Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NzphLtGG3Kt7AYKqEat5MtYAKSo.roa
File: NzphLtGG3Kt7AYKqEat5MtYAKSo.roa (raw, json)
Hash identifier: uSxGbJnKQ7r9TXyyWclibfuolXp2FVLsCZ0/mkNpoUw=
Subject key identifier: 37:3A:61:2E:D1:86:DC:AB:7B:01:82:AA:11:AB:79:32:D6:00:29:2A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E60
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NzphLtGG3Kt7AYKqEat5MtYAKSo.roa
Signing time: Wed 29 Sep 2021 02:43:31 +0000
ROA not before: Wed 29 Sep 2021 02:43:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 106.105.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3680 (0xe60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=373A612ED186DCAB7B0182AA11AB7932D600292A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:e3:6f:01:08:d4:61:97:c0:23:c3:19:7c:
12:37:1c:7f:a0:2b:e2:b4:48:a4:17:98:79:e0:99:
73:d6:fd:2c:ab:2c:18:e5:50:1c:57:36:e0:b2:32:
0e:6a:f1:45:55:3a:32:af:a6:12:bb:d1:fc:93:11:
4f:c4:d7:f8:9b:13:d0:14:8b:0c:c6:1e:af:b8:73:
20:25:e3:02:e9:9d:95:68:2d:0a:51:c1:d5:e2:d8:
a6:4b:bf:e1:5e:e5:fa:91:e6:99:b0:43:7b:85:3b:
ab:13:92:b5:98:e7:ea:8d:4f:e7:0e:91:38:36:8d:
28:c0:3d:0a:48:97:94:b4:e6:ff:f2:f4:21:27:ec:
ff:31:48:bb:17:3a:9d:75:ca:cc:18:b4:6d:f9:f5:
e0:7c:49:77:24:a2:d2:36:e1:e8:37:72:df:0f:4f:
85:fc:95:4b:7b:02:1a:7a:bc:af:5b:42:19:a7:f5:
67:f7:3a:c9:c5:4b:39:46:4f:16:0c:0f:68:cf:ba:
63:64:c7:58:59:db:eb:55:9e:2b:c7:22:5a:95:e5:
51:d3:0c:8e:1e:95:a3:8a:d7:fb:35:33:3a:70:72:
58:0b:83:ec:01:c8:a5:f6:94:ea:8f:be:38:79:30:
ea:ed:ea:34:a5:93:c3:f5:54:45:1c:08:37:26:7c:
a3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:3A:61:2E:D1:86:DC:AB:7B:01:82:AA:11:AB:79:32:D6:00:29:2A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NzphLtGG3Kt7AYKqEat5MtYAKSo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.48.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:f1:73:31:a9:db:e6:28:b5:75:44:be:dd:5d:09:e1:6d:cb:
e8:e1:e8:c5:ce:fa:e3:c3:c6:48:05:67:5a:c9:56:44:19:53:
2a:68:5f:db:f2:de:a9:62:60:23:15:ea:05:f9:77:ed:40:d5:
6b:aa:91:82:8b:0d:b4:f3:a9:1e:f0:a6:8a:dd:72:d6:a4:6a:
93:a8:20:a1:e7:8d:79:aa:c7:12:e8:f7:d3:e3:70:e8:25:90:
d4:1b:9b:66:38:b9:10:fc:a5:57:64:b7:41:ef:51:b3:4c:6d:
9e:c1:4e:e7:91:38:82:29:b0:da:8b:40:15:60:79:02:80:72:
4c:cb:6a:ae:20:74:fd:2f:a6:25:a3:18:98:33:c0:8b:33:06:
09:ad:c8:fe:41:7e:4c:ca:72:a1:33:f4:ea:bf:da:66:8c:5a:
53:ad:21:1b:61:9a:3f:b7:b2:4c:65:2e:65:58:8c:bd:10:9f:
56:e0:fd:29:21:38:12:b2:10:d4:e5:96:4c:f0:de:df:c3:99:
ff:66:55:98:6e:e0:a3:e7:73:59:24:69:d5:7f:0d:93:44:11:
80:46:c5:28:c2:16:13:8c:51:45:60:d1:47:c5:17:a6:d7:28:
1c:28:03:f1:bf:89:72:84:ba:39:d4:d8:38:f2:9d:5b:35:21:
3b:ab:10:b7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMzFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM3M0E2MTJFRDE4NkRD
QUI3QjAxODJBQTExQUI3OTMyRDYwMDI5MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCi/uNvAQjUYZfAI8MZfBI3HH+gK+K0SKQXmHngmXPW/SyrLBjl
UBxXNuCyMg5q8UVVOjKvphK70fyTEU/E1/ibE9AUiwzGHq+4cyAl4wLpnZVoLQpR
wdXi2KZLv+Fe5fqR5pmwQ3uFO6sTkrWY5+qNT+cOkTg2jSjAPQpIl5S05v/y9CEn
7P8xSLsXOp11yswYtG359eB8SXckotI24eg3ct8PT4X8lUt7Ahp6vK9bQhmn9Wf3
OsnFSzlGTxYMD2jPumNkx1hZ2+tVnivHIlqV5VHTDI4elaOK1/s1MzpwclgLg+wB
yKX2lOqPvjh5MOrt6jSlk8P1VEUcCDcmfKMNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUNzphLtGG3Kt7AYKqEat5MtYAKSowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTnpwaEx0R0czS3Q3QVlLcUVhdDVN
dFlBS1NvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGppMDAN
BgkqhkiG9w0BAQsFAAOCAQEATvFzManb5ii1dUS+3V0J4W3L6OHoxc7648PGSAVn
WslWRBlTKmhf2/LeqWJgIxXqBfl37UDVa6qRgosNtPOpHvCmit1y1qRqk6ggoeeN
earHEuj30+Nw6CWQ1BubZji5EPylV2S3Qe9Rs0xtnsFO55E4gimw2otAFWB5AoBy
TMtqriB0/S+mJaMYmDPAizMGCa3I/kF+TMpyoTP06r/aZoxaU60hG2GaP7eyTGUu
ZViMvRCfVuD9KSE4ErIQ1OWWTPDe38OZ/2ZVmG7go+dzWSRp1X8Nk0QRgEbFKMIW
E4xRRWDRR8UXptcoHCgD8b+JcoS6OdTYOPKdWzUhO6sQtw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org