Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vKWDGKax32GfUHt7VaYCUXtuwLU.roa
File: vKWDGKax32GfUHt7VaYCUXtuwLU.roa (raw, json)
Hash identifier: ABZLEDgDPRoUjWY++GWHMmUi/KQynzjlN+z58eOdkM8=
Subject key identifier: BC:A5:83:18:A6:B1:DF:61:9F:50:7B:7B:55:A6:02:51:7B:6E:C0:B5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E5F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vKWDGKax32GfUHt7VaYCUXtuwLU.roa
Signing time: Wed 29 Sep 2021 02:43:30 +0000
ROA not before: Wed 29 Sep 2021 02:43:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 106.105.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3679 (0xe5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BCA58318A6B1DF619F507B7B55A602517B6EC0B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cb:af:26:51:f0:46:8d:47:af:6d:70:5a:00:
b5:f3:6e:47:f4:5f:04:17:e0:7c:ff:7b:11:05:8b:
2c:2f:e2:80:69:19:be:a9:db:1a:16:22:0b:b5:a1:
1b:5c:08:d6:38:24:a5:66:50:6e:95:dd:bf:6b:ff:
01:6a:89:dc:b4:cc:32:02:31:c4:c3:35:10:03:50:
8d:88:50:e8:51:71:4b:72:72:8c:70:20:59:28:eb:
99:d2:95:89:f3:de:e2:42:00:75:fb:d1:a7:1e:21:
d3:13:b7:c7:d2:46:52:bd:83:12:1f:8a:c3:13:4b:
f7:22:ef:d9:31:5a:3f:fb:f1:b5:b4:93:5c:98:7c:
7f:cf:fe:bd:ce:99:02:0f:c8:35:40:2f:8e:18:52:
84:22:eb:61:33:5d:6e:ea:76:60:d9:13:4b:b6:14:
d5:55:6d:c7:0f:05:17:05:e5:ae:76:a9:0f:75:ae:
54:b1:7f:07:46:80:91:2f:85:b7:49:22:71:0f:fc:
0b:d5:d1:6c:f5:e5:2e:ad:25:99:8b:5e:68:fc:92:
3c:85:2d:ab:6e:4d:5e:0c:4c:71:7a:62:a5:12:4a:
c3:41:cd:81:e6:57:82:9e:f0:1d:6f:6e:5a:b6:f4:
b9:c2:3e:20:6e:0d:57:8a:13:36:39:8a:e7:b3:38:
59:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A5:83:18:A6:B1:DF:61:9F:50:7B:7B:55:A6:02:51:7B:6E:C0:B5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vKWDGKax32GfUHt7VaYCUXtuwLU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.0.0/20
Signature Algorithm: sha256WithRSAEncryption
77:0a:0e:4d:67:d9:62:8c:18:f1:b5:52:97:60:0b:c1:a4:c2:
90:f5:5f:35:1d:65:46:c4:cd:8c:27:d4:19:7a:dc:82:59:fe:
d3:1a:92:ff:52:46:26:c7:74:a1:c8:27:17:61:bf:2c:77:9a:
6b:e6:a0:cb:3e:d8:d1:28:7f:14:e0:86:b1:a5:8c:09:db:66:
7a:d0:a8:23:05:48:01:cf:88:cd:c9:46:ad:cc:45:15:2e:1d:
b9:0b:ed:5c:14:ba:39:0e:aa:e2:cd:41:3e:85:b6:c3:41:91:
d1:38:dc:20:c2:6b:ee:e1:3a:2d:04:c1:67:9e:21:e4:8f:71:
fc:7c:4c:a0:29:c6:33:21:96:71:01:b3:9b:f5:ad:00:dc:39:
bf:99:8e:1c:9c:79:d8:f7:71:9e:a4:a4:d5:57:e6:95:58:71:
8d:e1:09:57:c5:71:4f:88:ea:91:0d:c3:5b:c4:a2:0a:7f:af:
d0:83:ff:c3:e0:09:74:15:77:1e:01:86:be:00:25:b6:60:b6:
a0:e3:9c:28:59:fa:86:63:d4:2b:ad:0f:85:98:55:3a:c3:65:
b3:f5:1c:6a:5a:08:6a:97:fa:63:37:70:af:07:83:7a:86:3a:
33:fa:8b:c6:c9:b0:be:0d:4b:1b:b1:d9:da:95:04:ad:39:d5:
6e:58:8f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org