Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/c4inRpMaDKPKaRB6bkC7Ys_Z2t4.roa
File: c4inRpMaDKPKaRB6bkC7Ys_Z2t4.roa (raw, json)
Hash identifier: HzxeQ3kFI/PXQev4VHHQDU63DcgQ2/3MiJEi6h3ODYQ=
Subject key identifier: 73:88:A7:46:93:1A:0C:A3:CA:69:10:7A:6E:40:BB:62:CF:D9:DA:DE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08C5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c4inRpMaDKPKaRB6bkC7Ys_Z2t4.roa
Signing time: Tue 29 Sep 2020 09:52:26 +0000
ROA not before: Tue 29 Sep 2020 09:52:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 106.104.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2245 (0x8c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7388A746931A0CA3CA69107A6E40BB62CFD9DADE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:35:c5:13:ba:1e:20:d1:6d:37:6a:59:20:b9:
ef:9e:75:11:89:30:49:9a:7d:cf:c8:d9:44:ed:9d:
dd:60:bb:55:56:0c:16:ef:be:fe:3b:35:a7:e0:58:
4b:a7:8a:cf:d7:10:21:c9:28:39:3d:f1:58:56:25:
e6:20:6c:4b:36:ee:8c:18:4e:b6:52:0b:b4:c0:ac:
d3:fb:e6:e4:e7:ed:a9:14:8c:7e:21:7f:f6:f6:ab:
49:90:d8:21:8e:56:eb:3f:16:b8:b1:ad:c0:8a:17:
a6:60:eb:f5:1c:b0:d6:e0:c6:dc:17:61:10:09:4e:
6b:ef:c8:b4:ea:5f:43:76:29:95:ca:57:d1:7e:2e:
fe:4e:17:40:5f:fd:7f:28:a5:50:61:13:34:5a:67:
ee:02:e6:78:c3:dd:69:10:a4:be:90:cc:6f:35:3a:
82:7e:37:17:89:81:44:af:d0:c2:11:bb:d3:55:a2:
1a:8c:3b:b0:a8:ee:65:67:9b:f1:70:a2:d6:7a:43:
46:b5:d2:e3:dc:fc:52:ce:fd:59:75:ef:3e:f8:6c:
0e:ed:dd:47:1a:2e:3f:57:d1:5f:11:f0:7f:37:fa:
2b:e3:a4:7a:6b:d1:0c:09:b2:e6:ce:ab:5c:3c:bc:
41:07:28:5f:56:43:c8:7e:da:07:78:e9:b5:ab:63:
da:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:88:A7:46:93:1A:0C:A3:CA:69:10:7A:6E:40:BB:62:CF:D9:DA:DE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c4inRpMaDKPKaRB6bkC7Ys_Z2t4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
96:75:b7:74:0f:b5:74:42:56:f0:84:48:0e:2e:fe:b3:bd:0b:
62:45:c7:60:ae:fd:45:c6:ec:ed:22:be:e4:49:f7:1a:30:e3:
c6:6e:cc:c3:0f:2f:18:33:6d:e1:1d:8a:a4:4d:4c:ba:bd:f2:
3f:b4:0e:b4:df:95:1b:12:c5:e5:4d:3d:05:fb:e9:28:27:ef:
83:05:04:ba:5d:86:d7:48:7a:45:2e:a7:5b:12:1b:20:3f:ba:
04:a3:6f:38:d2:66:5b:8f:40:b8:49:d3:7a:fa:09:dd:30:5d:
dc:d7:88:16:94:f5:02:b1:a5:76:84:3b:ec:4d:8e:4c:9b:0d:
02:d0:60:0e:98:d0:38:81:04:62:7c:9e:bd:e3:74:fb:c2:3c:
a7:ce:20:44:d7:c9:1d:b3:18:73:82:4b:3e:eb:a2:84:d7:f3:
04:2c:0d:9e:af:3b:bd:3d:67:ce:a1:a0:9a:79:1b:09:37:4f:
50:b4:cf:d3:cf:be:90:5c:72:74:6f:c3:6a:70:50:7d:9d:7c:
41:bb:f0:22:2d:16:06:48:af:a3:33:a6:24:be:65:25:9f:c2:
f3:71:de:e1:aa:41:5e:71:7f:80:29:14:ea:9e:da:8e:2b:59:
c0:a0:c8:c8:0c:50:90:c4:08:c5:24:29:18:a9:a1:d8:3d:19:
d5:a6:45:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org