Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/urHzjJ1Rd_8ZyWnzkIiWI2U7goQ.roa
File: urHzjJ1Rd_8ZyWnzkIiWI2U7goQ.roa (raw, json)
Hash identifier: pPDiT78egD5ZQcDUt5ROVOo71P3QhtGAuck4/WMdm/8=
Subject key identifier: BA:B1:F3:8C:9D:51:77:FF:19:C9:69:F3:90:88:96:23:65:3B:82:84
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0862
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/urHzjJ1Rd_8ZyWnzkIiWI2U7goQ.roa
Signing time: Tue 29 Sep 2020 09:51:59 +0000
ROA not before: Tue 29 Sep 2020 09:51:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2146 (0x862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BAB1F38C9D5177FF19C969F390889623653B8284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:91:09:bd:33:ea:0e:da:1b:b9:e0:04:09:
b2:c4:56:96:0c:1c:e4:50:65:e5:d7:b6:a8:9d:ec:
a2:58:4a:48:d6:f9:4f:b9:78:e5:56:2f:83:3d:31:
fe:5b:2f:e7:02:4a:cd:ac:ce:d9:2c:3c:2d:75:4c:
7c:98:83:4a:85:3e:87:c2:05:a6:a1:41:c7:9c:cf:
61:f1:05:10:0b:dc:04:cd:b8:83:b7:34:d6:04:5e:
66:73:82:50:e8:2c:2b:a2:28:d8:b2:57:88:df:74:
57:88:a9:7b:67:09:5b:c4:c6:79:02:99:44:d1:df:
2e:42:ba:e3:2f:da:42:55:75:ae:e2:83:8c:6d:7f:
33:07:1e:5d:72:15:ac:68:d6:68:25:f1:85:a6:90:
b4:fa:9d:d7:5a:4a:5a:39:3c:c0:03:d9:f0:87:34:
88:df:af:b4:b4:cc:f6:ab:ba:cc:34:ad:b4:12:26:
16:29:ad:5b:3e:36:27:56:a2:bc:c3:4a:0d:c1:f2:
c7:06:a1:98:d0:f3:8e:c7:e1:53:8c:d6:3f:02:12:
50:cb:80:b3:ad:fe:73:ad:e1:88:46:7a:35:73:31:
26:06:b9:2f:ec:a4:f9:b0:7e:51:53:76:3a:fc:de:
78:46:d9:98:90:ce:1b:cb:7b:7c:9c:2f:d4:ba:6d:
da:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B1:F3:8C:9D:51:77:FF:19:C9:69:F3:90:88:96:23:65:3B:82:84
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/urHzjJ1Rd_8ZyWnzkIiWI2U7goQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.128.0/20
Signature Algorithm: sha256WithRSAEncryption
c2:81:2b:ce:bd:5d:f4:ea:42:b3:4c:62:23:10:8b:0a:94:bd:
7f:51:b3:5f:9f:e8:cd:fc:27:fb:cd:ec:94:83:5f:ee:99:1c:
cc:30:17:8d:35:7d:4d:c1:de:f2:74:bc:a0:f2:5c:57:4c:36:
21:46:21:18:41:bf:09:9a:69:06:cb:77:c3:11:65:e9:f4:f7:
ec:63:68:e0:02:5c:b0:a5:64:8d:5a:bf:35:20:13:e3:99:26:
96:af:fd:1b:36:b0:e2:3d:e9:fd:77:e7:af:d4:df:7b:c1:79:
33:e5:46:14:24:b1:74:98:2b:78:2e:2f:f3:95:90:e6:d8:14:
92:55:f5:70:f0:03:13:03:2c:8c:76:07:00:e3:da:42:f2:4c:
e9:29:bf:22:9c:a7:e6:4a:2a:79:e2:10:53:89:93:fe:bd:c0:
d5:9a:fd:c4:00:60:08:2c:88:63:52:72:a7:86:e8:45:69:35:
2c:86:36:ff:22:4f:36:bd:af:55:3b:79:fa:db:13:a5:79:38:
d3:23:5e:91:ab:e4:e9:22:9b:f4:b2:3c:78:06:d3:fa:2c:1e:
93:3d:6f:8d:13:60:70:39:c9:22:9a:e1:93:31:5c:93:7a:33:
9b:92:33:b0:33:5f:f7:9b:b3:2b:10:da:87:5d:99:a6:92:ac:
6e:9b:44:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org