Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/z2yF6Oe2pRzHNELgpo95rvIiF60.roa
File: z2yF6Oe2pRzHNELgpo95rvIiF60.roa (raw, json)
Hash identifier: 6YWAaZatrThr3NjeG9f5QopxNzLVWas/XXH9Q6RSSYg=
Subject key identifier: CF:6C:85:E8:E7:B6:A5:1C:C7:34:42:E0:A6:8F:79:AE:F2:22:17:AD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D27
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/z2yF6Oe2pRzHNELgpo95rvIiF60.roa
Signing time: Sun 07 Feb 2021 11:48:41 +0000
ROA not before: Sun 07 Feb 2021 11:48:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 106.106.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3367 (0xd27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CF6C85E8E7B6A51CC73442E0A68F79AEF22217AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ad:a5:2b:14:d7:97:b4:79:da:9c:58:21:0a:
78:85:53:52:33:ab:f3:69:d4:e3:76:f9:00:d5:7c:
1c:05:27:e4:67:0e:e8:59:88:9e:4d:e7:5e:d8:d4:
aa:45:01:85:6f:48:e9:a5:92:be:4e:2a:4e:3c:53:
0a:3d:ab:78:ab:45:e1:6b:26:11:c0:36:21:22:12:
92:eb:74:3c:d6:e8:23:99:37:70:f8:dc:13:ca:91:
5e:ca:39:fa:de:de:e1:92:76:89:c9:84:34:f3:8e:
aa:b2:2c:70:9c:80:55:04:f4:8b:d5:22:ae:7c:de:
14:d1:72:98:44:3a:55:dd:14:15:cd:21:c8:25:98:
cb:be:8d:9d:04:f8:86:c8:f8:cd:ef:18:61:e7:bf:
0e:98:9b:aa:db:20:ca:36:75:fa:3f:e8:28:c4:cc:
4a:1c:86:ba:9b:66:6e:95:fd:f7:e3:99:13:20:51:
21:dc:a7:a0:a6:97:d8:8a:0f:9d:c1:0b:f7:6e:f8:
5e:f6:4f:f8:42:70:31:61:0e:c5:a3:79:97:14:17:
81:c2:09:85:d9:7c:38:65:d4:6d:06:d1:93:1c:49:
8a:7e:5a:16:30:76:75:41:5b:0c:07:32:22:a6:70:
ff:08:ec:aa:d1:14:c7:bd:ff:6b:c2:1c:6b:b9:55:
8b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6C:85:E8:E7:B6:A5:1C:C7:34:42:E0:A6:8F:79:AE:F2:22:17:AD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/z2yF6Oe2pRzHNELgpo95rvIiF60.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.197.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:fd:8e:0e:c0:a9:bc:0a:36:0f:f7:57:c5:a7:7f:ed:e9:23:
14:4b:44:c2:e6:15:4e:e7:09:13:df:99:e9:1f:cf:04:f8:1c:
27:de:c9:56:d0:8c:5c:18:bf:fc:ad:60:a4:7b:e9:88:e4:cf:
e1:d8:b9:b1:8f:9e:82:73:4a:eb:f0:a0:0a:33:25:08:10:52:
42:b0:5d:37:3e:1d:b9:63:aa:19:9d:bc:66:8a:40:18:dd:20:
7c:cd:38:70:cf:dd:c2:60:e9:5d:cb:f4:bf:e8:b3:9e:1a:13:
3f:d2:01:36:b3:3c:85:d8:f8:9f:db:c3:a2:54:ea:f8:c0:75:
c2:03:28:2e:76:61:c8:fe:8f:1e:ae:cd:8a:f7:08:1b:22:79:
a7:c3:4b:6e:3a:d1:ee:8e:f3:98:58:09:70:0e:d0:76:80:b0:
7f:3d:72:93:15:60:91:e5:1c:20:cb:6d:1f:d9:5d:17:85:75:
69:09:bf:ec:a6:40:6f:77:13:ef:38:ad:15:c6:7a:9b:47:59:
7b:62:ec:52:10:52:fe:6c:9e:10:4d:8f:2b:30:35:cb:2b:3e:
2e:a0:f5:18:59:ce:d3:20:75:cf:06:f6:b9:69:3b:77:86:a0:
8b:28:da:1c:c9:f1:2e:ba:7b:25:95:bf:01:48:fe:a0:6f:74:
3d:2d:ea:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org