=
Subject key identifier: 69:52:6E:46:62:9D:28:CB:84:8C:B8:25:7F:89:4F:EF:0A:21:E1:89
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C5F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aVJuRmKdKMuEjLglf4lP7woh4Yk.roa
Signing time: Sun 07 Feb 2021 11:43:06 +0000
ROA not before: Sun 07 Feb 2021 11:43:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131586
IP address blocks: 106.106.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3167 (0xc5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69526E46629D28CB848CB8257F894FEF0A21E189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e7:40:95:49:30:f0:3a:04:5d:83:10:bc:07:
49:fa:51:df:64:aa:88:c6:43:ad:25:19:df:eb:38:
28:90:c2:75:56:d2:cb:a0:cc:9e:70:8e:be:89:92:
c8:bb:a1:89:b2:39:4a:5a:dd:fe:61:c5:e5:6f:46:
78:1d:1a:ff:4c:6a:05:ab:55:20:87:92:29:c1:9b:
0a:18:62:05:13:01:84:b0:6a:0d:91:f4:a9:f2:a6:
8c:ae:23:41:d9:9f:b1:7f:47:cb:64:b9:eb:e2:83:
02:1c:2e:ee:b2:42:78:76:63:02:e8:2f:a3:50:04:
f1:49:63:3c:43:5b:50:f5:f1:c0:02:80:32:a5:d0:
4a:6e:8d:3f:2e:fe:74:d4:12:11:ae:db:3e:5b:ba:
c3:a5:42:0a:69:ad:6f:06:e3:8e:1e:92:ed:da:7a:
d2:78:62:3b:6c:47:22:a2:b5:73:2d:a2:8f:52:65:
79:8e:bb:d9:f3:8a:47:99:e3:49:7d:3d:9b:f2:01:
58:ca:75:c3:46:a7:07:ac:65:02:38:a3:e1:6f:8c:
32:97:14:46:1a:1a:51:c3:75:0e:61:cf:6b:98:6d:
77:d3:21:65:84:40:05:5b:b4:b2:e9:7c:f0:08:56:
e6:19:27:00:b6:b6:28:0f:4b:15:80:bb:a9:38:8c:
9d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:52:6E:46:62:9D:28:CB:84:8C:B8:25:7F:89:4F:EF:0A:21:E1:89
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aVJuRmKdKMuEjLglf4lP7woh4Yk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:5e:91:8e:c3:42:c8:95:ac:c3:46:2a:22:57:37:e9:56:3c:
93:c4:8b:48:3d:97:1f:82:19:3b:1b:a2:f3:61:59:a5:3b:9e:
30:6e:7a:51:4d:82:fe:25:d7:46:ac:b4:07:f6:24:37:76:fb:
89:9c:34:a6:c6:d8:2c:4a:2b:5a:06:5d:1e:03:b6:76:45:13:
ac:71:89:26:4f:d2:28:7c:b2:d8:2e:da:db:19:74:80:49:dc:
27:38:b4:e0:af:e2:d8:8b:39:fb:6b:43:e0:7a:ae:a4:95:4b:
4b:0a:5e:1e:44:fb:3a:8d:38:fd:91:a2:98:8b:9d:1a:52:9d:
73:cd:84:b4:a2:01:b7:e9:5d:ce:ed:4f:53:2f:c2:45:2b:67:
89:42:44:e3:3e:6d:b1:08:56:2e:46:f6:82:7c:3d:51:ba:60:
9b:50:3b:cc:86:96:bf:e6:11:e9:d3:51:48:3d:2c:61:82:34:
12:1b:a7:ea:57:81:3a:d6:ce:3e:a3:77:31:ec:6f:25:04:f6:
d8:e0:ab:e4:0e:12:71:cd:2c:83:81:68:79:8b:22:45:50:50:
b2:5d:3a:31:4c:4f:2e:b0:6f:4d:89:8e:95:06:d7:84:77:88:
ed:cc:d4:91:9f:b0:9b:50:cc:c8:4e:2a:4b:fb:2b:9b:c2:a3:
30:af:dd:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org