Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3KvY3SjzRHqoutQKBgknWu9ELCo.roa
File: 3KvY3SjzRHqoutQKBgknWu9ELCo.roa (raw, json)
Hash identifier: +UrQZVmvoOC7DwIhpH1QUwkXLzl9MP/sTAymdDwFBwY=
Subject key identifier: DC:AB:D8:DD:28:F3:44:7A:A8:BA:D4:0A:06:09:27:5A:EF:44:2C:2A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C79
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3KvY3SjzRHqoutQKBgknWu9ELCo.roa
Signing time: Sun 07 Feb 2021 11:43:33 +0000
ROA not before: Sun 07 Feb 2021 11:43:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 106.105.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3193 (0xc79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DCABD8DD28F3447AA8BAD40A0609275AEF442C2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8a:8a:01:31:4a:2a:20:ff:2c:a4:8a:10:4e:
a6:6b:65:0c:3c:d6:e6:d7:04:00:0d:59:76:72:26:
a5:49:28:f0:ce:3d:3e:7e:3e:ea:14:86:e0:2e:7d:
a4:7e:bd:d2:6e:c1:4d:43:11:7e:49:4e:fd:d2:78:
3e:91:53:5f:47:91:6c:93:08:44:ac:60:85:42:c7:
e0:2c:e8:26:cb:3c:e6:44:be:22:07:4c:c1:ea:8b:
f3:01:cd:2c:a7:13:a2:00:d4:ea:fa:ec:af:e7:09:
32:6a:a6:a3:26:49:71:0d:5b:bb:08:a1:c0:d9:30:
da:1c:9d:9d:1d:ad:84:9b:a5:fc:73:73:f4:d7:2e:
8e:ab:3c:fb:d0:cb:ec:2a:7b:4f:96:2b:b7:86:99:
d8:9a:f3:6d:71:5c:79:94:e3:e9:95:6b:a3:39:d8:
11:16:fb:77:9b:4e:97:60:66:32:da:98:1a:fe:4e:
fa:0f:a2:56:a3:99:ea:88:b3:2c:a1:be:75:da:45:
0c:98:65:fc:ec:e2:94:90:33:a2:48:69:92:bb:06:
d8:73:19:8c:db:b4:3f:d7:a8:34:16:98:0d:b8:16:
8e:a9:e9:9d:7a:95:1e:19:6c:45:b2:91:ee:33:09:
df:04:5b:be:db:07:fb:59:24:9d:f5:3b:52:2b:d3:
4f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AB:D8:DD:28:F3:44:7A:A8:BA:D4:0A:06:09:27:5A:EF:44:2C:2A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3KvY3SjzRHqoutQKBgknWu9ELCo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.179.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:15:9d:20:80:45:50:1d:af:24:23:16:fe:0e:c2:b8:35:f0:
13:8d:a9:2d:27:a8:ee:23:6c:1a:52:c0:9f:57:2e:41:78:76:
23:b7:af:fe:33:23:2e:fa:76:80:a7:ab:1e:0c:7b:2f:1b:e4:
01:f5:0c:f4:81:92:6f:9a:e8:d8:b6:a0:6a:6d:be:58:5e:be:
2d:23:39:7b:86:eb:57:09:32:45:16:5a:a5:65:ca:93:1a:6d:
97:ee:27:f4:24:ee:b2:a6:39:cf:0b:b3:5e:a5:ed:fd:db:96:
9d:15:de:b4:40:e9:e9:32:50:e0:9f:76:ad:ec:ee:7e:4b:da:
8d:f7:0d:f8:7c:3c:4e:49:43:4f:e1:ea:d1:4e:23:8b:f4:61:
78:41:38:51:a3:8c:00:ea:18:4b:82:a0:54:60:23:13:2e:f0:
e8:c6:c0:4d:15:95:39:89:e9:7c:82:04:97:01:56:39:b8:1f:
c7:04:3d:40:22:12:b4:8b:f0:4f:0c:c0:5d:e0:34:7a:42:1f:
40:12:67:ef:da:e7:29:2e:c9:85:75:a7:b3:d4:89:7e:08:b1:
16:77:9e:31:06:a3:46:b6:82:42:2b:d2:15:af:97:3e:8b:99:
12:aa:3c:b8:f4:58:bb:be:9c:b4:77:3a:88:75:11:67:0e:9d:
8d:a4:14:0d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQzMzNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERDQUJEOEREMjhGMzQ0
N0FBOEJBRDQwQTA2MDkyNzVBRUY0NDJDMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEiooBMUoqIP8spIoQTqZrZQw81ubXBAANWXZyJqVJKPDOPT5+
PuoUhuAufaR+vdJuwU1DEX5JTv3SeD6RU19HkWyTCESsYIVCx+As6CbLPOZEviIH
TMHqi/MBzSynE6IA1Or67K/nCTJqpqMmSXENW7sIocDZMNocnZ0drYSbpfxzc/TX
Lo6rPPvQy+wqe0+WK7eGmdia821xXHmU4+mVa6M52BEW+3ebTpdgZjLamBr+TvoP
olajmeqIsyyhvnXaRQyYZfzs4pSQM6JIaZK7BthzGYzbtD/XqDQWmA24Fo6p6Z16
lR4ZbEWyke4zCd8EW77bB/tZJJ31O1Ir00/NAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU3KvY3SjzRHqoutQKBgknWu9ELCowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvM0t2WTNTanpSSHFvdXRRS0Jna25X
dTlFTENvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGppszAN
BgkqhkiG9w0BAQsFAAOCAQEApRWdIIBFUB2vJCMW/g7CuDXwE42pLSeo7iNsGlLA
n1cuQXh2I7ev/jMjLvp2gKerHgx7LxvkAfUM9IGSb5ro2Lagam2+WF6+LSM5e4br
VwkyRRZapWXKkxptl+4n9CTusqY5zwuzXqXt/duWnRXetEDp6TJQ4J92rezufkva
jfcN+Hw8TklDT+Hq0U4ji/RheEE4UaOMAOoYS4KgVGAjEy7w6MbATRWVOYnpfIIE
lwFWObgfxwQ9QCIStIvwTwzAXeA0ekIfQBJn79rnKS7JhXWns9SJfgixFneeMQaj
RraCQivSFa+XPouZEqo8uPRYu76ctHc6iHURZw6djaQUDQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org