Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MQ-4f-ex2tyIVgxfuqJn5ip29YQ.roa
File: MQ-4f-ex2tyIVgxfuqJn5ip29YQ.roa (raw, json)
Hash identifier: B6+1TwvwPoS5Ra3DX2cyPG58hwH3Sned75JsKBHKFAE=
Subject key identifier: 31:0F:B8:7F:E7:B1:DA:DC:88:56:0C:5F:BA:A2:67:E6:2A:76:F5:84
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C6B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MQ-4f-ex2tyIVgxfuqJn5ip29YQ.roa
Signing time: Sun 07 Feb 2021 11:43:18 +0000
ROA not before: Sun 07 Feb 2021 11:43:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.80.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3179 (0xc6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=310FB87FE7B1DADC88560C5FBAA267E62A76F584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a1:c4:e9:c6:97:24:da:ed:6d:42:93:f9:82:
3e:40:87:c3:fb:cd:fd:d4:cf:98:66:d8:7d:ac:7d:
6f:c6:c1:c5:b5:7e:7d:d2:97:4e:4e:5b:00:08:5f:
26:aa:54:e5:a0:0d:d5:9b:ed:36:38:8f:ce:2f:36:
9f:b6:ae:96:5f:6d:b7:c3:a1:d8:3e:cc:ad:60:b3:
ba:2d:fb:cb:f3:b7:3c:5c:ef:f9:72:7f:0c:ff:d1:
62:10:5c:b4:a6:7d:ad:9d:a7:b1:3e:32:9e:1e:0f:
dd:4a:a6:a3:fa:6f:ef:27:17:12:7b:16:0d:28:70:
d8:5a:46:7e:83:05:cd:a6:37:f1:db:1c:64:ca:91:
59:3b:64:c4:e5:5a:14:2d:70:1b:7f:58:1c:0f:e8:
1b:40:1d:17:3d:31:3e:0a:d1:04:23:67:df:fb:9a:
fe:a6:d8:77:a3:0f:7b:53:c4:51:30:c0:2d:8a:c5:
04:f2:cd:45:ef:51:0c:4e:d0:9e:a9:3a:24:40:40:
d5:10:02:cd:ba:0b:c7:a2:04:70:2b:a2:2c:ff:ee:
12:fd:48:08:2c:1a:5d:9d:81:e7:1b:9d:1a:e1:1e:
4e:7e:b0:71:53:95:3b:5d:9f:fe:6a:7a:1c:1b:41:
82:e4:4d:48:c9:4f:23:e6:2c:45:8e:e0:c1:9f:99:
c7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0F:B8:7F:E7:B1:DA:DC:88:56:0C:5F:BA:A2:67:E6:2A:76:F5:84
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MQ-4f-ex2tyIVgxfuqJn5ip29YQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.80.0/21
Signature Algorithm: sha256WithRSAEncryption
12:27:8b:c9:36:70:b2:68:86:c6:f6:9d:54:3a:6d:3c:7e:34:
c8:26:39:22:9b:46:e0:af:f1:36:b0:32:6b:43:89:2b:6e:11:
ab:99:66:7d:28:99:a7:99:20:95:8c:7d:12:98:7f:8a:93:5c:
fc:26:16:02:c6:43:ed:f1:8d:42:46:a5:0c:c5:7f:6f:2a:66:
18:37:43:22:1c:36:c1:1f:fd:be:bb:9f:4d:1b:d5:6b:3e:3c:
ad:a8:e0:fe:f5:5c:2c:83:37:14:e9:f9:a2:a6:c4:8c:49:62:
52:9b:4f:e5:6a:d3:4f:65:84:91:be:23:d2:e4:df:ba:eb:7e:
75:e1:3f:55:4b:0c:9c:a6:79:30:88:db:fb:cb:9e:e5:59:96:
1e:02:4e:a3:84:cc:fe:de:76:b6:e5:33:fb:e5:6f:bc:c8:ae:
22:49:ec:c5:53:3b:e4:94:45:88:30:5b:91:ff:6e:e2:01:27:
a0:8e:dd:f2:49:52:73:11:4b:0b:97:73:d9:51:3c:e1:49:8f:
9c:0b:cc:d6:49:af:9f:ad:ae:43:0d:98:be:a0:1f:7d:d2:d6:
0c:fb:4a:21:f3:81:b1:f7:a0:3b:0e:03:39:a5:68:ed:a8:94:
e7:ee:16:97:5f:fb:0b:6d:96:19:ef:ee:7c:84:59:11:93:de:
af:21:a7:56
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDGswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQzMThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMxMEZCODdGRTdCMURB
REM4ODU2MEM1RkJBQTI2N0U2MkE3NkY1ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRocTpxpck2u1tQpP5gj5Ah8P7zf3Uz5hm2H2sfW/GwcW1fn3S
l05OWwAIXyaqVOWgDdWb7TY4j84vNp+2rpZfbbfDodg+zK1gs7ot+8vztzxc7/ly
fwz/0WIQXLSmfa2dp7E+Mp4eD91KpqP6b+8nFxJ7Fg0ocNhaRn6DBc2mN/HbHGTK
kVk7ZMTlWhQtcBt/WBwP6BtAHRc9MT4K0QQjZ9/7mv6m2HejD3tTxFEwwC2KxQTy
zUXvUQxO0J6pOiRAQNUQAs26C8eiBHAroiz/7hL9SAgsGl2dgecbnRrhHk5+sHFT
lTtdn/5qehwbQYLkTUjJTyPmLEWO4MGfmccBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUMQ+4f+ex2tyIVgxfuqJn5ip29YQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTVEtNGYtZXgydHlJVmd4ZnVxSm41
aXAyOVlRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppUDAN
BgkqhkiG9w0BAQsFAAOCAQEAEieLyTZwsmiGxvadVDptPH40yCY5IptG4K/xNrAy
a0OJK24Rq5lmfSiZp5kglYx9Eph/ipNc/CYWAsZD7fGNQkalDMV/bypmGDdDIhw2
wR/9vrufTRvVaz48rajg/vVcLIM3FOn5oqbEjEliUptP5WrTT2WEkb4j0uTfuut+
deE/VUsMnKZ5MIjb+8ue5VmWHgJOo4TM/t52tuUz++VvvMiuIknsxVM75JRFiDBb
kf9u4gEnoI7d8klScxFLC5dz2VE84UmPnAvM1kmvn62uQw2YvqAffdLWDPtKIfOB
sfegOw4DOaVo7aiU5+4Wl1/7C22WGe/ufIRZEZPeryGnVg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org