Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tPppIjsrZnCdG8qwlzV1-ip1kXw.roa
File: tPppIjsrZnCdG8qwlzV1-ip1kXw.roa (raw, json)
Hash identifier: nuZVZLjfNb0keQYo7IZL4KBeOmYvkBoiGB1LeEAWdCM=
Subject key identifier: B4:FA:69:22:3B:2B:66:70:9D:1B:CA:B0:97:35:75:FA:2A:75:91:7C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C97
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tPppIjsrZnCdG8qwlzV1-ip1kXw.roa
Signing time: Sun 07 Feb 2021 11:44:07 +0000
ROA not before: Sun 07 Feb 2021 11:44:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.144.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3223 (0xc97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B4FA69223B2B66709D1BCAB0973575FA2A75917C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dc:7f:eb:84:8d:78:14:df:75:f4:9f:e0:75:
72:75:e9:89:d5:71:e3:2d:be:72:f5:51:d6:5b:db:
e3:f7:99:3e:30:a2:30:b2:a1:de:63:27:22:f0:00:
61:30:19:86:3a:57:68:24:aa:41:28:e2:da:36:b4:
ad:b5:63:40:16:d4:7d:cb:d5:a6:99:38:78:a7:7d:
d2:7a:4e:97:02:70:9f:ff:84:39:4c:9a:3d:15:0d:
e4:7f:47:bd:70:c0:c3:73:6b:f4:d4:bd:c7:c1:c2:
0b:8e:59:17:20:79:dd:fd:84:be:d6:59:15:53:66:
0c:d0:81:23:6b:81:46:e6:d9:33:b1:5d:a5:28:26:
92:1d:05:08:9b:1d:2f:7d:a5:2c:94:54:2d:97:b1:
3d:cd:95:29:de:61:7b:d3:fe:91:9d:f4:a9:6d:fc:
21:0e:85:3f:5b:24:11:a3:4c:91:b1:89:b9:44:82:
d7:de:9f:ac:e9:cc:37:c2:77:bd:87:c3:c5:1c:48:
66:80:b0:86:ce:2d:69:fc:c5:65:8a:a7:00:07:be:
a4:ff:e1:11:b4:10:1b:48:73:b5:a9:6e:68:08:18:
75:50:66:58:a6:7a:c3:07:ce:de:ee:49:c6:d0:ef:
1c:11:19:b3:cd:56:ea:c1:b5:f1:9b:95:93:39:41:
43:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:FA:69:22:3B:2B:66:70:9D:1B:CA:B0:97:35:75:FA:2A:75:91:7C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tPppIjsrZnCdG8qwlzV1-ip1kXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.144.0/21
Signature Algorithm: sha256WithRSAEncryption
83:ae:d9:f9:e1:9b:a9:73:82:7d:0a:ef:74:3f:12:62:29:55:
7f:0b:61:f4:59:2b:49:b8:69:46:6c:6c:ba:f0:cd:4d:c0:0d:
4c:d6:f8:e0:02:2f:d1:28:bb:f8:aa:bf:7b:cc:42:ff:95:88:
92:cf:6b:07:bb:55:f0:c1:7d:ae:91:2d:b3:de:3d:93:20:84:
95:fd:eb:89:85:bc:51:c7:73:63:92:9e:43:61:5f:da:7c:00:
84:f0:b2:91:11:b2:83:48:f2:93:1f:71:e9:d0:ce:a9:b2:08:
10:5e:66:20:fd:e8:6b:96:0d:6d:3d:0d:5b:55:6c:e9:9c:11:
60:73:a3:b0:ff:c4:f7:7e:6e:27:62:77:37:c6:d9:32:d4:1a:
ac:7f:25:e2:fb:52:90:70:56:8f:15:79:3a:ca:6c:4b:8f:e5:
c9:f6:b4:02:77:e0:e2:1a:33:12:13:25:c1:65:6c:c0:39:bd:
d9:b2:c0:8d:3b:27:ca:23:d6:75:e4:a6:85:ee:d7:8b:0b:55:
aa:59:9a:61:ea:f7:04:65:31:92:9a:12:05:18:76:50:b7:0d:
a2:3a:20:89:3d:a4:f7:1a:0a:76:8c:f0:0d:03:f2:70:bf:ff:
50:64:65:85:48:0e:90:3a:c6:98:ee:ca:03:1c:62:55:c0:6b:
cd:97:6d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org