Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fMHpNqUZOxt-u9Z4lN0PXwxFKbw.roa
File: fMHpNqUZOxt-u9Z4lN0PXwxFKbw.roa (raw, json)
Hash identifier: C3GsAQotvc8arBz2KKnD0Kxlgo1GPSBlqbK8VikK2rY=
Subject key identifier: 7C:C1:E9:36:A5:19:3B:1B:7E:BB:D6:78:94:DD:0F:5F:0C:45:29:BC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E7A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fMHpNqUZOxt-u9Z4lN0PXwxFKbw.roa
Signing time: Wed 29 Sep 2021 02:43:38 +0000
ROA not before: Wed 29 Sep 2021 02:43:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.107.144.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3706 (0xe7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7CC1E936A5193B1B7EBBD67894DD0F5F0C4529BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:21:46:06:77:5f:5a:54:63:55:f7:ed:a9:54:
18:9f:e1:1b:9f:23:71:82:98:b4:0e:10:f7:e0:c7:
46:37:ae:1f:d8:35:41:61:8b:05:8e:a4:35:78:78:
5b:7a:bc:d1:0f:70:ad:aa:f9:fc:d6:15:c2:fd:c8:
dd:ae:71:de:f6:4c:34:fc:85:92:bf:7c:10:9f:e1:
f3:31:3d:2f:84:e3:1d:3a:4a:5c:b6:e7:ae:93:85:
90:b4:d5:f8:0a:6b:6c:ed:32:b8:0c:9e:c2:98:cb:
76:fb:df:96:84:36:50:8a:63:ac:50:fa:46:38:30:
d8:78:f7:f2:1b:0f:9f:1a:72:b3:49:27:29:4a:13:
77:c5:89:73:fc:17:d5:92:e5:fe:83:5a:c0:83:2d:
c6:9b:69:01:68:fa:9a:bd:56:6d:37:d6:31:58:f9:
c5:0f:96:15:95:b6:77:2e:bb:ea:5c:de:f9:f9:f9:
8a:90:4b:aa:3c:09:4e:ce:29:09:6c:ff:d1:49:0b:
eb:24:15:69:6f:9b:d9:74:94:4b:71:6d:6d:90:5c:
bf:0c:26:1f:fd:1f:ef:e2:d2:78:27:b8:a0:dd:e6:
4e:c9:32:25:38:8f:66:4d:89:00:32:1e:74:78:2f:
4d:07:b7:86:8d:8d:db:ae:cb:de:7a:b5:f1:5e:d5:
d4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C1:E9:36:A5:19:3B:1B:7E:BB:D6:78:94:DD:0F:5F:0C:45:29:BC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fMHpNqUZOxt-u9Z4lN0PXwxFKbw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.144.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:81:c2:a6:90:73:9a:70:31:02:b0:6f:d6:4f:c1:52:b8:c5:
38:d2:e2:4f:77:1e:3b:42:d7:a5:f8:b2:99:ba:3c:ff:eb:2f:
4f:e6:98:75:af:44:70:95:fc:13:d3:80:aa:9e:9b:45:26:a5:
ba:83:82:00:ad:b7:fa:92:f0:4c:53:9f:f9:77:50:5e:95:1e:
b0:a0:40:53:a6:e9:35:3c:8b:d8:80:0c:9c:4c:fa:04:92:f3:
72:a1:8f:c9:df:ba:33:f9:45:83:5c:2a:bb:12:46:15:92:53:
4f:f6:91:30:98:f4:28:75:65:df:e4:95:24:38:4f:ff:06:16:
e7:08:00:de:fe:df:53:f7:0b:ec:d5:2d:8f:ea:39:5e:70:bc:
25:5f:04:19:ea:c4:98:9d:cd:26:75:b3:b9:96:1d:95:f5:6d:
c5:fe:96:2b:19:f6:e4:b0:a2:73:90:5b:6b:a1:8b:3e:2c:d6:
8d:c2:49:c7:f2:f7:17:39:64:40:5c:8f:3f:7b:ec:45:c9:55:
77:f2:28:ad:b4:a5:91:42:e4:f6:a8:c3:ee:26:cf:07:e1:0e:
08:9c:29:a7:9a:55:27:94:e1:86:aa:1f:fe:b0:91:57:da:b4:
c0:d6:3f:34:15:27:77:5e:34:66:37:01:9e:e5:18:ff:4c:96:
94:91:08:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org