Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hBvu6xl2p1UA0_4df76WuKXt28s.roa
File: hBvu6xl2p1UA0_4df76WuKXt28s.roa (raw, json)
Hash identifier: V1Alv8dLmrv/QxzA2KBfpUSw7kluHELhYWzufftZ9f4=
Subject key identifier: 84:1B:EE:EB:19:76:A7:55:00:D3:FE:1D:7F:BE:96:B8:A5:ED:DB:CB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 089D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hBvu6xl2p1UA0_4df76WuKXt28s.roa
Signing time: Tue 29 Sep 2020 09:52:13 +0000
ROA not before: Tue 29 Sep 2020 09:52:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 106.105.184.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2205 (0x89d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:13 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=841BEEEB1976A75500D3FE1D7FBE96B8A5EDDBCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6b:9f:8c:d0:d9:43:d4:f8:16:2c:e6:7e:d3:
38:a1:de:c7:6a:97:52:36:46:4b:1d:b5:0c:68:45:
11:47:2a:66:fc:ba:2b:a2:8d:ff:e8:52:90:37:15:
a5:c6:7c:51:35:2a:32:ef:a3:45:01:b0:46:65:48:
5f:43:a0:a2:3a:72:22:f1:3f:f1:30:f9:5e:f2:30:
25:4f:fc:32:11:28:50:0c:1e:39:9d:d8:93:ef:22:
72:44:68:27:4b:c9:92:de:bd:44:fc:3c:59:8a:2a:
93:8a:73:77:d7:5d:b0:21:39:a9:cf:18:ed:7a:bd:
ff:36:88:87:78:ac:2a:4d:52:ec:97:b5:f0:88:18:
64:df:d7:cf:af:a7:a4:52:05:6d:9f:3e:64:21:76:
f8:78:1f:be:7b:56:fe:e9:2d:de:9a:de:88:ac:11:
a6:65:8c:28:25:5d:f7:e3:ee:44:9a:4c:54:aa:64:
98:c5:8b:02:5d:6c:bd:d1:44:24:22:ab:4f:18:18:
eb:ff:e9:43:0e:d3:6c:5f:22:f9:da:f3:53:7f:e1:
36:b7:c0:d1:e0:7d:52:c5:05:fc:24:6e:60:29:f8:
a5:78:64:0a:0c:0e:e5:7c:59:85:1b:b7:68:39:cf:
2f:12:57:3a:b3:87:7c:a0:9b:c5:25:61:da:3a:34:
a7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1B:EE:EB:19:76:A7:55:00:D3:FE:1D:7F:BE:96:B8:A5:ED:DB:CB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hBvu6xl2p1UA0_4df76WuKXt28s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.184.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:5e:eb:6d:d5:5c:5d:55:43:d7:76:09:57:97:6a:fd:86:e3:
9e:a0:9a:5a:41:bc:77:34:9f:90:58:a7:cc:e8:89:f3:a3:16:
90:0b:47:5a:6c:2c:52:9e:09:93:ff:35:16:58:96:15:6c:83:
df:10:f3:c5:2d:31:8d:73:fe:6e:b4:c0:ab:d4:bb:5b:44:c1:
fe:40:ac:10:67:f1:16:80:03:f3:51:68:b6:55:41:e4:b4:fc:
b3:37:aa:2e:0a:6b:0d:72:37:53:99:5e:74:90:e4:cf:6e:28:
4b:73:c6:16:1e:67:53:8c:a1:63:6e:d0:1d:7b:19:b9:27:1e:
f3:49:1d:58:e5:7d:9b:c3:c9:28:fc:2e:ca:cc:75:b6:cb:d5:
2a:de:6a:70:d0:50:c7:cf:fc:9f:d2:5a:1d:5c:39:c4:2e:72:
90:77:02:e3:49:ef:1a:e2:d0:1d:bc:91:50:07:8c:cb:ee:0e:
56:11:35:4e:c7:52:cf:cf:7a:e9:4d:b3:88:13:a2:9d:76:12:
ec:38:cf:f5:5a:2e:7d:cb:ab:9f:2a:6f:9f:56:e8:bf:a4:12:
52:89:1f:0b:fa:02:df:ca:03:c9:55:42:f7:ec:dd:fc:bb:ac:
45:cb:57:ce:09:74:87:a4:03:4f:ee:07:b5:64:ba:3f:37:c5:
1b:62:28:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org