Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zy3ADlfQcWD1eacpCCzoBha9bzs.roa
File: zy3ADlfQcWD1eacpCCzoBha9bzs.roa (raw, json)
Hash identifier: lUBD25UotL/W6TXMFX031WKJNT2OelsMBM59SkNuThY=
Subject key identifier: CF:2D:C0:0E:57:D0:71:60:F5:79:A7:29:08:2C:E8:06:16:BD:6F:3B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E3F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zy3ADlfQcWD1eacpCCzoBha9bzs.roa
Signing time: Wed 29 Sep 2021 02:43:21 +0000
ROA not before: Wed 29 Sep 2021 02:43:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.105.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3647 (0xe3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF2DC00E57D07160F579A729082CE80616BD6F3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0f:28:ed:4e:36:45:65:f7:67:60:8d:40:45:
6d:b5:8f:9e:b2:8a:46:5c:67:e6:62:5e:05:43:79:
7b:e2:66:96:85:b5:df:df:7e:bc:eb:6c:4a:78:3b:
19:58:d4:7b:87:e4:37:ff:0c:d4:a5:1c:0d:21:79:
34:7f:88:f5:bd:82:2d:09:6e:f0:73:71:4a:eb:e3:
d4:e5:d5:96:c2:14:f9:51:9a:01:4e:b8:55:01:de:
c7:c2:1e:cb:e4:b8:61:af:47:2f:2d:53:c7:8f:6b:
9f:d1:e8:4b:0d:8b:66:ba:01:e2:56:d2:6f:a3:aa:
7d:e4:b4:3f:e1:80:46:c3:08:f2:14:82:e9:50:26:
e9:36:2f:28:95:cd:35:83:86:0b:2f:fd:1d:86:88:
bf:01:45:da:7a:9d:97:82:02:f2:16:11:92:db:97:
ad:6c:e7:49:58:b6:f6:82:cd:d5:a7:66:6b:a0:31:
db:16:37:aa:3c:75:c2:2a:26:02:d9:ed:c8:e2:19:
11:91:40:90:3b:dd:02:f6:c6:db:1d:f4:4d:c4:cb:
b9:bc:ee:cb:7f:43:e6:cc:e0:47:4b:b3:45:ee:1e:
f2:2d:a8:e9:f5:06:d9:63:a3:d7:58:57:e8:d1:8f:
51:48:5b:c0:f3:38:11:23:1e:ea:a7:c6:ce:5f:e1:
4a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:2D:C0:0E:57:D0:71:60:F5:79:A7:29:08:2C:E8:06:16:BD:6F:3B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zy3ADlfQcWD1eacpCCzoBha9bzs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.112.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:5d:15:24:19:a3:98:e3:00:a8:98:94:7d:f5:2a:c3:6c:64:
e6:1a:d8:e7:8b:9c:82:0b:d0:78:bf:af:26:f5:3e:63:b5:55:
f6:90:30:2b:f5:df:f9:4d:8f:f9:59:5b:d6:85:9a:03:c1:11:
14:f3:6e:b6:67:fe:b0:15:da:87:f4:3c:54:5a:af:6a:ee:89:
e1:04:c1:26:63:1c:db:62:27:6e:a4:b7:b8:77:2e:21:55:88:
3e:f8:36:3f:40:67:81:f3:86:91:42:0d:0b:4c:64:2b:d3:46:
30:c7:60:66:8d:f5:cd:ff:a1:2e:3e:22:a9:0a:b2:93:c3:72:
e5:28:e3:88:8b:75:d5:54:31:9e:48:6e:ce:a1:df:d3:97:66:
b3:13:88:f0:35:22:45:d6:1c:5b:46:2c:ad:10:dc:5f:95:5a:
7b:94:c0:9b:27:a4:6d:c5:bc:24:a6:e0:c7:0d:85:3e:89:83:
b6:ac:15:24:a4:be:e1:96:af:3e:e3:b5:21:07:4e:45:5d:6e:
cd:83:3c:61:d5:80:5d:a9:35:dd:56:de:8c:46:f3:91:e0:fe:
ae:bf:8e:c7:e4:b9:e3:b5:fd:8d:b0:96:45:78:02:6a:e3:de:
97:cd:16:87:89:2b:3e:12:6a:03:ed:34:dc:05:66:56:7a:a5:
c4:c8:ab:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org