Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mO4ho2W1NpN2R96sDjVdSd_EMQo.roa
File: mO4ho2W1NpN2R96sDjVdSd_EMQo.roa (raw, json)
Hash identifier: XNZjNM2s9izdvMdw9v9w4P1/agvpGGGiAlYP8wj6Lrw=
Subject key identifier: 98:EE:21:A3:65:B5:36:93:76:47:DE:AC:0E:35:5D:49:DF:C4:31:0A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C83
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mO4ho2W1NpN2R96sDjVdSd_EMQo.roa
Signing time: Sun 07 Feb 2021 11:43:43 +0000
ROA not before: Sun 07 Feb 2021 11:43:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 106.105.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3203 (0xc83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=98EE21A365B536937647DEAC0E355D49DFC4310A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e1:b4:46:0c:6e:60:f4:5f:af:41:54:dd:14:
ab:56:e0:d3:7d:9b:b5:7c:94:1e:26:87:85:4f:e7:
d1:6c:ab:70:70:a6:08:af:1b:c1:28:cc:0c:25:e6:
e3:22:59:df:ac:c2:f3:42:ef:02:49:75:e8:6e:20:
60:96:2d:e1:9b:8e:ef:8f:c1:2e:66:c9:84:66:5c:
34:34:37:f8:64:14:4f:1b:d0:85:6c:dc:0b:aa:89:
de:bc:e3:35:20:3d:32:35:51:35:a2:1e:9f:1f:af:
4a:5e:38:50:4b:1a:29:93:d5:32:be:ff:14:02:54:
19:da:99:78:26:f7:02:ff:dc:a5:2c:74:6d:cc:97:
73:7e:f8:8d:79:fd:c1:31:da:1f:65:84:2a:e2:84:
14:d1:df:4f:4c:b8:32:48:51:65:e0:eb:83:59:e4:
bc:bd:4c:b5:6c:55:f3:df:4f:e7:de:49:81:de:9b:
91:9a:cd:ca:0d:9b:64:59:74:58:5b:50:3b:c0:e9:
2c:fd:3c:90:ab:01:da:af:80:8c:3f:ed:36:6a:c7:
ac:05:6c:51:52:a3:77:20:8b:f2:5e:d1:cb:cb:42:
d2:97:21:5d:c0:8c:55:b1:82:7b:d0:c0:bc:b5:b2:
53:87:27:c6:80:40:64:f5:2e:f4:bb:25:40:34:62:
77:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:EE:21:A3:65:B5:36:93:76:47:DE:AC:0E:35:5D:49:DF:C4:31:0A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mO4ho2W1NpN2R96sDjVdSd_EMQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/20
Signature Algorithm: sha256WithRSAEncryption
ae:88:c3:b3:e6:3e:7d:be:0d:3a:56:04:8d:e7:c7:cb:59:ce:
90:55:22:64:2f:6d:6e:78:8e:c2:39:34:cf:2a:33:7e:8d:db:
da:21:c7:a5:89:12:a8:82:c8:a7:ef:19:58:aa:13:13:9b:bd:
f1:69:cf:4c:a6:92:03:1f:f2:ce:0e:51:03:8c:92:5b:b8:34:
07:ec:5b:70:0b:0e:f9:a2:26:cc:cf:36:7b:aa:d8:4c:8f:c2:
aa:eb:89:e3:93:af:a7:ca:06:77:82:8a:a1:19:d3:02:e3:29:
52:86:a6:33:ec:1e:51:ed:7a:fa:a9:3a:47:48:dd:9a:2a:32:
ee:3d:f0:1f:eb:d2:bc:04:33:14:59:4a:54:cb:62:3b:46:de:
b4:87:53:90:70:4b:53:6c:19:d0:d1:5f:80:78:be:01:12:aa:
8e:61:8d:b7:69:13:90:7e:7a:b0:47:63:2c:ae:e7:f1:0a:73:
9b:f7:3e:b5:bc:78:54:11:bb:5a:5d:4b:65:4d:f2:0e:b0:46:
b0:1f:c5:2d:d5:f4:b7:07:5e:4a:97:31:85:3a:d4:a8:a3:73:
33:92:fb:d8:bf:b6:a1:af:80:77:e6:6f:9f:15:79:5a:04:47:
4c:d8:5e:28:5c:ec:91:8b:96:50:73:40:75:21:1d:ed:e7:5b:
31:06:43:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org