Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UEh3ZvlRfBDTf3P2sLTUjLPPZX0.roa
File: UEh3ZvlRfBDTf3P2sLTUjLPPZX0.roa (raw, json)
Hash identifier: YDMsvkkb2gik4hjM+xVq+CLTKZclDAcZNeGYuiE3vAw=
Subject key identifier: 50:48:77:66:F9:51:7C:10:D3:7F:73:F6:B0:B4:D4:8C:B3:CF:65:7D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E7E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UEh3ZvlRfBDTf3P2sLTUjLPPZX0.roa
Signing time: Wed 29 Sep 2021 02:43:40 +0000
ROA not before: Wed 29 Sep 2021 02:43:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.107.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3710 (0xe7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=50487766F9517C10D37F73F6B0B4D48CB3CF657D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:19:52:97:4a:f0:ad:6e:c5:4e:80:23:b7:03:
fd:4a:fd:3a:2c:37:8e:fb:7c:92:c5:36:20:32:73:
9d:c9:43:e1:df:c8:4a:53:7c:c8:98:85:73:6e:b0:
15:94:56:6f:9a:cb:2f:1e:1b:cd:30:d0:6f:7e:70:
a5:d0:c1:4a:a0:dd:1d:14:72:0d:b5:a3:38:c3:9e:
d2:3c:b9:49:8e:17:b8:8d:16:0b:c5:03:1d:ed:aa:
2c:ff:62:f0:7a:4c:46:7d:26:57:56:21:5c:39:26:
b2:cc:ee:3f:aa:28:d9:fa:8f:49:51:35:d9:b4:02:
4c:39:f5:87:dc:d5:bf:cc:d7:ad:51:37:33:62:85:
bd:02:45:a3:55:c1:68:cc:68:13:e5:4e:86:54:3f:
ec:bf:5e:38:3d:60:72:e6:04:f0:53:80:5a:3a:65:
51:13:b8:02:74:58:09:88:6d:c7:85:b8:69:35:91:
ff:03:b8:8c:f1:81:b0:58:c0:ae:f8:7e:c4:5b:2e:
35:c5:ef:2d:0a:64:ed:e4:c6:fe:80:ac:71:b4:88:
83:56:8f:a8:df:cf:fa:28:03:4e:3c:29:6d:08:30:
68:34:4c:fb:c2:a2:bf:25:30:12:c1:35:ef:48:c3:
36:c3:3b:01:13:c6:bc:55:db:e7:7b:5b:f7:07:56:
24:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:48:77:66:F9:51:7C:10:D3:7F:73:F6:B0:B4:D4:8C:B3:CF:65:7D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UEh3ZvlRfBDTf3P2sLTUjLPPZX0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.176.0/20
Signature Algorithm: sha256WithRSAEncryption
c0:03:39:30:ba:5d:27:2e:12:4c:25:5c:d5:21:45:7f:a5:3c:
3d:e7:7d:e2:9e:11:e4:20:21:da:28:e6:35:94:26:8c:6d:91:
6a:8a:60:a5:22:af:32:d0:72:61:e2:98:34:33:0d:01:d5:bc:
eb:29:f1:47:18:d9:23:95:4e:e0:8a:5e:42:0c:42:bd:b4:a7:
63:35:c0:fd:1b:3d:e7:7a:de:44:8f:d4:93:86:4c:56:55:00:
ec:6f:15:28:f5:06:2e:64:ba:7c:4b:68:82:d4:5c:8a:37:b7:
b0:2d:04:e8:4f:b4:67:9f:86:6f:74:0d:e6:5a:b7:5e:49:70:
6e:cc:bf:c4:8a:f6:14:2a:0a:81:92:21:3e:a0:7c:03:4a:5b:
45:bc:cd:b9:71:80:64:d8:11:09:42:89:ff:62:b5:89:f8:23:
ec:98:d2:20:73:56:3d:69:c0:34:e9:54:a2:61:5c:5f:54:82:
76:37:55:36:88:bc:58:77:f0:7d:53:19:33:fe:37:25:17:68:
8c:6e:9e:21:9f:82:94:72:88:c7:8a:21:28:e8:54:49:73:e6:
2d:46:4d:44:d6:65:20:af:c7:f9:8a:c0:33:17:eb:74:90:c2:
f7:d8:22:42:a7:ab:90:8b:93:96:15:ff:14:c5:a9:3e:ea:ef:
4e:17:05:ad
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDUwNDg3NzY2Rjk1MTdD
MTBEMzdGNzNGNkIwQjRENDhDQjNDRjY1N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVGVKXSvCtbsVOgCO3A/1K/TosN477fJLFNiAyc53JQ+HfyEpT
fMiYhXNusBWUVm+ayy8eG80w0G9+cKXQwUqg3R0Ucg21ozjDntI8uUmOF7iNFgvF
Ax3tqiz/YvB6TEZ9JldWIVw5JrLM7j+qKNn6j0lRNdm0Akw59Yfc1b/M161RNzNi
hb0CRaNVwWjMaBPlToZUP+y/Xjg9YHLmBPBTgFo6ZVETuAJ0WAmIbceFuGk1kf8D
uIzxgbBYwK74fsRbLjXF7y0KZO3kxv6ArHG0iINWj6jfz/ooA048KW0IMGg0TPvC
or8lMBLBNe9IwzbDOwETxrxV2+d7W/cHViRnAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUUEh3ZvlRfBDTf3P2sLTUjLPPZX0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVUVoM1p2bFJmQkRUZjNQMnNMVFVq
TFBQWlgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGprsDAN
BgkqhkiG9w0BAQsFAAOCAQEAwAM5MLpdJy4STCVc1SFFf6U8Ped94p4R5CAh2ijm
NZQmjG2RaopgpSKvMtByYeKYNDMNAdW86ynxRxjZI5VO4IpeQgxCvbSnYzXA/Rs9
53reRI/Uk4ZMVlUA7G8VKPUGLmS6fEtogtRcije3sC0E6E+0Z5+Gb3QN5lq3Xklw
bsy/xIr2FCoKgZIhPqB8A0pbRbzNuXGAZNgRCUKJ/2K1ifgj7JjSIHNWPWnANOlU
omFcX1SCdjdVNoi8WHfwfVMZM/43JRdojG6eIZ+ClHKIx4ohKOhUSXPmLUZNRNZl
IK/H+YrAMxfrdJDC99giQqerkIuTlhX/FMWpPurvThcFrQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org