Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/o2YyzrJsQWq2HUiFeGg5exZzBXw.roa
File: o2YyzrJsQWq2HUiFeGg5exZzBXw.roa (raw, json)
Hash identifier: QHf7P2J2J7IIhpApkwPxHII2oZJYj8RM/vacYnZGqrc=
Subject key identifier: A3:66:32:CE:B2:6C:41:6A:B6:1D:48:85:78:68:39:7B:16:73:05:7C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E6E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/o2YyzrJsQWq2HUiFeGg5exZzBXw.roa
Signing time: Wed 29 Sep 2021 02:43:35 +0000
ROA not before: Wed 29 Sep 2021 02:43:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131584
IP address blocks: 106.105.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3694 (0xe6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A36632CEB26C416AB61D48857868397B1673057C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:43:f5:d4:88:b3:eb:5c:ed:cd:42:1c:fa:79:
4d:b7:3d:aa:13:b7:b0:14:9e:6e:0a:7d:15:e3:9d:
c1:ce:5f:35:d7:22:8f:da:41:93:8a:f6:80:86:f9:
52:39:af:c4:23:c7:87:f4:b5:b7:b2:e7:f1:a8:10:
cf:22:79:93:15:4b:04:ee:4d:ac:c2:e1:2c:ba:d9:
0e:c2:c6:18:6a:12:cb:9c:13:da:0c:05:fe:e8:b4:
09:0f:da:2d:38:a4:dc:b4:f9:da:08:d0:7e:5f:89:
37:8f:25:1d:78:87:c7:7d:76:24:37:6f:de:3d:96:
e1:ff:b0:4c:69:1d:e8:9a:70:c6:80:d5:c7:cf:94:
28:50:f1:e3:82:db:ed:57:cf:78:5b:8b:9b:e9:32:
d3:3e:52:99:4c:30:9a:ff:55:9a:90:f6:80:59:8d:
ae:66:0e:23:37:c0:72:43:0b:64:e8:f6:5b:66:57:
15:f2:15:c9:f9:58:9d:2a:46:80:ce:1d:20:c3:51:
c6:95:2f:ca:20:26:35:53:1d:f5:79:ea:98:ec:ee:
2b:09:fa:58:4f:ff:82:78:a8:ce:d5:bd:38:4c:c5:
bf:bf:ce:b5:1f:a8:cd:61:5f:06:ab:39:2b:9f:1a:
f2:30:d3:0b:71:15:e2:7a:8d:ad:ac:c3:12:66:ce:
ba:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:66:32:CE:B2:6C:41:6A:B6:1D:48:85:78:68:39:7B:16:73:05:7C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/o2YyzrJsQWq2HUiFeGg5exZzBXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.182.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:08:e9:66:dd:72:a7:e9:f7:60:cd:48:ab:ca:5e:b9:e8:41:
db:bf:a6:6e:dd:79:aa:46:97:6c:58:43:07:42:08:d0:63:0c:
39:14:a3:ef:0a:69:b7:d6:46:fd:5b:17:bb:ca:dd:b5:1b:6e:
24:cd:42:e4:e1:7c:ee:67:e6:54:b6:91:82:9e:f3:7e:e4:f2:
78:30:a4:a9:5f:f2:3f:6c:bb:cf:e6:b8:07:39:9f:98:c4:57:
d6:36:5f:96:47:64:08:f5:e6:52:f0:16:bc:7d:ca:d9:76:02:
bb:0e:e0:a4:04:0a:b4:5c:4c:f9:46:f3:f7:5f:3a:16:05:03:
60:13:ef:59:37:15:e5:d2:6a:a4:20:68:1b:90:fd:65:7b:08:
c5:3c:1b:32:bb:7d:37:e0:eb:d8:34:01:44:53:dc:c6:b2:1e:
25:41:00:67:4a:d4:cf:ef:de:34:af:52:bb:43:54:49:21:ef:
fd:84:3f:f5:4b:f8:3e:e3:63:74:6d:b0:42:36:b4:8d:22:37:
64:82:7c:b8:90:8a:30:95:14:3c:5d:be:9e:78:d6:b9:3e:ed:
1a:0e:04:4e:9c:2a:b1:76:fa:79:25:43:f7:18:fc:ad:db:3f:
6d:6a:17:b2:71:3a:9d:e9:26:4d:f6:74:13:7c:95:22:c2:00:
8c:21:a4:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org