Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cur2Y1CpH9CBUAWGoEWY2nhOcwA.roa
File: cur2Y1CpH9CBUAWGoEWY2nhOcwA.roa (raw, json)
Hash identifier: 5K+1xM1KD3jzGqSTb4Yzfjo3M7Qak9JDJt7F8f4cE+0=
Subject key identifier: 72:EA:F6:63:50:A9:1F:D0:81:50:05:86:A0:45:98:DA:78:4E:73:00
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E40
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cur2Y1CpH9CBUAWGoEWY2nhOcwA.roa
Signing time: Wed 29 Sep 2021 02:43:21 +0000
ROA not before: Wed 29 Sep 2021 02:43:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.105.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3648 (0xe40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=72EAF66350A91FD081500586A04598DA784E7300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e8:71:b2:c8:8d:7e:d6:31:9b:50:67:24:dd:
86:c1:de:b4:4e:ac:64:dd:35:a3:a4:8a:e6:86:34:
5e:f1:7f:1a:6b:5d:c4:46:d2:dd:c2:51:34:3c:d6:
b4:0f:d3:64:18:cc:80:de:f1:c5:68:b0:95:a2:8b:
a8:4b:8a:73:dd:79:f2:13:d2:c2:12:be:4c:c0:d5:
82:71:6a:4b:8e:f2:50:db:a8:a0:2a:61:7e:a3:eb:
33:8a:58:7a:b8:8d:d2:54:ea:5a:07:ff:09:d4:13:
19:4d:25:e2:06:f3:72:ab:71:18:d4:73:28:0e:29:
a0:3a:1e:09:30:35:e3:24:7c:23:18:f9:77:b4:f3:
76:07:94:37:0f:92:1f:7b:2e:f4:17:e6:2c:4a:4f:
3d:2b:6a:99:17:79:f2:13:93:19:13:15:8d:b6:aa:
a0:29:85:29:d7:3c:39:b9:db:d6:e2:56:e7:57:e5:
97:a9:f2:3b:01:c9:2a:f9:27:3f:45:cf:41:f7:b2:
d3:f3:05:42:81:02:06:c9:43:13:d7:03:8b:e1:db:
32:19:ad:ee:f5:b1:99:14:67:55:a7:eb:da:9e:e2:
b9:6e:46:64:48:b1:90:c2:98:25:45:a5:81:5d:4b:
54:f9:bc:2f:b0:3e:60:38:78:e8:1f:79:07:e8:30:
34:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EA:F6:63:50:A9:1F:D0:81:50:05:86:A0:45:98:DA:78:4E:73:00
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cur2Y1CpH9CBUAWGoEWY2nhOcwA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.164.0/22
Signature Algorithm: sha256WithRSAEncryption
75:86:21:47:76:5f:ef:4c:e3:14:c9:72:b5:07:ee:b5:b2:9c:
05:73:59:81:57:d7:73:1e:21:34:2a:1c:fa:f2:ff:b4:6e:7c:
66:08:33:1e:7f:18:04:ad:ba:7f:37:e9:a8:f7:08:f0:9f:de:
0e:b7:82:85:3e:24:d8:bb:46:f1:8c:61:c3:45:26:95:54:aa:
7d:3e:dc:e9:1a:da:25:dc:d5:57:56:20:c4:71:30:bf:fe:44:
3c:d4:7d:7b:f7:e6:0d:8f:bc:78:40:b9:53:9a:f7:ff:97:78:
52:a6:71:4b:34:d0:d6:6f:e9:a3:20:65:64:26:ba:ca:78:a2:
9d:60:f3:ae:0e:d6:9f:77:8d:66:ae:d6:b6:f5:be:37:3e:88:
6f:66:3a:84:da:97:cf:c3:d2:d4:76:5f:0a:d2:32:8a:d6:63:
33:d7:bc:65:d5:9e:00:2e:de:31:64:cb:0f:8d:93:76:02:5d:
f8:0d:9e:b6:52:db:eb:9f:10:c6:da:b0:13:7c:03:98:fe:87:
ad:a5:58:5f:1e:dc:89:03:41:cf:ec:60:d3:44:4d:af:ca:63:
98:2a:02:92:eb:da:8d:26:3a:37:ad:de:99:2d:07:94:f5:82:
17:9a:ee:d2:9a:9a:59:04:5e:5c:f4:14:09:74:c8:d5:fa:4d:
6c:3d:57:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org