Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/h0t0eUE0aAcN-6ugLlx5jGoWSQE.roa
File: h0t0eUE0aAcN-6ugLlx5jGoWSQE.roa (raw, json)
Hash identifier: NA2Unqh8pn4NL3+6YGxFve+I45+CaWya0RKnHm5H8ZA=
Subject key identifier: 87:4B:74:79:41:34:68:07:0D:FB:AB:A0:2E:5C:79:8C:6A:16:49:01
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CA1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/h0t0eUE0aAcN-6ugLlx5jGoWSQE.roa
Signing time: Sun 07 Feb 2021 11:44:18 +0000
ROA not before: Sun 07 Feb 2021 11:44:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3233 (0xca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=874B7479413468070DFBABA02E5C798C6A164901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:10:60:e5:00:d2:2b:9d:9c:e2:90:bd:85:04:
44:07:e5:74:11:16:de:bc:53:38:c7:23:c8:69:dc:
6c:18:1a:e6:f6:2d:70:3a:45:63:32:31:c8:f0:7f:
3f:35:71:b0:6b:c9:e3:d9:e5:32:17:35:8c:cc:23:
1e:b1:39:95:91:f8:25:ba:74:7c:fa:b1:d0:a2:a4:
7a:17:21:7d:71:b8:67:9f:9a:88:74:71:09:10:38:
bf:99:63:9d:b7:af:6c:d6:76:6f:b9:32:ee:f8:77:
0e:09:62:c8:dc:9c:fb:be:52:e9:a0:cb:40:3e:21:
40:bf:1f:1b:9b:46:9c:2a:be:70:18:29:bf:00:0f:
8b:4d:4a:67:95:96:f5:45:42:b7:de:d8:bd:07:e6:
f1:f9:d5:1c:53:65:92:95:44:f9:a3:45:89:fd:ba:
ee:53:d2:a4:ad:7d:6d:65:22:5d:18:a2:74:0a:03:
01:60:8d:b2:a0:18:13:49:3c:98:c3:3f:82:4a:18:
af:bb:a1:52:8f:4e:4c:1f:f3:3e:3f:69:43:90:63:
3c:d7:27:ef:8f:18:72:a1:3d:11:85:c4:d0:f6:29:
76:f8:3f:11:97:43:e0:4b:ed:5d:33:2c:a2:85:9c:
85:c8:fb:74:24:67:7f:dc:d4:bb:02:ea:33:ed:15:
e9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:4B:74:79:41:34:68:07:0D:FB:AB:A0:2E:5C:79:8C:6A:16:49:01
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/h0t0eUE0aAcN-6ugLlx5jGoWSQE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.208.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:0f:fc:b3:8e:8a:c7:ef:b4:b0:2e:5c:d2:76:b8:03:c4:b9:
53:73:de:33:1d:cb:07:2c:51:8c:63:40:d5:22:6d:63:56:1f:
de:49:e0:26:e0:39:62:33:8f:db:3f:ae:6f:89:7d:cd:6a:24:
61:e2:71:f4:dc:f3:49:71:17:97:e9:1a:53:3d:63:f5:3f:27:
40:23:24:25:6e:f9:2d:66:ee:b0:02:b5:ed:df:f5:14:82:97:
4a:8a:24:ce:ba:2a:d2:da:d0:40:5d:fc:13:f5:55:d3:0a:9a:
5e:20:d9:be:19:25:ba:28:3f:11:a2:00:31:56:90:6a:9f:59:
3a:e1:af:4e:63:4d:fa:88:d5:b0:43:76:0b:e5:00:de:87:ff:
70:57:5a:33:70:1d:19:6f:b1:48:2e:b0:f0:45:96:ac:87:c1:
07:aa:2d:90:04:1d:6d:54:4a:f9:c1:54:a5:b2:dc:d5:ae:1c:
08:fc:e5:51:31:bb:c2:51:0f:14:5f:bb:d0:40:4e:f2:37:f9:
b5:bd:51:bc:19:b3:fe:3b:ea:64:b0:4d:be:c6:0b:0e:72:9f:
62:bf:65:3f:d3:21:8c:2c:e2:4d:ca:40:5e:07:6a:ed:df:e6:
cb:22:0e:da:8b:18:c8:6a:b9:ba:da:a6:5d:c3:15:74:55:c2:
34:4c:0a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org