Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zYh6wHA_R6CIxsdQrDvy0zwahEs.roa
File: zYh6wHA_R6CIxsdQrDvy0zwahEs.roa (raw, json)
Hash identifier: TRo8ho6XYxKNu+GS6aWyc/vQpzBfR4qHKxPIGv+iYM4=
Subject key identifier: CD:88:7A:C0:70:3F:47:A0:88:C6:C7:50:AC:3B:F2:D3:3C:1A:84:4B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0904
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zYh6wHA_R6CIxsdQrDvy0zwahEs.roa
Signing time: Tue 29 Sep 2020 09:52:42 +0000
ROA not before: Tue 29 Sep 2020 09:52:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2308 (0x904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CD887AC0703F47A088C6C750AC3BF2D33C1A844B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ac:8a:31:01:dd:f6:d9:d6:85:6e:31:4e:85:
6a:37:83:90:c1:f5:f3:72:dc:b6:fa:df:c2:a1:f3:
9c:20:12:39:d8:9c:e0:81:e5:73:a3:76:d1:7d:36:
29:20:16:3c:45:74:1f:f5:79:d4:1a:da:4e:47:cb:
38:9c:f7:36:12:e3:dc:37:12:62:c4:02:85:66:24:
ea:ec:49:e7:b9:73:6a:71:51:c4:b9:8a:47:54:65:
ec:7b:1c:d4:58:81:40:04:c2:bd:62:d9:87:ae:be:
d7:ce:a7:f3:5d:e2:e7:90:dd:fb:de:c7:20:26:f3:
8d:79:4e:8e:ac:06:cf:30:c6:15:cb:58:eb:93:20:
e2:f5:13:fb:6a:15:a3:0a:0a:e2:ed:f5:1e:1e:25:
4b:22:c8:52:01:0d:be:9f:3a:89:91:61:44:a9:c4:
57:b9:18:7c:30:ae:19:df:16:67:dc:2a:94:07:4b:
fc:93:b8:a2:a1:36:44:99:89:3f:f8:81:3c:70:cc:
c2:25:a3:bf:07:8a:d6:18:87:3f:a8:39:bf:38:8e:
e0:1a:79:34:e5:8c:4f:56:6c:73:34:99:d3:8c:6e:
b5:dc:db:b5:1e:01:87:97:bf:e9:a7:59:3d:44:d3:
57:86:91:22:39:44:1e:e1:92:a4:54:a0:9d:75:c7:
87:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:88:7A:C0:70:3F:47:A0:88:C6:C7:50:AC:3B:F2:D3:3C:1A:84:4B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zYh6wHA_R6CIxsdQrDvy0zwahEs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.64.0/19
Signature Algorithm: sha256WithRSAEncryption
67:60:99:73:3a:fb:72:b3:ae:b3:10:9d:0a:49:10:22:b9:5e:
65:a3:2f:50:9f:49:3c:3f:15:70:25:13:10:83:5a:33:6a:f8:
80:b2:d0:79:b6:5f:c4:95:28:34:dd:61:8a:82:db:62:af:f2:
4f:fe:e4:7d:65:8c:94:90:1d:2d:20:1d:37:9a:3a:c9:8a:da:
3f:f2:43:60:00:5f:17:09:1c:63:bb:a4:f5:cf:9b:3e:40:7c:
c7:d8:07:7b:78:f0:97:a9:3e:34:56:36:69:3b:d0:1b:d8:f2:
9b:27:a1:62:d9:ed:9b:5b:da:0a:ba:f4:a4:57:1e:ed:5b:82:
7e:9a:87:35:96:1c:08:6c:23:3d:c4:9a:6b:8a:44:fd:35:13:
ff:90:81:35:49:aa:7b:84:cb:78:ad:ce:74:bd:9c:98:12:cd:
8e:5e:69:1b:7f:61:25:59:a8:df:d5:74:5a:65:a2:58:c3:d5:
b7:64:e3:a6:a4:86:35:bc:4e:dc:0d:3e:9a:77:23:b3:83:6f:
62:89:16:b0:7a:c0:52:b1:04:32:fa:8b:a7:9e:36:fe:8c:30:
55:e1:17:51:c4:95:4b:70:3a:d7:f1:bf:d4:d7:4b:61:36:8f:
2b:d8:1c:15:da:2e:c9:21:49:d2:ed:a3:d1:45:38:04:eb:38:
27:d5:09:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org