Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mMSLv8f4LyfGt1GFIU-E5eL9xpw.roa
File: mMSLv8f4LyfGt1GFIU-E5eL9xpw.roa (raw, json)
Hash identifier: 0XCuQgASICNKiYk5PbxhEApVPzour6rWt9jIE4Pbwq0=
Subject key identifier: 98:C4:8B:BF:C7:F8:2F:27:C6:B7:51:85:21:4F:84:E5:E2:FD:C6:9C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E7D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mMSLv8f4LyfGt1GFIU-E5eL9xpw.roa
Signing time: Wed 29 Sep 2021 02:43:40 +0000
ROA not before: Wed 29 Sep 2021 02:43:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.107.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3709 (0xe7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=98C48BBFC7F82F27C6B75185214F84E5E2FDC69C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:73:b5:3c:ed:40:87:73:33:43:d1:49:a4:ed:
65:1e:a9:25:73:15:44:d6:29:bd:75:6e:90:b8:b0:
6c:42:e3:26:22:4e:32:9f:f2:f7:aa:35:02:a0:b3:
61:88:e1:e7:a8:f1:ea:fb:af:cc:00:9d:95:05:c8:
c2:64:70:55:0e:d2:5f:39:51:b9:cf:2f:21:ca:17:
08:6b:d1:f4:f8:88:e6:60:22:86:38:f2:85:89:ee:
b8:ad:eb:78:f4:dc:6a:45:6a:78:f5:b6:62:7e:9f:
74:9d:ba:0c:26:39:d6:68:3f:57:4d:e6:e7:0e:7f:
8d:de:41:d7:a0:2d:36:18:73:55:a2:49:c9:73:da:
53:c1:58:75:45:8a:e8:8e:22:bc:a1:a3:f2:a3:73:
ff:35:59:b0:2b:7a:11:5c:a0:59:dd:be:d1:68:5d:
57:30:61:c9:29:b2:af:64:fa:7c:ba:62:34:cd:d1:
44:0d:84:99:dc:26:8e:52:df:0e:77:2d:20:61:89:
61:c7:f4:a2:b9:20:a2:8b:79:83:7b:9e:d8:7f:95:
2b:27:5a:93:7e:8c:00:1a:e1:b7:52:2e:47:ef:67:
3c:a3:40:98:d1:b7:de:78:ac:e9:5c:40:ca:bb:23:
48:78:89:79:ec:b5:33:c0:a6:bd:6e:71:67:e4:28:
84:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C4:8B:BF:C7:F8:2F:27:C6:B7:51:85:21:4F:84:E5:E2:FD:C6:9C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mMSLv8f4LyfGt1GFIU-E5eL9xpw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.175.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:da:61:bb:5b:61:99:f1:93:3d:86:26:3a:d8:49:97:1f:2a:
4b:22:01:8d:f0:31:b3:3d:56:9d:72:46:ca:b2:1f:b8:8a:28:
c3:4f:22:b6:9e:6d:6c:17:2a:23:ca:d4:10:74:c4:ee:e5:36:
9e:1b:00:84:d4:75:44:b3:74:d2:89:40:44:60:af:8c:fb:1d:
5a:af:6d:1d:d3:39:2b:69:ea:f0:38:23:57:3d:82:02:de:c0:
bf:31:5d:61:4c:d2:92:a7:0d:16:98:05:8b:2e:e2:48:4b:8f:
f5:48:31:02:b5:de:ab:42:99:ed:15:00:4f:b5:eb:80:9b:e7:
be:19:60:e7:a9:de:7f:91:34:ec:f8:13:ca:7a:ac:5a:df:9c:
4a:1b:2f:c8:14:37:de:0c:d4:3a:58:f4:50:19:a9:11:95:a8:
b7:91:f6:51:12:df:c4:77:86:5b:6f:1d:7c:ca:05:0a:30:99:
db:89:0d:af:24:2c:6e:02:8a:80:59:aa:6e:43:ad:c9:53:8d:
1b:8e:e5:e4:fa:de:c8:76:be:01:a0:16:f6:03:df:63:d0:65:
85:ca:27:0f:cd:6a:5e:08:f3:17:c3:dc:e4:b6:bd:7f:f6:fc:
93:e8:b3:55:a4:1b:cb:10:98:47:92:53:80:85:96:57:6b:69:
6f:cf:08:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org