Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cbeOl_tV8e_ghNrJHZLSFB3W2bg.roa
File: cbeOl_tV8e_ghNrJHZLSFB3W2bg.roa (raw, json)
Hash identifier: DaeQFfO/XARIAd0MU36tm7+xYAMCLRQ0IIx4evakHsQ=
Subject key identifier: 71:B7:8E:97:FB:55:F1:EF:E0:84:DA:C9:1D:92:D2:14:1D:D6:D9:B8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 086E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cbeOl_tV8e_ghNrJHZLSFB3W2bg.roa
Signing time: Tue 29 Sep 2020 09:52:01 +0000
ROA not before: Tue 29 Sep 2020 09:52:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 106.105.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2158 (0x86e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71B78E97FB55F1EFE084DAC91D92D2141DD6D9B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:57:4f:04:b8:04:83:47:87:84:17:2b:e7:21:
fd:f1:05:4f:84:1e:49:52:c2:60:8e:68:04:87:5a:
48:ed:c1:46:14:8b:20:aa:1d:7a:f7:25:59:77:38:
b8:30:54:b4:e9:d1:de:2a:0c:8b:df:d2:22:e5:05:
82:8f:47:31:23:9b:86:01:3a:cf:df:96:a2:93:85:
c0:13:6a:c0:51:c1:fd:0f:b0:1e:af:ea:c8:b5:4f:
dc:79:bb:f1:62:6c:b5:3b:e3:6e:89:64:d3:f6:89:
cd:7c:d9:8b:49:a1:53:9d:73:11:f5:ba:16:11:4d:
5f:9f:81:f1:ec:8e:ef:43:37:ac:0f:fb:5b:19:f5:
23:82:08:15:14:56:e6:04:1e:4f:53:3c:ef:fb:aa:
69:d9:63:1f:b0:6f:d0:39:f0:33:05:fd:a4:a2:74:
89:05:53:e0:87:78:54:08:ad:91:91:90:db:f5:52:
1c:7a:3c:ee:1b:ff:eb:02:3e:43:05:7c:77:18:26:
79:c2:a5:c6:e3:52:30:40:1a:b2:65:33:51:ca:e2:
25:81:ad:24:65:22:08:12:73:eb:28:3a:7a:4f:5c:
48:47:fa:b9:36:7e:06:84:e5:6f:3f:13:00:39:f7:
de:5d:ab:95:2b:a3:1b:f1:d3:91:3b:1f:62:55:aa:
dd:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B7:8E:97:FB:55:F1:EF:E0:84:DA:C9:1D:92:D2:14:1D:D6:D9:B8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cbeOl_tV8e_ghNrJHZLSFB3W2bg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/20
Signature Algorithm: sha256WithRSAEncryption
34:01:58:69:18:d4:e1:6c:a9:b1:04:c1:f5:3d:d5:74:a0:51:
da:f6:a5:fb:86:2b:76:f8:4f:fd:18:47:77:8d:ec:a3:5c:a3:
4c:67:fa:34:7e:24:a8:da:11:6d:bb:ee:4a:ba:2b:29:19:97:
01:45:94:04:6f:69:cd:3c:3c:c1:8d:f8:cd:5e:ab:a1:18:25:
6f:33:0a:a0:74:d0:38:51:e9:9e:b9:64:fd:ce:1d:64:ef:2e:
b1:2b:e6:97:9d:06:53:b2:98:c7:22:0d:5b:c9:67:18:9c:44:
55:4d:cc:04:1e:3d:50:0e:51:0d:53:fd:2b:fc:32:91:68:a6:
a5:c4:8d:37:4a:8c:49:5a:6e:6b:27:26:2b:05:66:12:41:bd:
90:47:b2:59:b3:3c:d2:c7:e6:0f:9c:28:80:85:93:27:89:68:
6b:bc:49:a3:dd:7f:90:6a:83:e0:dc:8a:86:f0:46:e6:18:b1:
4b:1a:5a:06:d3:78:74:d5:ea:e4:d6:c0:ac:de:1a:26:72:0e:
fc:15:3b:0e:fe:76:fb:46:e9:4f:c2:74:a3:d2:32:0a:2d:de:
5f:7d:5e:72:fe:78:6f:6c:1a:f8:cd:92:91:0c:e8:5d:ac:ae:
b3:66:ac:84:00:42:0a:d5:7f:53:d7:a5:81:bd:b6:4b:fd:ae:
22:fe:71:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org