Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NA5el9epQA8Xs5SspgWv4moQd_E.roa
File: NA5el9epQA8Xs5SspgWv4moQd_E.roa (raw, json)
Hash identifier: hDujcrqDRcon1RVHeklifKkd036HuO+w5URrmGLIAXc=
Subject key identifier: 34:0E:5E:97:D7:A9:40:0F:17:B3:94:AC:A6:05:AF:E2:6A:10:77:F1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C81
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NA5el9epQA8Xs5SspgWv4moQd_E.roa
Signing time: Sun 07 Feb 2021 11:43:41 +0000
ROA not before: Sun 07 Feb 2021 11:43:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 106.105.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3201 (0xc81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=340E5E97D7A9400F17B394ACA605AFE26A1077F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4b:87:ce:ca:00:85:76:1c:c3:75:60:6f:ab:
4f:7d:24:95:38:0e:c1:86:b9:6c:a2:6a:14:c9:4b:
ac:29:8a:1c:12:db:dd:51:a2:f4:d5:01:b0:fe:2f:
e4:ce:20:e8:e7:82:38:4c:25:84:c9:66:ef:8f:35:
6d:e9:3c:66:33:f9:17:d4:af:87:89:1f:1a:14:4e:
8a:34:14:27:5d:76:46:f3:39:ef:06:b1:da:26:4b:
bc:6b:c6:2c:73:7f:e0:83:52:ce:51:a1:29:6a:db:
41:d1:a1:93:aa:c1:1d:83:f5:fe:4d:ba:4b:95:5c:
4b:9e:a7:59:69:bc:f9:fa:6c:22:7c:2b:c1:65:52:
00:0e:52:d6:fa:f9:a2:85:70:32:70:fe:65:11:60:
26:6a:4e:4b:b8:54:81:8c:42:21:57:99:10:ee:37:
2c:c7:ea:a7:0a:c8:8e:cd:21:0d:97:b6:ee:51:09:
2b:7e:7e:8b:a2:1c:98:ec:7b:c1:64:05:1b:fd:7b:
97:e5:17:c6:fd:d1:1d:4c:3e:55:38:cc:5e:dc:6b:
3c:ff:95:7b:4e:92:76:20:d7:3d:a5:8f:2c:34:b1:
47:f3:3d:0b:2c:f7:66:01:3c:69:f6:b7:45:ab:38:
0a:51:ee:05:17:df:f2:55:5d:da:2d:96:a1:44:3b:
aa:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0E:5E:97:D7:A9:40:0F:17:B3:94:AC:A6:05:AF:E2:6A:10:77:F1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NA5el9epQA8Xs5SspgWv4moQd_E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.183.0/24
Signature Algorithm: sha256WithRSAEncryption
63:11:80:75:df:54:7e:d8:a4:96:2c:ed:c8:df:a0:b3:b9:bb:
45:a0:5f:25:9e:bb:b2:84:c9:1f:b6:06:6c:51:f0:69:9b:29:
7e:05:93:62:68:84:06:1b:ab:d8:2c:04:06:67:d1:07:2d:52:
66:c2:a0:3d:9f:57:97:ad:82:1c:21:43:59:64:e8:8d:17:21:
7d:58:c4:b1:63:5c:e9:51:4a:e4:0b:aa:70:46:63:31:38:29:
4b:47:15:6f:31:4c:e9:78:8f:ad:be:3f:16:74:3a:88:4e:4f:
4d:c5:7c:f7:84:81:5c:6d:97:5a:af:fa:c5:4f:2e:22:69:92:
3a:58:62:90:9e:d9:9f:f7:09:fc:3c:1c:e8:ee:f1:03:51:2d:
39:78:2e:c5:87:a3:e2:24:58:2a:82:24:dc:85:7b:c8:de:b5:
5d:73:b2:32:51:62:49:11:85:5d:64:44:b0:87:af:08:18:7f:
b4:db:11:48:f3:4c:9c:b4:42:d7:14:0e:9e:61:01:76:b4:71:
99:d4:79:dd:0c:2c:70:f4:2d:67:0f:88:e1:dc:0f:5c:a8:ae:
f1:43:39:52:5f:02:41:00:b5:d8:cf:99:46:ee:07:7b:7e:36:
42:92:44:b0:7d:f2:5d:45:44:53:8b:8e:f3:63:3e:1e:e4:36:
32:93:89:12
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQzNDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM0MEU1RTk3RDdBOTQw
MEYxN0IzOTRBQ0E2MDVBRkUyNkExMDc3RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtS4fOygCFdhzDdWBvq099JJU4DsGGuWyiahTJS6wpihwS291R
ovTVAbD+L+TOIOjngjhMJYTJZu+PNW3pPGYz+RfUr4eJHxoUToo0FCdddkbzOe8G
sdomS7xrxixzf+CDUs5RoSlq20HRoZOqwR2D9f5NukuVXEuep1lpvPn6bCJ8K8Fl
UgAOUtb6+aKFcDJw/mURYCZqTku4VIGMQiFXmRDuNyzH6qcKyI7NIQ2Xtu5RCSt+
fouiHJjse8FkBRv9e5flF8b90R1MPlU4zF7cazz/lXtOknYg1z2ljyw0sUfzPQss
92YBPGn2t0WrOApR7gUX3/JVXdotlqFEO6pNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUNA5el9epQA8Xs5SspgWv4moQd/EwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTkE1ZWw5ZXBRQThYczVTc3BnV3Y0
bW9RZF9FLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptzAN
BgkqhkiG9w0BAQsFAAOCAQEAYxGAdd9UftikliztyN+gs7m7RaBfJZ67soTJH7YG
bFHwaZspfgWTYmiEBhur2CwEBmfRBy1SZsKgPZ9Xl62CHCFDWWTojRchfVjEsWNc
6VFK5AuqcEZjMTgpS0cVbzFM6XiPrb4/FnQ6iE5PTcV894SBXG2XWq/6xU8uImmS
OlhikJ7Zn/cJ/Dwc6O7xA1EtOXguxYej4iRYKoIk3IV7yN61XXOyMlFiSRGFXWRE
sIevCBh/tNsRSPNMnLRC1xQOnmEBdrRxmdR53QwscPQtZw+I4dwPXKiu8UM5Ul8C
QQC12M+ZRu4He342QpJEsH3yXUVEU4uO82M+HuQ2MpOJEg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org