Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gutyNEsLCkoXpRS8wYwey_qQiXE.roa
File: gutyNEsLCkoXpRS8wYwey_qQiXE.roa (raw, json)
Hash identifier: hI6Q7sRHdvWjzpO5SS1081GoKt0vdfLWekJxkUWU/EI=
Subject key identifier: 82:EB:72:34:4B:0B:0A:4A:17:A5:14:BC:C1:8C:1E:CB:FA:90:89:71
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08F4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gutyNEsLCkoXpRS8wYwey_qQiXE.roa
Signing time: Tue 29 Sep 2020 09:52:39 +0000
ROA not before: Tue 29 Sep 2020 09:52:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2292 (0x8f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=82EB72344B0B0A4A17A514BCC18C1ECBFA908971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fb:d8:36:6d:63:ff:47:60:06:d0:51:68:31:
f4:8e:6c:e7:2e:87:e8:2d:1a:69:d3:5c:4f:f8:31:
b0:c4:aa:fa:5f:55:4c:08:ae:ee:6a:5e:75:7c:e2:
34:66:3d:8b:c5:26:e7:57:ee:fd:a0:a9:1c:d2:a0:
29:42:9b:61:4f:3b:ff:08:0b:03:cf:33:3c:6b:af:
25:15:27:32:f3:6d:28:76:b9:d2:72:85:0f:9a:b2:
e2:84:05:f5:13:65:f8:09:78:e0:ca:05:55:a3:bb:
b4:7f:3d:86:32:10:0b:40:6f:00:f7:98:63:ae:90:
a5:44:88:5f:c2:9e:87:0d:c6:b2:5f:5e:e3:05:e1:
72:54:17:3c:07:a6:2d:87:7e:35:0f:75:23:73:57:
a7:b4:e1:11:4b:aa:d5:80:51:b6:9d:8b:a4:6a:05:
d0:f5:63:c8:17:c0:a7:87:39:7b:64:24:b8:7b:4b:
59:81:77:77:25:fe:04:c5:3f:e5:8c:b6:db:04:c2:
b6:f3:44:88:69:39:7e:e3:b8:11:eb:1a:9d:2b:65:
9c:34:99:19:b8:b0:15:10:5a:2c:81:21:7b:20:11:
cd:11:5e:9a:ba:12:de:69:e2:64:2b:24:d6:c7:2a:
1f:77:10:a6:b8:49:4c:87:e1:03:6a:4f:27:f7:89:
2b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:EB:72:34:4B:0B:0A:4A:17:A5:14:BC:C1:8C:1E:CB:FA:90:89:71
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gutyNEsLCkoXpRS8wYwey_qQiXE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.240.0/20
Signature Algorithm: sha256WithRSAEncryption
1e:86:10:65:bd:ba:ea:a8:52:17:7c:ea:7a:93:22:20:a3:8e:
fa:a0:f0:97:b1:3a:04:91:ef:9a:b9:3e:a9:cb:e6:7a:a9:06:
85:b3:fb:02:d8:55:e1:8d:01:a4:56:bb:f6:19:c5:f6:8a:f2:
ab:2f:91:f3:44:d5:a2:51:70:b6:a2:96:f3:da:d6:49:93:b5:
38:83:06:17:9d:77:1d:c3:6f:a5:ae:48:bb:41:ef:28:2e:03:
38:fd:35:20:f0:2e:02:ed:a5:6d:08:23:65:8a:ea:fd:d6:99:
77:ed:13:70:8e:cf:81:c8:65:00:a6:3b:01:71:5e:b8:ee:9e:
63:91:8c:3a:be:e1:ad:c5:44:8b:c1:39:9b:09:b3:57:f6:bb:
72:28:f6:40:13:3d:70:a4:bd:32:da:e7:39:b0:2a:88:59:dd:
eb:7a:49:a2:07:68:d7:70:ec:cc:25:e1:8d:66:28:02:61:d0:
32:3c:43:b6:a8:f4:44:c3:09:d6:9c:82:33:5d:b7:61:a4:b2:
83:d7:65:75:eb:86:45:d5:2d:70:a8:6e:2a:38:b1:e9:ad:e5:
b6:23:5a:be:22:6f:4d:bd:f1:bc:b8:38:07:31:2a:f6:69:ed:
5d:4b:e2:19:35:10:8f:87:4f:88:a4:79:75:ee:12:cb:d4:8b:
26:6b:de:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org