Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/nIvMm8tkkZuGFsf8US2HAyukO0A.roa
File: nIvMm8tkkZuGFsf8US2HAyukO0A.roa (raw, json)
Hash identifier: n2rsQYHlsePQvfVVz9SGZDW6pnZ6zINKK2qdynmmYWw=
Subject key identifier: 9C:8B:CC:9B:CB:64:91:9B:86:16:C7:FC:51:2D:87:03:2B:A4:3B:40
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C49
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nIvMm8tkkZuGFsf8US2HAyukO0A.roa
Signing time: Sun 07 Feb 2021 07:34:43 +0000
ROA not before: Sun 07 Feb 2021 07:34:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131586
IP address blocks: 106.106.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3145 (0xc49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:34:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9C8BCC9BCB64919B8616C7FC512D87032BA43B40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0b:93:03:a7:da:bc:4b:68:5d:7a:22:b8:2e:
dd:b2:d2:17:3e:02:84:ca:ca:a5:0a:1d:46:63:e6:
98:df:3b:94:6a:a5:0e:6a:f1:bd:82:0a:d0:0e:69:
34:fe:48:89:44:95:ae:d5:55:ad:04:e6:94:6f:5e:
b3:5e:6b:de:33:e3:71:2e:13:b1:98:cc:35:71:ee:
a0:cb:fe:b5:c6:9b:ab:6b:b2:d9:81:1c:7e:d9:43:
36:57:08:da:8d:43:72:74:8b:f3:1f:2e:d1:c3:08:
33:59:4b:62:8d:33:d4:b1:54:c9:f2:b7:9a:16:cc:
c8:2e:87:df:78:3c:2f:3c:36:a5:fe:11:b0:33:91:
eb:f1:8d:c4:c6:d9:17:d4:8c:26:48:ee:d3:4d:64:
67:13:ee:bc:c7:2c:e6:ec:b1:ad:13:fa:eb:8f:16:
56:3e:4b:35:7d:6a:51:4f:93:65:14:f3:2b:82:99:
cd:0c:c2:a7:6a:01:45:53:55:2e:4c:d6:86:90:f6:
65:00:03:0c:86:f6:c6:a4:5e:6d:34:2f:3c:61:d8:
af:1d:ab:9a:d9:dc:68:da:68:de:cb:a1:6c:a5:de:
3c:a5:76:e4:24:f6:d1:99:5a:24:f4:f0:3b:62:27:
a3:4f:43:0a:e4:09:8e:b0:b1:65:db:ef:e5:20:61:
14:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8B:CC:9B:CB:64:91:9B:86:16:C7:FC:51:2D:87:03:2B:A4:3B:40
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nIvMm8tkkZuGFsf8US2HAyukO0A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.0.0/17
Signature Algorithm: sha256WithRSAEncryption
05:2a:86:70:4f:9d:ff:d6:a5:19:f8:82:d6:d9:f8:51:ae:ed:
ed:d4:19:7c:6e:8b:f3:fa:df:07:d0:70:d1:0e:47:3b:db:45:
5d:56:56:36:67:41:7e:d3:bd:14:a4:0c:2d:10:84:dc:48:c5:
70:22:68:18:24:75:3c:e6:c7:88:67:75:d8:a1:4c:02:e6:50:
1e:ec:4d:1f:91:93:57:c6:f0:95:e9:53:ea:06:43:0a:c4:20:
00:d6:81:5d:f6:13:d9:76:45:e4:06:d9:e3:d4:18:84:4d:5c:
2c:46:6d:f5:34:b5:b7:95:f3:87:4f:9c:b8:b3:cd:ad:f4:42:
2a:68:cd:73:c0:e7:78:9d:5e:b2:3d:78:d0:80:f6:7a:d3:f2:
dd:ac:44:1b:7d:48:e6:fc:34:96:43:99:ec:64:04:48:99:82:
53:ef:af:c6:90:cd:a0:8d:d9:28:10:98:f6:cb:1a:44:d8:f9:
b3:00:12:81:5f:a4:77:05:b1:69:d5:5d:b5:97:96:5e:e2:9f:
f2:de:ab:b9:ed:4c:cc:98:c8:da:4a:ec:a8:82:d1:49:d4:0f:
99:12:a7:1f:83:25:cf:68:dd:9a:86:2a:53:d0:8a:e6:b0:6b:
f9:a4:2e:c8:6f:7d:c2:34:06:95:4c:97:ee:f2:97:b6:bc:b8:
53:bd:ca:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org