Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cjuU_E1ZuySUcYUjy5zKzQ9wjGk.roa
File: cjuU_E1ZuySUcYUjy5zKzQ9wjGk.roa (raw, json)
Hash identifier: uqn+IXKTYzO7JRbwOddsskZ1iCAoJYHElNs78Z1Ha48=
Subject key identifier: 72:3B:94:FC:4D:59:BB:24:94:71:85:23:CB:9C:CA:CD:0F:70:8C:69
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E38
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cjuU_E1ZuySUcYUjy5zKzQ9wjGk.roa
Signing time: Wed 29 Sep 2021 02:43:19 +0000
ROA not before: Wed 29 Sep 2021 02:43:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 106.105.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3640 (0xe38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=723B94FC4D59BB2494718523CB9CCACD0F708C69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b6:40:cf:cc:fc:16:9e:98:de:cb:17:e0:74:
80:6a:3b:a6:df:9e:5d:7e:30:2a:8b:8f:bd:e0:96:
3d:3d:e5:18:d9:55:03:0f:5c:71:82:27:9d:3d:34:
c8:56:2a:49:5e:e7:6a:e3:7c:86:1c:49:51:d7:79:
79:bb:93:d9:23:7d:07:ee:7b:47:7a:73:02:fd:4b:
d5:51:fe:7c:01:f0:11:d8:5d:c0:dd:6e:f7:f1:b0:
29:c7:ee:8e:21:c9:52:07:9f:56:29:76:39:f1:cd:
1c:8a:75:7a:db:45:84:d6:3a:82:6e:fa:22:8f:98:
58:db:10:5c:4a:23:74:bc:52:09:9a:87:84:be:8e:
7c:90:2b:61:2b:b4:b6:49:a9:39:4f:4d:07:67:5a:
32:c9:a5:01:5e:e6:4d:10:cf:cb:25:0d:c1:f3:75:
d2:af:92:f9:c2:ac:bb:da:fe:e9:b6:5b:5c:6f:55:
d6:7a:17:20:34:d2:be:4e:40:e0:59:97:4a:01:d4:
58:d5:e1:74:26:34:a4:24:cd:16:72:7f:cc:99:8d:
e6:d7:3a:f5:64:d0:87:6c:d4:7a:bc:ab:6a:cd:3b:
e8:bc:58:6c:9a:ca:fe:96:59:46:95:50:a8:aa:60:
ec:95:cf:e5:75:21:3a:85:f6:a5:82:71:ea:e5:e9:
db:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:3B:94:FC:4D:59:BB:24:94:71:85:23:CB:9C:CA:CD:0F:70:8C:69
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cjuU_E1ZuySUcYUjy5zKzQ9wjGk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.8.0/21
Signature Algorithm: sha256WithRSAEncryption
bc:ef:b3:ba:db:ca:0d:9b:f3:21:d2:38:06:23:f5:e4:25:ff:
1b:ee:9c:74:d4:54:7a:f4:d3:4b:f3:6e:c7:ad:fb:67:17:bd:
8b:2e:85:cd:5a:f2:26:71:eb:a6:7d:93:1f:46:e5:a8:72:92:
f9:ae:51:f9:db:b0:64:ef:84:47:a3:de:a5:de:bd:99:4a:a4:
40:f0:a9:55:2e:86:bb:e9:79:7a:ad:2e:0d:8c:04:6b:80:63:
ca:ec:5b:78:f1:9c:41:aa:44:e0:96:ce:74:4c:9c:31:07:28:
55:3a:b8:a9:ad:4e:b4:c2:ba:28:bc:d9:45:de:2c:7f:d2:09:
53:1c:8d:54:21:b2:d2:0e:64:f9:f7:6a:75:3e:6a:99:98:a3:
b9:55:e8:fc:3e:09:ae:e8:44:7d:81:18:db:53:3a:3d:ed:bd:
ef:12:fa:14:3d:96:ea:9f:3e:33:c5:33:b5:2a:bf:bc:a1:4d:
d1:16:01:3f:17:87:59:b6:4d:55:1d:39:28:37:34:ba:86:f7:
70:4c:38:43:7b:3b:57:8c:f8:fc:fc:fe:a0:0f:03:be:1d:51:
2e:9e:8e:b0:e7:5e:81:da:79:0d:b7:30:b6:bc:39:50:02:e8:
c8:74:a9:c1:27:82:73:19:cb:7a:5a:c2:3b:6f:e8:3c:d5:e4:
2e:81:05:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org