Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NRFDK7X26BlQP_-g3_7gplxj0ns.roa
File: NRFDK7X26BlQP_-g3_7gplxj0ns.roa (raw, json)
Hash identifier: KSOl8mYUGGi1PhcsRjvw/n8eYRFg5UyG71BEJX+AkFA=
Subject key identifier: 35:11:43:2B:B5:F6:E8:19:50:3F:FF:A0:DF:FE:E0:A6:5C:63:D2:7B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EC6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NRFDK7X26BlQP_-g3_7gplxj0ns.roa
Signing time: Wed 29 Sep 2021 02:43:58 +0000
ROA not before: Wed 29 Sep 2021 02:43:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 106.106.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3782 (0xec6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3511432BB5F6E819503FFFA0DFFEE0A65C63D27B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:f3:ef:07:ed:54:f0:79:f2:c4:fe:1a:66:
30:63:31:22:be:f8:67:e2:52:8d:ea:ae:f1:b7:e8:
b2:81:88:71:67:9d:20:12:1a:48:d4:4b:03:f4:10:
32:34:cd:4c:e3:77:99:e7:19:6b:9a:79:c0:03:ce:
a4:37:25:00:11:48:6b:00:a4:7b:fc:26:eb:19:99:
dd:a8:76:ec:83:4c:4c:b8:1f:6c:66:9f:a4:31:05:
3e:0e:bd:92:46:ab:5e:f8:08:ab:e4:11:99:03:14:
ca:05:81:92:f7:33:6b:69:0f:b8:b5:60:a8:46:fc:
1f:bb:68:41:86:db:76:fb:8d:d2:c8:e2:ec:60:9f:
a4:78:ca:53:32:cc:2e:ae:3d:e0:1b:22:8f:e0:c8:
36:e2:b3:fa:7c:08:4d:21:da:30:50:b6:ca:e0:d3:
fc:76:67:83:ec:62:ea:37:4b:fc:50:62:8f:de:b2:
d2:1f:b8:61:1f:d7:7f:69:6b:72:89:e2:86:3d:7a:
f7:d2:31:7d:a0:62:bd:b7:d0:ef:1e:da:f2:1e:67:
86:5c:1b:d8:f2:93:4a:6e:20:a1:1c:c3:4e:98:2a:
d7:06:19:31:40:86:0d:a6:99:6f:e0:ca:b4:5f:a0:
76:80:a7:85:98:7c:e8:83:d1:da:52:a4:01:53:ef:
78:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:11:43:2B:B5:F6:E8:19:50:3F:FF:A0:DF:FE:E0:A6:5C:63:D2:7B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NRFDK7X26BlQP_-g3_7gplxj0ns.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.236.0/24
Signature Algorithm: sha256WithRSAEncryption
99:1c:d2:af:81:58:e8:2f:f6:3f:1d:db:20:1f:89:10:b1:50:
42:bf:f3:00:be:c3:8a:d0:f2:51:2e:d2:62:03:ef:16:57:7d:
97:45:4f:e9:7c:7c:81:a4:49:40:c7:5d:11:cc:47:6d:40:03:
0d:a7:5b:ef:e6:b7:93:49:78:ca:76:37:30:76:ca:0b:7d:63:
51:3f:a5:ca:8b:64:b2:fe:ed:68:0b:00:c5:ab:67:92:62:18:
36:ae:cf:fa:e0:0d:d6:01:d6:3d:94:39:1c:d8:e0:7e:fb:b6:
7e:d5:d7:6d:6e:df:c1:83:a4:05:80:1d:53:1a:93:dc:c8:cf:
31:1a:ac:f8:e6:67:c3:70:12:6f:3d:41:4b:06:49:e2:77:13:
24:61:90:42:51:1a:13:4a:69:74:90:f0:f7:55:ef:20:e1:d2:
08:73:7e:7c:b3:f0:99:ee:20:65:41:c2:d9:34:28:3f:df:87:
9f:cf:fb:d8:67:4f:ae:00:6e:e8:de:96:f0:53:c5:8d:26:df:
40:93:3b:1e:6c:48:ee:01:82:54:a6:5b:76:c1:87:80:02:80:
27:08:0b:40:52:47:a8:21:af:a9:ee:c8:22:46:5b:4d:2f:df:
b3:28:e9:37:c6:19:72:c8:d5:1d:ac:38:0a:d0:13:00:02:91:
7a:6d:51:b8
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDsYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNThaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM1MTE0MzJCQjVGNkU4
MTk1MDNGRkZBMERGRkVFMEE2NUM2M0QyN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3tPPvB+1U8HnyxP4aZjBjMSK++GfiUo3qrvG36LKBiHFnnSAS
GkjUSwP0EDI0zUzjd5nnGWuaecADzqQ3JQARSGsApHv8JusZmd2oduyDTEy4H2xm
n6QxBT4OvZJGq174CKvkEZkDFMoFgZL3M2tpD7i1YKhG/B+7aEGG23b7jdLI4uxg
n6R4ylMyzC6uPeAbIo/gyDbis/p8CE0h2jBQtsrg0/x2Z4PsYuo3S/xQYo/estIf
uGEf139pa3KJ4oY9evfSMX2gYr230O8e2vIeZ4ZcG9jyk0puIKEcw06YKtcGGTFA
hg2mmW/gyrRfoHaAp4WYfOiD0dpSpAFT73hXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUNRFDK7X26BlQP/+g3/7gplxj0nswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTlJGREs3WDI2QmxRUF8tZzNfN2dw
bHhqMG5zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpq7DAN
BgkqhkiG9w0BAQsFAAOCAQEAmRzSr4FY6C/2Px3bIB+JELFQQr/zAL7DitDyUS7S
YgPvFld9l0VP6Xx8gaRJQMddEcxHbUADDadb7+a3k0l4ynY3MHbKC31jUT+lyotk
sv7taAsAxatnkmIYNq7P+uAN1gHWPZQ5HNjgfvu2ftXXbW7fwYOkBYAdUxqT3MjP
MRqs+OZnw3ASbz1BSwZJ4ncTJGGQQlEaE0ppdJDw91XvIOHSCHN+fLPwme4gZUHC
2TQoP9+Hn8/72GdPrgBu6N6W8FPFjSbfQJM7HmxI7gGCVKZbdsGHgAKAJwgLQFJH
qCGvqe7IIkZbTS/fsyjpN8YZcsjVHaw4CtATAAKRem1RuA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org