Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/S7F2aQcup_Pf0gQI6yoN3pw1ZFA.roa
File: S7F2aQcup_Pf0gQI6yoN3pw1ZFA.roa (raw, json)
Hash identifier: XJsrZnFtxWj0iIPaQiS5LaXqqpt+Z/bwQlD+76d15jk=
Subject key identifier: 4B:B1:76:69:07:2E:A7:F3:DF:D2:04:08:EB:2A:0D:DE:9C:35:64:50
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C8B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S7F2aQcup_Pf0gQI6yoN3pw1ZFA.roa
Signing time: Sun 07 Feb 2021 11:43:54 +0000
ROA not before: Sun 07 Feb 2021 11:43:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3211 (0xc8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4BB17669072EA7F3DFD20408EB2A0DDE9C356450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fd:45:d6:01:de:49:80:36:aa:9c:0d:7b:32:
7b:85:dd:35:22:36:74:4b:4b:b5:47:d8:2f:09:e0:
11:78:0e:ba:6f:b5:c3:78:52:03:a5:7d:eb:5a:88:
39:bf:71:06:22:e6:57:e2:69:85:fe:8d:e0:0c:63:
90:b5:d4:05:56:f4:db:00:b1:ff:ec:bb:1f:36:4c:
9a:5d:65:b0:24:47:4d:57:0a:ff:cb:7b:3e:d6:0e:
bd:09:8d:c0:d5:76:ca:bc:f6:8c:37:d1:c1:2d:f7:
c4:94:08:5a:b7:61:37:aa:8e:05:08:87:86:3a:4b:
d5:ea:c0:f1:07:43:f5:2b:1d:af:f1:89:b2:ac:a1:
c8:21:b2:ac:3b:8e:dd:94:f1:37:a5:b3:90:2c:35:
a1:09:05:1e:55:ec:a1:bd:ad:a2:b6:31:36:41:c2:
6c:65:e6:9b:38:0f:ba:40:07:87:5b:64:6e:cf:d0:
db:6d:f4:2d:3a:a7:75:55:21:02:a6:f5:bc:41:cc:
ca:b6:11:b8:0b:44:09:ab:88:38:cc:6f:21:b6:60:
18:c4:0f:cc:ef:7b:27:f9:bd:69:21:d2:16:a9:67:
e6:fa:8b:90:99:e9:d8:5c:76:e8:8e:11:c7:8e:be:
d1:cc:ab:10:aa:9c:17:eb:cb:cb:a7:5c:91:e4:5d:
4d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B1:76:69:07:2E:A7:F3:DF:D2:04:08:EB:2A:0D:DE:9C:35:64:50
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S7F2aQcup_Pf0gQI6yoN3pw1ZFA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.249.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:d3:ab:fa:01:06:8b:b5:b2:5d:66:47:dc:12:01:ba:4b:e0:
d0:80:ab:03:99:72:f4:80:c1:95:34:53:4b:50:0a:ac:d5:a2:
3c:72:a6:59:92:b7:28:34:d5:2c:e9:73:60:ed:eb:6b:a2:2e:
49:02:7c:17:0b:cc:09:03:1c:a1:15:78:7b:d1:27:94:97:b1:
a1:e2:ba:72:bb:2c:9c:8c:21:25:b7:41:43:e3:97:f3:b7:98:
a8:83:94:9a:db:be:30:c6:d1:96:b7:e3:bf:5e:56:29:37:ac:
77:a3:fd:c2:3e:62:75:5e:47:ee:c7:7d:ba:d3:e8:e1:86:41:
5e:19:3e:c2:fc:4b:2f:71:fb:86:f4:bd:0b:f9:1c:be:2b:6b:
83:e6:eb:10:ec:26:8f:bb:fa:0f:81:6b:ea:ca:ab:01:4a:a6:
93:4d:45:86:af:eb:b4:15:54:dd:b4:93:4b:ed:9e:56:56:bb:
2a:1d:aa:de:35:3b:0e:c1:2b:0f:f2:70:41:4f:18:34:4d:8f:
24:95:34:f0:55:1f:ef:db:29:bf:4a:22:a1:83:36:08:b7:fd:
51:3f:3c:f8:37:69:75:7a:b2:59:c3:e6:3c:0a:7d:39:71:2b:
8e:f4:66:df:b0:81:db:37:de:3d:86:d6:d2:d3:e4:24:7f:a0:
d3:6c:d3:ce
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQzNTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDRCQjE3NjY5MDcyRUE3
RjNERkQyMDQwOEVCMkEwRERFOUMzNTY0NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI/UXWAd5JgDaqnA17MnuF3TUiNnRLS7VH2C8J4BF4DrpvtcN4
UgOlfetaiDm/cQYi5lfiaYX+jeAMY5C11AVW9NsAsf/sux82TJpdZbAkR01XCv/L
ez7WDr0JjcDVdsq89ow30cEt98SUCFq3YTeqjgUIh4Y6S9XqwPEHQ/UrHa/xibKs
ocghsqw7jt2U8Tels5AsNaEJBR5V7KG9raK2MTZBwmxl5ps4D7pAB4dbZG7P0Ntt
9C06p3VVIQKm9bxBzMq2EbgLRAmriDjMbyG2YBjED8zveyf5vWkh0hapZ+b6i5CZ
6dhcduiOEceOvtHMqxCqnBfry8unXJHkXU0xAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUS7F2aQcup/Pf0gQI6yoN3pw1ZFAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUzdGMmFRY3VwX1BmMGdRSTZ5b04z
cHcxWkZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpp+TAN
BgkqhkiG9w0BAQsFAAOCAQEAW9Or+gEGi7WyXWZH3BIBukvg0ICrA5ly9IDBlTRT
S1AKrNWiPHKmWZK3KDTVLOlzYO3ra6IuSQJ8FwvMCQMcoRV4e9EnlJexoeK6crss
nIwhJbdBQ+OX87eYqIOUmtu+MMbRlrfjv15WKTesd6P9wj5idV5H7sd9utPo4YZB
Xhk+wvxLL3H7hvS9C/kcvitrg+brEOwmj7v6D4Fr6sqrAUqmk01Fhq/rtBVU3bST
S+2eVla7Kh2q3jU7DsErD/JwQU8YNE2PJJU08FUf79spv0oioYM2CLf9UT88+Ddp
dXqyWcPmPAp9OXErjvRm37CB2zfePYbW0tPkJH+g02zTzg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org