Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/thAkfPFjXgyS_COIbt22QUyIlSE.roa
File: thAkfPFjXgyS_COIbt22QUyIlSE.roa (raw, json)
Hash identifier: ViwP+0AqatuvxciGZb5fxglbsa39JP3+yrm6waJE6Aw=
Subject key identifier: B6:10:24:7C:F1:63:5E:0C:92:FC:23:88:6E:DD:B6:41:4C:88:95:21
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C17
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/thAkfPFjXgyS_COIbt22QUyIlSE.roa
Signing time: Sun 07 Feb 2021 06:55:30 +0000
ROA not before: Sun 07 Feb 2021 06:55:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.108.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3095 (0xc17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:55:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B610247CF1635E0C92FC23886EDDB6414C889521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4e:27:59:83:84:83:3c:8b:8e:a0:cb:8b:23:
39:4d:7b:0d:8b:4c:49:88:03:d5:89:ce:cc:d9:70:
b7:e6:9e:59:ca:6a:35:95:d3:7c:62:1f:ed:88:ea:
e4:31:3e:0b:6b:fa:c5:ab:90:94:15:67:f2:94:6c:
91:4d:8f:0f:75:4c:4d:00:4c:cc:d3:1c:65:28:2b:
47:8b:19:95:e3:7f:9c:f0:34:aa:c3:91:b1:91:c4:
4f:fa:d2:67:61:32:5d:7b:0f:ba:77:50:0f:db:bc:
3a:ab:54:04:88:8f:87:9d:53:50:19:06:7b:f6:7b:
a8:d7:a4:ff:69:c4:54:a7:da:d6:21:ca:ec:22:e8:
71:1e:be:f8:7b:d2:1d:b2:53:94:90:ed:4d:d1:97:
38:10:40:cf:0d:5d:71:60:d0:2a:ed:40:f8:fc:15:
9c:1e:15:6e:fd:d7:49:3a:de:29:ff:3e:5c:c1:0a:
b6:bd:3c:60:91:f7:16:6d:dc:ec:4e:c8:4d:c4:74:
61:21:95:e2:aa:7c:4c:47:a5:99:b5:cc:88:c5:54:
75:c3:f4:d2:b0:a9:67:11:f4:c5:c6:3e:98:a2:bc:
d3:ad:04:b2:33:cb:b5:7a:67:06:e6:73:c9:c6:6e:
00:12:f6:61:85:00:33:0d:e5:62:2c:3e:df:65:a1:
bc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:10:24:7C:F1:63:5E:0C:92:FC:23:88:6E:DD:B6:41:4C:88:95:21
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/thAkfPFjXgyS_COIbt22QUyIlSE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.108.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:9b:e8:57:95:b2:0f:b6:76:ab:a4:b7:dc:69:f5:a5:7a:41:
df:8a:b5:2a:17:08:26:c1:75:1b:76:96:e4:3a:54:f7:8d:70:
6d:53:34:89:99:ec:11:f5:f5:56:9b:49:88:09:63:94:22:88:
a6:c1:ec:11:ec:7c:d7:85:47:3e:c6:a8:58:ad:d5:cc:46:01:
64:c1:32:54:b5:c4:ee:9c:de:14:7e:94:2f:05:08:62:10:0b:
53:2b:b1:4b:6b:86:ea:81:45:9d:d6:3e:e5:3c:5c:72:ea:4a:
65:0e:7b:f0:ba:c7:ae:bf:80:d5:64:8a:d4:39:36:3f:53:19:
d7:95:8e:6a:82:a0:87:20:f0:7b:53:ce:81:69:00:4a:e5:9d:
24:9c:1c:56:79:b5:c3:2f:8c:34:79:59:86:d8:bb:b5:99:fc:
fa:02:e8:e0:d4:6c:26:17:7c:a7:58:e6:ee:ec:8e:42:f7:18:
40:ea:e5:47:82:e8:de:42:32:bb:ae:c2:89:09:3f:90:7e:72:
36:3c:93:8e:38:ec:29:4e:f5:7b:47:ed:ef:45:e1:67:29:27:
db:b1:ab:1f:1b:fb:a1:3d:14:d3:04:53:b1:79:63:1c:1f:a1:
1e:80:58:6f:97:14:4e:67:b8:23:3f:e5:fc:23:ae:93:59:4a:
28:86:73:4c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDBcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjU1MzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI2MTAyNDdDRjE2MzVF
MEM5MkZDMjM4ODZFRERCNjQxNEM4ODk1MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOTidZg4SDPIuOoMuLIzlNew2LTEmIA9WJzszZcLfmnlnKajWV
03xiH+2I6uQxPgtr+sWrkJQVZ/KUbJFNjw91TE0ATMzTHGUoK0eLGZXjf5zwNKrD
kbGRxE/60mdhMl17D7p3UA/bvDqrVASIj4edU1AZBnv2e6jXpP9pxFSn2tYhyuwi
6HEevvh70h2yU5SQ7U3RlzgQQM8NXXFg0CrtQPj8FZweFW7910k63in/PlzBCra9
PGCR9xZt3OxOyE3EdGEhleKqfExHpZm1zIjFVHXD9NKwqWcR9MXGPpiivNOtBLIz
y7V6Zwbmc8nGbgAS9mGFADMN5WIsPt9lobwXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUthAkfPFjXgyS/COIbt22QUyIlSEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdGhBa2ZQRmpYZ3lTX0NPSWJ0MjJR
VXlJbFNFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWppbDAN
BgkqhkiG9w0BAQsFAAOCAQEAuJvoV5WyD7Z2q6S33Gn1pXpB34q1KhcIJsF1G3aW
5DpU941wbVM0iZnsEfX1VptJiAljlCKIpsHsEex814VHPsaoWK3VzEYBZMEyVLXE
7pzeFH6ULwUIYhALUyuxS2uG6oFFndY+5TxccupKZQ578LrHrr+A1WSK1Dk2P1MZ
15WOaoKghyDwe1POgWkASuWdJJwcVnm1wy+MNHlZhti7tZn8+gLo4NRsJhd8p1jm
7uyOQvcYQOrlR4Lo3kIyu67CiQk/kH5yNjyTjjjsKU71e0ft70XhZykn27GrHxv7
oT0U0wRTsXljHB+hHoBYb5cUTme4Iz/l/COuk1lKKIZzTA==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:40:00 2025 by rpki-client