Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/p4iJXxXF4u5CBL4qE4OM7JIoQgI.roa
File: p4iJXxXF4u5CBL4qE4OM7JIoQgI.roa (raw, json)
Hash identifier: uug8M9K4GjefTWl2L2sjeJlsmlshqi+yYzjK4FUaxOM=
Subject key identifier: A7:88:89:5F:15:C5:E2:EE:42:04:BE:2A:13:83:8C:EC:92:28:42:02
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0889
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/p4iJXxXF4u5CBL4qE4OM7JIoQgI.roa
Signing time: Tue 29 Sep 2020 09:52:08 +0000
ROA not before: Tue 29 Sep 2020 09:52:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 106.105.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2185 (0x889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A788895F15C5E2EE4204BE2A13838CEC92284202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:64:09:a2:ac:c0:43:0b:d7:f0:a5:c2:69:e2:
44:ac:3e:ce:83:be:02:af:ef:24:3b:f2:df:22:64:
1b:a7:7b:fc:1c:a6:6b:c5:e7:b6:e0:5d:e4:b1:51:
f1:00:19:6b:3a:f0:6c:90:97:8a:51:72:c7:c2:aa:
4a:86:7d:59:ea:34:b7:60:54:17:43:0d:93:9f:92:
72:b2:c2:e0:bf:a6:5e:15:eb:e3:76:16:8d:c4:00:
94:51:70:55:fa:1b:08:62:76:42:90:ba:bf:6b:84:
2e:1f:a0:6a:f5:7a:f7:bc:52:2a:b7:a9:69:54:22:
ba:bf:4d:6d:6a:52:15:7d:9b:d5:65:37:5f:9c:f9:
36:8a:cf:12:08:fd:58:59:92:66:2a:be:6a:32:07:
d7:03:3c:50:8d:f7:cc:a2:65:de:4b:64:da:db:98:
2b:bd:53:8e:94:ce:8f:03:95:6b:ca:7d:13:7d:78:
fc:04:54:49:1b:4a:17:db:22:e3:92:dc:d0:f2:05:
61:b4:cd:0c:2e:b6:70:80:da:f2:d0:73:55:3d:10:
27:a5:fa:2c:b2:ab:fb:78:31:62:83:89:0d:b3:c3:
39:de:23:30:a2:16:47:57:b8:e3:40:8c:8c:4b:e1:
b6:2c:88:64:a2:0b:cf:5b:79:3e:51:60:8e:0f:8c:
84:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:88:89:5F:15:C5:E2:EE:42:04:BE:2A:13:83:8C:EC:92:28:42:02
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/p4iJXxXF4u5CBL4qE4OM7JIoQgI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.183.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:1e:25:d2:6c:b0:19:e8:c3:d5:6b:46:a8:1c:d3:17:33:95:
47:d6:0c:bc:23:8a:b1:05:48:1d:a9:fd:d4:18:55:92:2e:90:
84:54:58:64:a8:f5:41:8d:8b:7c:73:42:5b:cb:b6:ca:a6:99:
cd:62:7a:f9:5c:21:81:f7:69:b5:82:60:25:7c:f5:df:7d:4b:
7d:bb:50:14:0e:8e:8a:61:14:1e:3a:ff:28:b4:bb:83:e4:37:
cc:da:2d:be:73:b7:b9:9d:f1:42:a1:27:2a:43:61:de:01:91:
00:d6:9f:88:a6:66:9e:8a:58:2c:26:62:26:9e:3b:9b:11:aa:
41:21:23:75:f8:c1:90:a7:ed:c4:7d:09:69:53:39:02:58:96:
23:60:2c:39:e4:92:f5:a1:49:47:a5:36:21:e6:c3:0c:c9:56:
c5:f3:d8:c2:05:af:21:bd:e7:49:81:27:13:c0:37:8a:7f:8f:
a0:b6:0f:e3:0d:f4:fa:0d:70:82:65:d2:5d:2c:cd:97:86:6e:
98:ca:ab:cc:e7:3d:33:62:fd:e5:44:f3:30:9b:7a:dd:6a:72:
a2:db:47:48:44:3a:44:db:15:9d:8f:2a:f1:e2:ee:3d:a7:cd:
8c:f2:e1:22:cb:1e:bc:8b:86:29:48:14:31:1e:bf:d5:df:97:
2a:50:03:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org