Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hSC4I4mgo4sjB-IXRTDxKIM9i-0.roa
File: hSC4I4mgo4sjB-IXRTDxKIM9i-0.roa (raw, json)
Hash identifier: C1bPzy1Dvb99lRc5QL+xf+EyLFVlShrfj2T/gGT/6/k=
Subject key identifier: 85:20:B8:23:89:A0:A3:8B:23:07:E2:17:45:30:F1:28:83:3D:8B:ED
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C19
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hSC4I4mgo4sjB-IXRTDxKIM9i-0.roa
Signing time: Sun 07 Feb 2021 06:59:44 +0000
ROA not before: Sun 07 Feb 2021 06:59:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 106.105.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:59:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8520B82389A0A38B2307E2174530F128833D8BED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0d:ab:f6:eb:0b:60:e7:31:5d:b2:f5:bb:b5:
4c:48:3b:13:e4:38:fd:68:e6:52:00:ba:9d:5c:84:
4a:33:c6:26:4b:6f:c9:2a:ad:38:fb:fb:e5:2a:9f:
fe:68:8d:c0:62:1d:3b:e3:f6:26:d2:ad:28:42:bf:
ee:55:7a:94:4d:d4:1b:1c:af:e4:4f:5c:99:ff:16:
4b:59:5a:cd:dc:51:45:9b:d2:7f:40:7b:c8:7b:76:
50:03:9b:0e:10:cf:bf:99:b3:cb:cc:35:db:e0:a9:
97:07:9d:78:dd:44:57:19:03:45:0e:76:e7:48:2b:
c9:f1:d5:21:71:c1:c3:e8:a3:1c:b6:0a:ce:4b:ee:
64:60:3d:d0:45:9c:de:5c:0f:be:88:90:8f:70:8f:
e8:61:11:2f:d2:8b:3c:dd:80:18:c2:f2:ed:b8:94:
2d:3e:36:da:7a:9b:36:0d:4b:e2:86:7c:db:cc:1c:
c6:c6:f4:ad:4c:93:5b:3f:9b:7f:4c:d6:95:91:82:
ec:25:f1:dd:a3:c6:52:5d:19:c3:cd:dd:d0:11:d7:
60:27:2c:f6:30:e0:60:62:fa:7c:0f:f0:0c:c8:54:
e5:0c:c8:00:66:a4:91:59:63:69:be:bf:18:d7:f5:
8e:d5:ee:0e:9a:8b:7f:26:d0:37:e3:11:22:bd:90:
5d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:20:B8:23:89:A0:A3:8B:23:07:E2:17:45:30:F1:28:83:3D:8B:ED
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hSC4I4mgo4sjB-IXRTDxKIM9i-0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.8.0/21
Signature Algorithm: sha256WithRSAEncryption
48:20:3a:42:b3:6e:43:7c:17:84:93:04:73:e7:c3:82:86:19:
00:0d:67:e7:8b:e8:d1:24:f2:b6:c6:be:8f:9d:e5:c2:37:c1:
ea:ea:3e:1c:f4:a2:b1:b0:6e:53:05:46:90:aa:13:0c:d2:8e:
07:f4:8a:ed:41:f4:60:14:47:c7:33:9f:2b:89:92:2a:66:7c:
2d:e3:1a:3f:78:0a:a4:9e:71:3f:eb:ca:f3:ff:c4:3b:50:79:
4d:16:14:57:da:0d:38:47:30:a3:80:8c:db:25:98:9b:21:b6:
eb:02:8f:03:0b:61:36:27:d1:9a:d9:94:b4:a7:3c:2c:f0:3b:
34:42:99:d0:95:82:29:96:2d:81:24:f6:30:d1:39:a5:ef:a9:
74:a2:8c:25:6b:28:73:3c:45:a5:7e:a2:96:da:5c:4d:39:19:
1a:4e:33:09:1f:96:1d:1f:57:e8:f1:2c:cf:74:3c:35:23:1e:
26:a3:e7:b5:37:9f:04:de:5e:ab:ec:1f:84:06:8d:68:96:18:
cb:53:06:92:8e:b1:91:38:d5:da:21:9c:b3:88:a9:68:7a:8a:
89:5a:05:f0:af:ab:34:fe:77:1b:29:ae:69:07:5f:1f:3b:ed:
26:05:6a:75:8f:7e:63:08:af:2c:6b:28:9d:24:9d:dc:a1:1c:
d4:02:56:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org