Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ngnHng7YaLgq-PohwVVWEtQy3iM.roa
File: ngnHng7YaLgq-PohwVVWEtQy3iM.roa (raw, json)
Hash identifier: h+XYvr0c6bCCzaCHrXL8aNoKTR/jUMVIFJ0smlK/AtU=
Subject key identifier: 9E:09:C7:9E:0E:D8:68:B8:2A:F8:FA:21:C1:55:56:12:D4:32:DE:23
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0893
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ngnHng7YaLgq-PohwVVWEtQy3iM.roa
Signing time: Tue 29 Sep 2020 09:52:10 +0000
ROA not before: Tue 29 Sep 2020 09:52:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2195 (0x893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E09C79E0ED868B82AF8FA21C1555612D432DE23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:2e:d7:44:82:3c:ae:7f:85:91:eb:54:0f:
95:ad:29:4f:7c:a0:f1:65:45:68:ec:fc:11:6e:d2:
3e:6b:cc:e3:6b:98:ac:84:23:bd:43:52:9b:6a:1b:
64:aa:62:27:17:58:f3:7a:4f:27:83:29:ac:34:80:
c3:b5:97:1c:43:94:c7:39:4c:18:d3:d5:e6:5d:60:
27:09:fd:f9:67:95:03:ee:0d:37:28:e7:7f:72:43:
4a:67:65:46:5d:ae:88:a5:39:fb:e1:12:1c:69:0c:
f7:30:af:74:bf:51:5d:5f:83:5a:a8:4e:d5:bf:32:
37:31:da:59:61:1c:5e:0d:df:cb:cb:dd:11:d3:71:
8a:c3:5a:45:0e:49:48:3d:f2:de:95:2a:35:5b:d0:
b8:28:ee:73:32:3f:47:9b:b1:7d:fe:38:48:dd:58:
c0:03:76:85:0b:2c:a2:b3:31:f3:be:78:1b:4c:f3:
70:53:61:b9:49:65:22:c1:8e:eb:1f:1a:37:81:d7:
3d:73:db:4c:d0:ff:29:5f:a7:a2:8f:ce:b9:bd:9f:
f2:f4:e7:e0:38:ca:29:7e:3d:ba:3f:d2:3e:3c:64:
87:c6:0c:42:62:67:ab:95:94:1e:aa:72:70:a3:ca:
3f:af:73:47:f4:22:ac:8f:dc:7c:12:1e:cb:f9:a8:
16:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:09:C7:9E:0E:D8:68:B8:2A:F8:FA:21:C1:55:56:12:D4:32:DE:23
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ngnHng7YaLgq-PohwVVWEtQy3iM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.160.0/21
Signature Algorithm: sha256WithRSAEncryption
42:bc:dd:16:ff:b8:d2:ba:c3:60:56:0d:bb:e4:8e:74:8b:d3:
59:10:5a:95:ba:3e:fe:85:27:20:e6:11:93:ed:d8:54:e1:39:
4b:b9:67:0a:40:47:fb:6d:69:98:05:b8:71:65:a4:19:d2:85:
d6:10:56:b1:68:53:2c:74:9a:41:c2:2c:3f:4b:b6:1a:af:33:
a0:6c:49:1d:f1:c6:d0:88:99:01:c3:52:7d:0c:55:49:5b:b5:
6f:ac:98:c3:87:66:b4:30:6a:a4:df:97:f7:80:26:f9:a8:16:
7e:f7:51:71:8d:fd:a6:70:a1:f0:38:c0:ba:e2:ef:cd:87:9c:
66:32:7d:cf:12:e4:7e:af:08:7f:8c:9d:8f:b8:97:1b:86:17:
75:7d:72:2d:07:33:67:da:86:52:01:f7:9f:6a:4b:27:b7:2e:
98:8d:2b:8f:37:21:3d:86:3a:24:9b:47:3a:66:86:53:06:8d:
e0:ca:4f:c0:4b:b6:78:bc:a6:d3:d7:fc:f4:4b:f5:ae:a9:f6:
47:d0:54:2b:6c:b8:01:68:e3:e1:d4:51:27:59:fe:24:43:d7:
ec:01:c6:0e:02:8d:bd:9a:12:14:f8:8b:d9:b2:63:06:8a:b0:
8d:cd:f5:59:58:53:71:8e:ce:fa:92:34:93:c9:53:50:ff:67:
a6:9b:3a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org