Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/v5Zp4XpCy-3Z0JOgGs8H9FjKMa4.roa
File: v5Zp4XpCy-3Z0JOgGs8H9FjKMa4.roa (raw, json)
Hash identifier: G71A3b2fB9HuRS+7RiSoRakBIKCoyOO+ep8EanDNj4I=
Subject key identifier: BF:96:69:E1:7A:42:CB:ED:D9:D0:93:A0:1A:CF:07:F4:58:CA:31:AE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C27
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v5Zp4XpCy-3Z0JOgGs8H9FjKMa4.roa
Signing time: Sun 07 Feb 2021 07:05:26 +0000
ROA not before: Sun 07 Feb 2021 07:05:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3111 (0xc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:05:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BF9669E17A42CBEDD9D093A01ACF07F458CA31AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:65:fb:89:3b:a0:d8:46:65:91:41:6f:89:65:
86:db:0d:7c:d9:0b:a1:02:a9:54:0b:84:c3:09:d1:
e3:4f:f5:be:b1:27:7a:d8:03:40:06:78:f3:2b:5b:
69:1f:f7:cb:ec:d6:4f:4e:51:f4:10:68:0f:44:f7:
58:29:db:ce:78:7d:40:12:e8:d6:91:22:95:29:4d:
d1:71:1c:aa:dc:a3:32:35:0c:2f:39:f2:8f:d1:bb:
0d:70:48:a7:78:9e:b0:25:94:2a:99:51:5b:66:e5:
94:12:67:61:1d:be:a0:64:ed:d0:96:ad:01:5a:e3:
1f:e6:cd:c8:52:f7:0b:04:5a:e9:05:37:da:c6:25:
4f:b6:bb:d4:ab:eb:b6:1f:97:65:6a:f4:f5:6c:a2:
14:2d:3c:75:63:41:cc:65:38:45:3f:70:c2:c9:e9:
97:56:04:f2:84:98:10:86:20:2b:fa:85:a6:2f:cc:
b9:f7:0a:38:ba:bf:35:72:48:72:27:5b:2f:7f:59:
4e:3e:e6:0f:ab:8a:1e:09:a3:cf:88:b8:d1:5a:5c:
be:df:f7:ec:76:a7:8a:7a:ef:a7:ef:43:00:d3:ba:
a6:27:ca:7e:54:df:c3:fd:bd:a2:69:c1:40:7e:35:
6c:6d:b4:0f:5b:d9:67:72:e3:68:2f:ea:00:87:66:
ba:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:96:69:E1:7A:42:CB:ED:D9:D0:93:A0:1A:CF:07:F4:58:CA:31:AE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v5Zp4XpCy-3Z0JOgGs8H9FjKMa4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.112.0/20
Signature Algorithm: sha256WithRSAEncryption
b4:34:cb:8c:6d:d0:41:2a:c5:de:cf:ef:63:c6:39:00:8a:e6:
bb:04:a2:83:53:3c:b7:24:ec:a9:22:37:93:c7:38:b1:0a:98:
61:b9:61:f9:18:4a:e5:4e:a8:76:a5:50:5b:cd:77:d6:5c:3f:
7c:82:99:3a:da:74:25:db:68:d8:34:6c:0b:93:88:86:2f:e3:
24:5a:ac:bc:8a:a2:6d:13:0b:59:9e:b3:4f:23:05:0e:15:c9:
2f:a1:6c:7c:97:43:3a:78:11:fa:c3:94:41:1c:12:e8:66:78:
11:fd:e2:5d:f4:31:23:aa:52:78:35:71:08:d6:3c:80:4b:3e:
8a:11:06:d2:fc:ea:67:eb:51:99:a7:bb:76:ec:90:5f:a4:5e:
bb:e4:56:68:34:70:79:8b:7e:0a:38:cd:b2:d7:f6:e0:45:77:
62:ac:de:4f:a0:51:85:59:56:68:32:30:53:d2:61:62:bb:9c:
88:17:79:7f:09:1c:72:7f:c8:f0:bd:bf:43:84:3d:a9:b9:b4:
4b:44:c5:2a:d4:33:91:c9:4e:ce:54:a9:97:41:3b:d3:51:99:
0f:9d:a4:32:80:0d:81:33:cd:03:5c:3c:d5:8e:be:b4:ed:c5:
e6:b7:dc:67:bc:ce:16:fa:b2:78:2f:bf:d7:a0:46:6b:27:cb:
9b:62:e4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org