Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PO9B_N6HkTc8HDAn7bqJ60iGZs4.roa
File: PO9B_N6HkTc8HDAn7bqJ60iGZs4.roa (raw, json)
Hash identifier: m6WLggCbVau7FInDBqkZNXtz7tWV6HKwANWLyaeJKus=
Subject key identifier: 3C:EF:41:FC:DE:87:91:37:3C:1C:30:27:ED:BA:89:EB:48:86:66:CE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E65
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PO9B_N6HkTc8HDAn7bqJ60iGZs4.roa
Signing time: Wed 29 Sep 2021 02:43:32 +0000
ROA not before: Wed 29 Sep 2021 02:43:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 106.105.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3685 (0xe65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3CEF41FCDE8791373C1C3027EDBA89EB488666CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a1:44:ce:68:37:28:0d:f6:24:3d:58:ef:1d:
33:2a:22:93:42:3b:b5:ea:05:5e:c0:4d:0c:c9:d9:
8c:94:93:06:85:f6:be:24:22:e1:27:44:67:a3:24:
df:70:95:8d:9a:67:33:62:16:7c:b2:13:e4:88:f3:
30:e0:11:c4:f8:98:3d:d9:0c:45:e2:ea:7b:db:d9:
e6:1f:ce:20:2c:0c:8f:a6:45:83:25:c6:cb:61:06:
b6:e5:24:2b:b2:5e:95:a4:0b:95:1c:0a:21:29:ba:
92:38:cf:58:ac:c2:07:82:fc:3e:38:44:b4:fc:68:
20:a3:cb:64:30:62:51:39:43:91:7c:05:6c:05:6f:
05:16:dc:3f:c6:19:cc:b2:ac:16:88:ce:a1:ff:03:
f4:5b:59:19:b0:bd:96:5c:5a:b7:c8:04:95:2d:06:
43:e6:61:2d:0a:e2:5d:83:c2:1f:24:d4:6f:d6:1c:
33:c4:2d:81:b2:79:7c:7b:9f:06:5a:f4:7e:11:88:
dc:6b:c4:be:e0:e9:5f:3c:28:67:8d:21:3a:81:d0:
84:cd:0c:7d:98:b1:e9:f6:65:4e:42:0f:65:9e:a2:
3b:ef:68:7e:59:9b:1a:fb:af:9d:37:2a:7f:5f:a6:
7b:73:dd:1e:95:6b:b6:44:1b:7f:41:c0:9c:99:26:
1c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EF:41:FC:DE:87:91:37:3C:1C:30:27:ED:BA:89:EB:48:86:66:CE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PO9B_N6HkTc8HDAn7bqJ60iGZs4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.96.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:37:eb:65:25:4b:6c:51:8b:d8:9e:03:5d:b7:27:3b:93:33:
56:23:bb:02:29:87:78:d3:b6:2e:16:d3:e2:fb:19:45:5b:79:
c8:5f:42:f7:b1:ba:d7:72:69:99:5e:8c:dd:0d:1f:bf:62:8b:
dc:71:22:36:2a:25:5e:05:94:1f:fd:17:e9:22:0d:a0:4b:4b:
4c:71:0c:8e:9c:34:08:f1:bb:7a:27:55:45:35:3a:f9:57:13:
fc:21:78:2c:46:a7:fb:b9:89:f7:24:6f:67:3c:1d:80:18:58:
70:33:3e:07:6b:2c:41:3e:67:b1:b4:30:ad:45:1e:5e:34:b7:
33:1b:81:7f:07:b3:46:6e:49:74:42:22:d3:bd:4d:67:2b:28:
8d:66:ee:f2:7b:87:a7:19:37:5c:1c:3f:40:41:82:82:c8:71:
28:f4:a3:de:4d:e0:dd:17:f5:5b:21:3c:8c:73:85:ca:18:a6:
33:c4:65:36:44:c6:5f:c9:95:bd:4e:17:1e:2b:0d:42:31:6d:
30:c3:60:63:f2:ca:87:25:be:30:d1:91:1d:7d:75:84:f1:63:
2d:0b:85:69:aa:3c:28:aa:28:1a:fe:c7:c9:2d:bb:25:7e:08:
b2:ce:2a:b4:d3:48:93:f0:20:80:76:9a:e2:bb:bd:18:d2:80:
7c:ce:92:61
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDmUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMzJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNDRUY0MUZDREU4Nzkx
MzczQzFDMzAyN0VEQkE4OUVCNDg4NjY2Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJoUTOaDcoDfYkPVjvHTMqIpNCO7XqBV7ATQzJ2YyUkwaF9r4k
IuEnRGejJN9wlY2aZzNiFnyyE+SI8zDgEcT4mD3ZDEXi6nvb2eYfziAsDI+mRYMl
xsthBrblJCuyXpWkC5UcCiEpupI4z1iswgeC/D44RLT8aCCjy2QwYlE5Q5F8BWwF
bwUW3D/GGcyyrBaIzqH/A/RbWRmwvZZcWrfIBJUtBkPmYS0K4l2Dwh8k1G/WHDPE
LYGyeXx7nwZa9H4RiNxrxL7g6V88KGeNITqB0ITNDH2Ysen2ZU5CD2WeojvvaH5Z
mxr7r503Kn9fpntz3R6Va7ZEG39BwJyZJhx9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUPO9B/N6HkTc8HDAn7bqJ60iGZs4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUE85Ql9ONkhrVGM4SERBbjdicUo2
MGlHWnM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppYDAN
BgkqhkiG9w0BAQsFAAOCAQEALzfrZSVLbFGL2J4DXbcnO5MzViO7AimHeNO2LhbT
4vsZRVt5yF9C97G613JpmV6M3Q0fv2KL3HEiNiolXgWUH/0X6SINoEtLTHEMjpw0
CPG7eidVRTU6+VcT/CF4LEan+7mJ9yRvZzwdgBhYcDM+B2ssQT5nsbQwrUUeXjS3
MxuBfwezRm5JdEIi071NZysojWbu8nuHpxk3XBw/QEGCgshxKPSj3k3g3Rf1WyE8
jHOFyhimM8RlNkTGX8mVvU4XHisNQjFtMMNgY/LKhyW+MNGRHX11hPFjLQuFaao8
KKooGv7HyS27JX4Iss4qtNNIk/AggHaa4ru9GNKAfM6SYQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org