Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/CrdUAmfO4Za1xfaCnsCpqFRR47g.roa
File: CrdUAmfO4Za1xfaCnsCpqFRR47g.roa (raw, json)
Hash identifier: wScbcpbdDWsn7ceKI2R0sP9m3+fIUEdRR/tnMI5flGI=
Subject key identifier: 0A:B7:54:02:67:CE:E1:96:B5:C5:F6:82:9E:C0:A9:A8:54:51:E3:B8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0890
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CrdUAmfO4Za1xfaCnsCpqFRR47g.roa
Signing time: Tue 29 Sep 2020 09:52:09 +0000
ROA not before: Tue 29 Sep 2020 09:52:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2192 (0x890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0AB7540267CEE196B5C5F6829EC0A9A85451E3B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fc:40:b6:66:97:79:7b:de:d5:18:22:92:43:
33:90:9c:23:b2:77:0e:b8:69:ac:23:9d:26:7f:19:
6c:27:2f:e0:06:29:2c:f5:88:13:9b:e7:18:2e:b9:
68:bc:ae:03:c5:2e:94:76:af:4d:7e:a5:84:96:2f:
16:0a:18:d8:cc:0f:8c:cc:4c:a8:09:9b:e1:56:aa:
68:6a:7b:70:46:da:8d:ae:62:c1:95:0c:02:6f:80:
06:ac:16:6f:26:4b:ef:a6:f2:47:b0:cd:1c:4c:a7:
aa:fe:c3:60:47:f7:6b:35:27:3e:e7:c6:af:93:2a:
33:c5:31:92:dd:77:3c:1c:f2:7f:c8:8a:34:cb:15:
f1:7a:17:b1:84:6a:00:c2:9d:69:ef:04:f9:5a:60:
43:6a:6a:e8:96:b8:29:9a:d2:ea:76:c3:90:84:c1:
a8:64:de:72:d1:08:c7:c4:dd:42:c9:b1:8e:13:2c:
c3:c9:c5:aa:d8:a8:e6:30:d3:01:2f:82:7a:2b:74:
e7:a2:19:9d:ff:aa:45:63:f6:86:ff:f1:e0:80:af:
c3:6b:2d:6b:00:89:58:37:70:87:88:fc:db:4e:64:
af:9c:ad:e7:35:4c:5d:5a:07:92:0f:20:c7:da:08:
f0:a8:b4:6c:be:81:30:16:83:ff:f5:8c:88:77:6c:
f3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B7:54:02:67:CE:E1:96:B5:C5:F6:82:9E:C0:A9:A8:54:51:E3:B8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CrdUAmfO4Za1xfaCnsCpqFRR47g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.128.0/17
Signature Algorithm: sha256WithRSAEncryption
3b:54:aa:5b:82:be:c5:3f:ec:45:a6:72:98:a5:89:37:12:28:
c3:64:e1:3a:dd:d8:88:00:d8:5b:9e:91:c6:eb:0f:94:5e:a2:
3a:86:8c:04:f3:7b:a3:b4:fd:c8:fd:2a:fb:83:d1:2d:6d:a4:
f3:50:7d:92:a0:37:90:b1:30:11:97:0c:46:f0:a4:e0:61:d0:
16:41:96:64:90:38:66:dc:5e:97:9e:c2:2b:55:0f:6a:dc:71:
9f:fd:11:5e:a1:06:1f:9d:5a:8f:05:c4:12:8f:21:5f:cd:81:
c6:b7:1d:4d:57:5a:47:d7:9a:51:f8:19:cb:5a:70:63:00:b2:
49:74:b8:71:c1:a1:d2:3b:f5:95:a8:57:69:2b:7e:b2:c9:b8:
cc:a1:d6:07:47:12:74:3a:b1:d5:32:a5:60:b3:1b:40:f5:e5:
0a:15:8f:c6:0e:14:b6:81:8a:f0:f3:42:b8:7c:b1:2a:34:b7:
6a:c7:09:17:40:7b:02:15:97:68:1e:90:ed:f9:0a:36:a9:fb:
c5:31:37:f2:e2:8b:1a:fb:a3:9b:99:7e:5f:d6:3e:0d:fa:07:
04:bb:36:98:f3:34:36:03:92:a4:e9:49:52:2b:1d:d9:6d:31:
03:c0:15:6c:d4:16:37:ad:c0:dd:22:1a:87:92:9e:c1:28:f3:
7a:03:5a:1c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDBBQjc1NDAyNjdDRUUx
OTZCNUM1RjY4MjlFQzBBOUE4NTQ1MUUzQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDT/EC2Zpd5e97VGCKSQzOQnCOydw64aawjnSZ/GWwnL+AGKSz1
iBOb5xguuWi8rgPFLpR2r01+pYSWLxYKGNjMD4zMTKgJm+FWqmhqe3BG2o2uYsGV
DAJvgAasFm8mS++m8kewzRxMp6r+w2BH92s1Jz7nxq+TKjPFMZLddzwc8n/IijTL
FfF6F7GEagDCnWnvBPlaYENqauiWuCma0up2w5CEwahk3nLRCMfE3ULJsY4TLMPJ
xarYqOYw0wEvgnordOeiGZ3/qkVj9ob/8eCAr8NrLWsAiVg3cIeI/NtOZK+crec1
TF1aB5IPIMfaCPCotGy+gTAWg//1jIh3bPO9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUCrdUAmfO4Za1xfaCnsCpqFRR47gwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQ3JkVUFtZk80WmExeGZhQ25zQ3Bx
RlJSNDdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB2prgDAN
BgkqhkiG9w0BAQsFAAOCAQEAO1SqW4K+xT/sRaZymKWJNxIow2ThOt3YiADYW56R
xusPlF6iOoaMBPN7o7T9yP0q+4PRLW2k81B9kqA3kLEwEZcMRvCk4GHQFkGWZJA4
Ztxel57CK1UPatxxn/0RXqEGH51ajwXEEo8hX82BxrcdTVdaR9eaUfgZy1pwYwCy
SXS4ccGh0jv1lahXaSt+ssm4zKHWB0cSdDqx1TKlYLMbQPXlChWPxg4UtoGK8PNC
uHyxKjS3ascJF0B7AhWXaB6Q7fkKNqn7xTE38uKLGvujm5l+X9Y+DfoHBLs2mPM0
NgOSpOlJUisd2W0xA8AVbNQWN63A3SIah5KewSjzegNaHA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org