Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gjgY_2pOvysSqE0QYF1USgzcpNM.roa
File: gjgY_2pOvysSqE0QYF1USgzcpNM.roa (raw, json)
Hash identifier: R7ZcXztn30imLd/9C/GNIgmIhtv7eSxYH6R+uIB//T0=
Subject key identifier: 82:38:18:FF:6A:4E:BF:2B:12:A8:4D:10:60:5D:54:4A:0C:DC:A4:D3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E74
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gjgY_2pOvysSqE0QYF1USgzcpNM.roa
Signing time: Wed 29 Sep 2021 02:43:36 +0000
ROA not before: Wed 29 Sep 2021 02:43:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 106.105.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3700 (0xe74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=823818FF6A4EBF2B12A84D10605D544A0CDCA4D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:84:f0:cb:d6:43:c7:6d:20:d5:e7:1a:4b:ae:
f6:c0:da:81:de:42:d4:7f:61:7e:14:80:4c:06:73:
2e:9d:40:1a:d0:8b:82:06:3d:7c:8a:ad:8a:ec:35:
4a:aa:30:44:22:13:c4:31:7b:81:8c:4f:54:6d:0c:
36:ce:ff:13:d8:e5:6e:e6:0a:bc:f7:1d:58:22:f9:
61:84:e0:75:5a:c2:17:53:a7:fd:3f:2c:d9:73:e5:
ad:7a:9b:24:50:f0:f8:74:6c:07:c5:89:1f:7d:69:
2f:92:d3:ad:ae:41:4e:3f:14:12:ec:e5:29:e1:3b:
70:5b:d9:58:68:6c:ea:16:2d:bb:54:69:a9:a3:18:
e4:05:22:4c:ce:44:74:9a:35:2e:35:20:7c:77:f4:
20:42:c4:80:1a:04:0a:e1:d4:59:47:04:2b:80:c5:
08:e1:9a:ea:5f:06:fe:37:1e:5e:64:a2:6d:6c:a2:
a5:a1:9a:03:67:92:8f:13:ad:cb:68:c4:7c:ad:46:
04:e9:42:a8:ae:d0:70:d0:49:35:59:c5:40:09:32:
43:c5:1f:dc:f5:3d:94:84:b5:7a:4b:75:26:f0:92:
42:df:9d:01:fd:e5:f2:10:16:fe:b1:0c:1a:e7:60:
46:1f:42:02:a2:a8:8a:8c:4f:0e:e0:af:6c:67:e8:
97:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:38:18:FF:6A:4E:BF:2B:12:A8:4D:10:60:5D:54:4A:0C:DC:A4:D3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gjgY_2pOvysSqE0QYF1USgzcpNM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.249.0/24
Signature Algorithm: sha256WithRSAEncryption
80:f5:9f:b2:3a:10:73:d8:57:c4:17:a7:a9:95:5b:cf:c5:0a:
a6:d2:23:84:e4:34:78:32:92:d9:30:cf:58:a4:68:54:84:f3:
83:ef:07:66:b2:1d:b3:e6:7f:a5:20:51:93:a4:df:36:38:96:
b5:e5:bd:49:df:2b:81:3e:54:ef:fa:b6:d3:d2:71:ab:11:45:
d4:13:24:d4:24:80:30:7b:1a:70:07:70:1d:e3:bd:2b:f0:c6:
fc:2c:9b:c1:25:08:de:dd:22:00:5a:df:b4:ba:a1:67:8a:40:
51:41:e9:a3:8e:ab:dc:a3:16:78:9a:80:3c:73:56:88:e7:8b:
f8:c8:bc:e1:36:fe:2f:a3:0d:b3:7c:dc:16:68:44:e7:68:9b:
a9:91:26:59:59:7e:5a:f1:89:9f:ed:9c:58:89:ae:c0:ac:84:
88:5f:1e:f4:6d:3b:61:22:b8:d8:56:63:47:90:bf:60:f2:2a:
55:ca:5b:a1:43:9d:15:7e:d3:f6:95:fb:6b:0e:d6:ca:4a:23:
57:19:d9:de:98:e0:94:d6:6a:d6:01:2b:b7:96:02:44:9f:a3:
9d:7e:6b:c6:ca:29:74:d9:1f:47:6d:53:e4:f4:cf:cc:b8:82:
ea:b3:9b:17:14:ac:53:50:d6:2a:8a:65:b0:ba:56:e5:8a:62:
b6:d0:ed:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org