Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dMTVOShwD8i9g37pYT57ejvRQak.roa
File: dMTVOShwD8i9g37pYT57ejvRQak.roa (raw, json)
Hash identifier: D0A/9Wl8weIaNW0FohF7epNXkR76BO2+1IXw3PbJ6uw=
Subject key identifier: 74:C4:D5:39:28:70:0F:C8:BD:83:7E:E9:61:3E:7B:7A:3B:D1:41:A9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C6F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dMTVOShwD8i9g37pYT57ejvRQak.roa
Signing time: Sun 07 Feb 2021 11:43:23 +0000
ROA not before: Sun 07 Feb 2021 11:43:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=74C4D53928700FC8BD837EE9613E7B7A3BD141A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:31:a6:37:a7:a3:1a:f1:96:63:de:2b:63:5c:
63:be:93:64:02:33:99:84:88:7f:44:a9:b5:0b:c2:
e3:22:02:e7:44:c4:83:ef:f0:75:e8:d9:b4:9e:12:
4d:ac:48:53:35:c4:32:f8:ff:00:d4:fd:ee:e1:6d:
8e:29:50:52:8a:a8:66:ba:10:0e:d6:0f:30:3a:7a:
35:3c:f2:7a:4d:ba:46:80:c4:0b:95:50:47:3e:9a:
f5:8a:46:b3:c0:62:aa:d5:d3:3c:aa:c5:6f:32:2f:
5e:aa:52:40:ba:89:18:74:a0:88:db:55:bb:2b:32:
17:78:6f:34:f3:9f:02:54:89:f0:9d:12:25:b1:84:
5c:23:5a:5d:f1:f2:4b:60:25:04:1f:ba:15:25:43:
63:92:42:7e:30:a3:7d:0a:a3:a8:26:05:96:39:8c:
6e:7c:36:3a:f3:cf:fd:d4:36:2d:16:66:ba:02:a7:
b4:29:01:30:cb:42:6a:97:6c:c2:8f:83:0f:87:4e:
a6:c8:33:93:9d:87:10:2e:93:a0:a2:c6:e4:6a:de:
ef:5f:e4:1a:32:5f:f8:6f:f6:dd:ee:2b:ea:46:27:
05:4c:1b:1e:02:52:58:5f:63:74:98:1c:7f:78:0d:
97:2c:39:e5:1d:3d:02:b5:65:e4:58:ff:b4:b8:dc:
6b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C4:D5:39:28:70:0F:C8:BD:83:7E:E9:61:3E:7B:7A:3B:D1:41:A9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dMTVOShwD8i9g37pYT57ejvRQak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.96.0/19
Signature Algorithm: sha256WithRSAEncryption
ab:73:fa:d1:ce:24:8b:70:c9:45:a9:3b:c9:da:cc:05:34:b4:
a8:f5:e9:bf:ee:38:6c:f5:19:b0:41:a4:07:b9:cd:48:42:a4:
d2:82:df:e4:12:3a:a9:e3:20:f5:23:d0:72:fe:78:5a:4d:74:
e6:0e:2e:2c:9b:a1:91:25:b7:0a:fd:b9:23:f2:ef:46:f1:78:
9e:14:43:4c:e6:07:6a:ed:ca:d3:62:69:99:23:61:e5:be:21:
f4:32:69:94:6a:e8:36:f2:ff:97:45:68:f6:48:e8:00:af:d7:
2c:f1:51:1d:da:a1:7d:e1:0b:8c:dc:9e:32:48:29:9a:d8:9f:
6f:89:4c:d5:26:d0:61:ed:50:8a:2f:11:87:95:75:32:22:dc:
db:d9:0c:27:0f:04:ba:f7:70:2d:6a:e7:c2:a6:f7:84:56:cb:
51:8f:e9:98:d8:1f:0d:85:9f:4f:b0:13:5d:aa:9a:84:69:cc:
49:45:aa:45:09:44:a1:1e:6f:38:85:27:96:b0:f8:f1:7c:c0:
68:3f:ca:47:71:dd:b8:c8:ce:37:5b:a1:cf:42:76:72:f9:b8:
4d:f7:bb:7d:5c:91:cd:68:b6:7b:d4:28:ba:61:15:c9:e3:1c:
2f:9a:c1:54:f5:a8:6d:44:08:12:e6:16:be:ad:c1:09:da:e2:
22:3c:69:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org