Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/stuXXJUiB5yVDPBwmNKQWkQXZT0.roa
File: stuXXJUiB5yVDPBwmNKQWkQXZT0.roa (raw, json)
Hash identifier: d//B1g6jhtOUahmNjnZDhhZtzjy9wLrM9d0SFOIfaO8=
Subject key identifier: B2:DB:97:5C:95:22:07:9C:95:0C:F0:70:98:D2:90:5A:44:17:65:3D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08D7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/stuXXJUiB5yVDPBwmNKQWkQXZT0.roa
Signing time: Tue 29 Sep 2020 09:52:30 +0000
ROA not before: Tue 29 Sep 2020 09:52:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131586
IP address blocks: 106.106.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2263 (0x8d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B2DB975C9522079C950CF07098D2905A4417653D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ac:ab:88:34:c2:9e:89:df:74:af:ad:92:4b:
29:da:9c:fe:ca:96:08:fa:64:da:5e:89:c8:63:45:
ee:15:77:18:36:fe:58:a4:16:ac:c6:56:53:fc:dd:
65:47:50:e7:95:20:d8:ae:73:d2:ac:16:ad:88:7c:
25:1a:ba:f2:9a:7f:8a:62:81:cd:f4:dc:15:e7:fe:
14:56:db:9e:51:3d:95:07:3f:2f:5d:ec:ad:3e:af:
2e:d3:e0:80:09:99:cd:3b:de:a0:0a:90:1f:f7:04:
23:53:2d:bf:c7:70:ce:9a:06:ea:b2:17:53:ce:11:
b2:bb:15:5d:72:34:29:3a:87:64:31:98:5a:ed:e8:
5f:ae:36:10:2c:07:7a:e0:24:b7:8a:a9:32:56:a3:
04:30:64:3c:2c:af:74:4f:c7:1e:98:2e:0a:bd:f1:
df:fc:21:80:f4:c7:e5:b4:2c:de:81:bd:58:0d:ea:
a5:c0:3a:cf:29:51:85:fd:e8:b9:2d:6d:00:e2:7f:
e9:bc:55:82:a2:1f:dc:45:90:af:12:de:a3:51:7f:
00:0d:fd:1e:54:b1:34:47:ee:8c:fc:18:f6:cc:31:
fd:49:67:02:c4:27:94:c0:01:ab:0c:a3:4b:bb:2c:
31:42:57:57:8f:a6:23:f2:d5:70:95:f3:80:8a:3a:
4e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DB:97:5C:95:22:07:9C:95:0C:F0:70:98:D2:90:5A:44:17:65:3D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/stuXXJUiB5yVDPBwmNKQWkQXZT0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a6:48:fd:48:40:35:19:e3:15:51:8e:cd:3a:01:d5:b2:9e:45:
df:f2:2c:74:73:7a:c4:b5:ea:ce:6f:3a:bb:07:db:09:69:8c:
e1:b9:4e:c8:d5:8f:2e:f0:f8:49:e0:e6:13:d4:23:7f:39:2f:
87:18:c9:84:18:72:f4:b2:33:7c:18:7a:2c:fa:53:47:52:66:
a9:98:3a:a3:80:c4:d2:2e:ab:d1:e3:98:23:42:1b:b3:39:0c:
32:f3:34:25:b8:aa:7e:0b:9d:f8:2c:d8:8a:d8:da:1f:76:da:
ee:5a:97:49:61:f1:7e:10:ed:f4:15:17:1e:2d:9a:c9:42:a3:
8c:e8:8e:0e:90:6d:7f:06:1e:fe:f6:07:c2:13:df:0e:49:c3:
25:ac:12:cf:9a:e3:7d:dc:cf:f7:11:26:0d:91:99:dc:ad:eb:
83:21:ff:d4:ff:bb:53:54:75:40:59:2b:37:8c:57:ca:03:8f:
be:5c:91:3e:cc:6d:5b:a9:72:7a:05:cf:e4:b7:d7:ce:91:b2:
09:9f:15:2c:dc:77:10:61:93:18:af:d9:79:66:6f:72:7d:b5:
84:73:47:6e:d5:19:50:e4:66:5c:d8:64:dc:ae:2e:49:4d:96:
f9:bb:a7:cd:58:ae:2b:08:ae:4b:60:04:89:cd:83:bb:2d:6a:
98:28:e6:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org