Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DRmMhusy3wliklPb8gqE0wH-Aog.roa
File: DRmMhusy3wliklPb8gqE0wH-Aog.roa (raw, json)
Hash identifier: jagyzoR4aBfKtbJ0ne3LlxoPSG60yFA42cO9msCkIvo=
Subject key identifier: 0D:19:8C:86:EB:32:DF:09:62:92:53:DB:F2:0A:84:D3:01:FE:02:88
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 090A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DRmMhusy3wliklPb8gqE0wH-Aog.roa
Signing time: Tue 29 Sep 2020 09:52:44 +0000
ROA not before: Tue 29 Sep 2020 09:52:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2314 (0x90a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0D198C86EB32DF09629253DBF20A84D301FE0288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:db:fd:27:a4:4c:c1:d3:16:4c:00:f9:3d:4c:
f9:9c:50:87:80:b6:54:f1:19:24:90:ee:a1:ae:ee:
b9:4a:c6:6e:e1:9f:00:57:32:f4:40:94:1d:22:dd:
13:b1:ec:b5:77:21:a9:34:c4:26:64:8a:73:e5:07:
41:5a:ae:59:00:06:c4:26:45:02:d6:3c:17:2b:36:
16:9c:4d:2a:15:37:a1:b7:b4:b4:91:a7:e1:e2:28:
e2:b6:5a:7d:50:a1:a9:7b:73:74:d5:2d:14:5d:ad:
d0:d2:bd:de:39:45:b2:32:96:e2:85:15:af:94:42:
fd:64:c4:1f:80:39:16:04:c5:71:e1:17:3c:e6:d2:
13:fb:02:12:d8:f2:99:d1:ac:fd:2a:a3:84:2c:88:
32:a8:1d:f9:f4:f1:b1:1a:13:8a:2e:b3:4c:3c:11:
e3:7c:a0:7e:e8:9a:f6:92:49:a0:dc:20:ae:a2:a2:
e4:fd:a6:ce:61:62:28:45:08:b1:bb:74:b0:f7:df:
95:0c:8e:8e:ea:3b:69:2a:f2:d6:39:c0:38:d2:34:
3b:cb:fc:cd:76:95:1c:e4:ce:76:05:bc:a6:4e:87:
5f:1c:0c:96:02:e6:04:fa:81:8c:7c:d6:31:9b:8d:
43:8f:ba:1a:6e:3e:4a:b4:8f:88:a8:8a:1b:56:c6:
ee:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:19:8C:86:EB:32:DF:09:62:92:53:DB:F2:0A:84:D3:01:FE:02:88
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DRmMhusy3wliklPb8gqE0wH-Aog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.176.0/20
Signature Algorithm: sha256WithRSAEncryption
97:52:48:d2:91:04:66:87:32:98:42:5d:1e:d5:88:84:00:36:
31:11:fe:a2:d7:dd:c5:b8:46:62:1d:fc:c8:2d:22:e6:4d:72:
2e:c5:82:98:5a:79:d9:e0:89:fc:92:12:e5:58:03:55:e8:ea:
bb:c6:42:d9:b4:09:d3:50:86:2b:a6:0a:58:5e:8e:6b:3c:e5:
42:07:67:36:00:2e:80:d7:c2:91:98:6f:8b:0c:95:76:53:39:
43:ed:a0:6e:91:71:0e:ed:b9:da:1a:cf:80:b9:6e:ac:92:3f:
fc:d3:d9:a1:6a:49:69:74:86:f9:44:5e:5f:59:53:bd:b2:cf:
2c:79:b0:4e:9d:a8:ac:f7:ac:85:1b:c5:85:46:75:b6:04:57:
a0:3a:aa:f4:e2:c8:86:59:99:8f:a4:e2:70:b4:bc:05:c0:8c:
1d:0e:e2:7f:ca:d6:8d:4f:68:84:15:a8:18:ee:a8:dd:45:38:
96:27:20:3d:19:4e:0c:dd:02:20:8d:d2:1d:b8:63:84:07:a0:
3a:61:02:2b:44:f5:c6:8c:20:ec:23:2c:36:fd:75:ed:e9:08:
2b:c4:da:05:a4:37:9e:3c:de:63:76:41:f6:0e:4b:bb:8e:bf:
dd:86:aa:a1:32:57:55:53:36:ae:df:ed:a1:d8:41:b6:98:91:
44:d9:32:ea
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyNDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDBEMTk4Qzg2RUIzMkRG
MDk2MjkyNTNEQkYyMEE4NEQzMDFGRTAyODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs2/0npEzB0xZMAPk9TPmcUIeAtlTxGSSQ7qGu7rlKxm7hnwBX
MvRAlB0i3ROx7LV3Iak0xCZkinPlB0FarlkABsQmRQLWPBcrNhacTSoVN6G3tLSR
p+HiKOK2Wn1Qoal7c3TVLRRdrdDSvd45RbIyluKFFa+UQv1kxB+AORYExXHhFzzm
0hP7AhLY8pnRrP0qo4QsiDKoHfn08bEaE4ous0w8EeN8oH7omvaSSaDcIK6iouT9
ps5hYihFCLG7dLD335UMjo7qO2kq8tY5wDjSNDvL/M12lRzkznYFvKZOh18cDJYC
5gT6gYx81jGbjUOPuhpuPkq0j4ioihtWxu5jAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUDRmMhusy3wliklPb8gqE0wH+AogwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRFJtTWh1c3kzd2xpa2xQYjhncUUw
d0gtQW9nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGprsDAN
BgkqhkiG9w0BAQsFAAOCAQEAl1JI0pEEZocymEJdHtWIhAA2MRH+otfdxbhGYh38
yC0i5k1yLsWCmFp52eCJ/JIS5VgDVejqu8ZC2bQJ01CGK6YKWF6OazzlQgdnNgAu
gNfCkZhviwyVdlM5Q+2gbpFxDu252hrPgLlurJI//NPZoWpJaXSG+UReX1lTvbLP
LHmwTp2orPeshRvFhUZ1tgRXoDqq9OLIhlmZj6TicLS8BcCMHQ7if8rWjU9ohBWo
GO6o3UU4licgPRlODN0CII3SHbhjhAegOmECK0T1xowg7CMsNv117ekIK8TaBaQ3
njzeY3ZB9g5Lu46/3YaqoTJXVVM2rt/todhBtpiRRNky6g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org