Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rjT-K3Ao7hARfTHcDOkCS2Btq6E.roa
File: rjT-K3Ao7hARfTHcDOkCS2Btq6E.roa (raw, json)
Hash identifier: X/VDhhA+lLqIWZk6pUVRbpFUb3Tq+DGeM8ZDh+EBuMY=
Subject key identifier: AE:34:FE:2B:70:28:EE:10:11:7D:31:DC:0C:E9:02:4B:60:6D:AB:A1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 085C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rjT-K3Ao7hARfTHcDOkCS2Btq6E.roa
Signing time: Tue 29 Sep 2020 09:51:56 +0000
ROA not before: Tue 29 Sep 2020 09:51:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.88.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2140 (0x85c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE34FE2B7028EE10117D31DC0CE9024B606DABA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:65:e2:db:92:eb:86:be:b0:81:1c:b7:50:5e:
3b:d3:3a:46:19:d2:a8:82:2e:d0:e5:93:8b:25:54:
71:f9:e3:16:85:01:b7:f0:60:d5:17:89:d7:8e:76:
28:4a:06:46:c5:b1:66:a4:49:4b:f3:88:5b:35:d3:
72:78:b4:29:ef:16:50:cd:45:ba:48:a6:63:98:af:
b6:25:04:4d:c6:82:aa:f4:34:b3:ac:f1:63:34:52:
90:eb:f4:09:c3:11:a1:31:4a:d4:7a:1f:4a:4a:13:
b7:c7:37:0f:b0:80:ad:d5:5c:5f:07:e4:54:5e:b6:
23:4c:a1:0a:e5:79:5c:a4:35:a8:f0:50:74:a8:cd:
d4:a7:54:3d:5a:be:3d:42:c7:36:20:c7:cf:e9:56:
5a:2a:0a:ac:ca:09:4a:14:d5:7d:fa:b1:68:1a:6a:
35:cc:c4:e7:0d:55:a7:7f:53:e0:52:45:3e:85:1c:
86:24:08:1f:42:99:0b:cf:26:a8:9a:dd:70:b5:44:
8f:7f:0a:53:68:74:97:70:98:9f:23:57:9a:2a:83:
2c:14:88:34:9b:c1:7b:20:13:59:56:e7:a7:6b:2b:
3e:d4:8b:44:69:f3:4a:17:ec:dc:57:f6:81:2e:b5:
85:9c:65:e0:20:54:a1:59:26:40:09:3c:16:37:bc:
48:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:34:FE:2B:70:28:EE:10:11:7D:31:DC:0C:E9:02:4B:60:6D:AB:A1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rjT-K3Ao7hARfTHcDOkCS2Btq6E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.88.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:55:59:05:b3:9f:25:c1:40:9e:aa:b0:01:21:71:89:b3:e1:
3e:f0:29:8c:26:7c:3b:73:a6:6a:95:b9:75:d3:d2:33:db:45:
1e:0a:b8:dd:5e:59:62:ee:b3:70:78:fd:62:f5:7b:88:95:d8:
a0:09:4c:8c:73:65:3e:22:f3:4b:03:f6:64:de:93:8d:71:60:
36:5c:fd:48:f9:3e:9e:56:b9:8d:49:ba:a7:b8:20:1f:ee:53:
d3:35:56:0b:11:ac:57:b0:e0:42:40:44:18:0c:3f:cc:a7:cf:
b1:81:f1:63:dd:26:c5:90:a9:82:73:8b:88:68:e5:76:15:7d:
e9:6d:a8:21:4e:76:16:5a:8c:47:ec:cd:63:41:5b:e4:83:37:
59:3d:65:61:8e:68:2e:b9:a4:fe:88:44:5b:d1:c1:46:06:88:
83:72:41:e9:51:59:19:4e:15:d4:12:6a:90:a5:25:85:4a:ef:
4b:d2:30:9a:19:63:5a:5f:1d:5e:79:9b:c6:5a:a5:93:b9:28:
63:59:01:e9:6d:da:d2:58:ce:fe:39:70:66:50:5c:03:f2:35:
d5:77:e1:b0:1a:6a:d8:cb:b0:f5:03:97:78:0a:3f:41:5a:57:
e6:a5:5e:00:a7:1b:2c:b5:f5:c7:78:a8:6e:8d:d9:27:9a:61:
70:51:f1:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org