Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/d1k8x-TxpUO-MH3YyOITNuRjgQ4.roa
File: d1k8x-TxpUO-MH3YyOITNuRjgQ4.roa (raw, json)
Hash identifier: XMI7n6KlgNl6tknI59QpiEZC2QU6uj9j1hnmYy8N79w=
Subject key identifier: 77:59:3C:C7:E4:F1:A5:43:BE:30:7D:D8:C8:E2:13:36:E4:63:81:0E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C67
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/d1k8x-TxpUO-MH3YyOITNuRjgQ4.roa
Signing time: Sun 07 Feb 2021 11:43:14 +0000
ROA not before: Sun 07 Feb 2021 11:43:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3175 (0xc67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=77593CC7E4F1A543BE307DD8C8E21336E463810E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:66:14:ff:cf:70:36:36:a6:d3:bd:58:c7:15:
d6:ba:55:2e:da:6f:3b:ec:fa:ea:ac:1e:af:3f:f8:
7f:00:07:a3:58:9d:3a:9a:6f:99:c0:f2:fe:69:b8:
3a:9d:9b:3e:9c:9c:77:03:43:39:4e:7e:bd:86:a9:
3b:af:ca:97:1d:ed:32:4f:c5:18:52:45:33:c8:19:
7a:98:28:43:cd:d8:2d:e1:36:d0:9b:dc:b4:7f:d9:
69:7b:83:bf:f9:fe:8e:a3:a6:d8:84:14:81:0a:7b:
65:23:c8:fb:c2:e5:3b:e4:e5:78:f3:9c:6f:02:99:
51:82:63:86:92:a0:3f:06:a1:85:26:99:61:21:73:
5c:50:30:49:de:a6:c5:e3:64:a3:df:c7:74:74:aa:
de:12:39:ed:42:d7:e9:02:07:04:f1:01:79:b7:04:
c3:75:af:e0:7b:c5:c6:aa:7a:16:81:1a:50:23:43:
ea:5e:64:87:c1:38:fd:30:b0:1b:75:f3:67:6f:26:
57:64:1e:e1:4d:b1:48:d1:ad:04:16:32:a0:5b:c7:
6e:ce:98:f4:d4:68:d5:0f:a7:35:6a:92:a5:0c:d5:
45:a5:3f:dc:50:04:05:65:a8:1f:06:7f:c2:52:29:
2e:7d:a2:8a:f7:10:10:db:71:97:ad:8f:2e:a3:4e:
ab:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:59:3C:C7:E4:F1:A5:43:BE:30:7D:D8:C8:E2:13:36:E4:63:81:0E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/d1k8x-TxpUO-MH3YyOITNuRjgQ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.64.0/19
Signature Algorithm: sha256WithRSAEncryption
cb:62:ba:0f:59:8f:8b:b1:7a:06:1e:14:fa:96:7f:cf:f8:c1:
4e:70:a8:d9:16:4f:ca:ee:8f:0c:77:6a:28:b6:95:15:e7:fc:
77:cc:14:15:01:a9:14:51:fa:21:ae:8f:9f:fc:4a:94:06:07:
53:4c:7e:ef:77:e2:06:ce:3d:01:a5:91:8d:14:be:2d:c3:8f:
75:1b:6b:97:fd:67:40:c8:b7:0b:0f:13:e9:4f:f6:57:de:50:
ea:2c:a2:51:fc:95:94:ec:c4:9f:26:62:8c:81:b5:f2:26:97:
50:ea:59:d9:27:f8:ba:57:8a:41:96:97:16:68:77:9a:72:cc:
d5:1e:33:c6:ad:07:a7:5b:7a:92:7b:0a:ab:d4:81:ae:01:bb:
c5:20:c7:34:99:42:44:74:99:e0:ba:17:90:2e:52:07:6d:91:
6d:db:2d:cf:e0:70:b2:b8:8b:24:11:f8:5b:b2:1a:c4:a2:6c:
4a:01:69:c3:94:72:c8:59:0f:38:ce:ad:5b:ae:36:f9:3f:ca:
0b:f5:38:92:61:3b:41:57:4e:76:a3:4e:20:9e:b6:c4:48:81:
e2:47:3b:c8:ab:44:f3:ef:c0:23:9b:81:86:56:b5:2a:f2:f8:
32:04:b0:01:c6:a1:60:f1:c2:d5:3e:81:75:96:9f:58:18:95:
7c:5b:11:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org