Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vf39Qx7kHGtUG1BJyvhc9orz7B0.roa
File: Vf39Qx7kHGtUG1BJyvhc9orz7B0.roa (raw, json)
Hash identifier: /5ioqVo7V2ZXsOzX6ulN9Q5JTIqoHvrD8yhtLNYvwDs=
Subject key identifier: 55:FD:FD:43:1E:E4:1C:6B:54:1B:50:49:CA:F8:5C:F6:8A:F3:EC:1D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BAE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vf39Qx7kHGtUG1BJyvhc9orz7B0.roa
Signing time: Sun 07 Feb 2021 06:29:32 +0000
ROA not before: Sun 07 Feb 2021 06:29:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 106.104.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2990 (0xbae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:29:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=55FDFD431EE41C6B541B5049CAF85CF68AF3EC1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:9e:cb:95:2d:20:5a:7a:99:a6:93:d9:07:b7:
04:42:2d:ef:8a:51:a3:82:d9:e0:18:3b:98:64:f0:
e8:d9:2d:82:22:1f:05:03:3f:03:11:43:97:f7:0e:
1d:8b:78:85:7e:f2:34:5f:50:f7:b7:24:83:d5:8f:
42:64:ee:79:c8:b8:55:62:04:92:75:df:7f:70:88:
bb:8d:7d:5e:36:c0:31:a5:ea:55:3c:af:51:68:c3:
47:be:86:fc:4a:13:93:6e:6b:21:f0:32:60:97:39:
19:76:90:b0:24:c9:8c:7b:22:fa:6b:4e:df:5a:cd:
19:81:21:f6:80:8c:a9:07:a5:d3:4c:d0:77:80:e9:
ed:7d:3e:e2:34:ff:cd:17:dc:8a:e9:be:18:51:3d:
cf:de:40:b3:8b:78:23:c5:95:65:78:7e:dc:d5:89:
fd:c2:f8:e0:71:58:dd:04:ae:5d:47:47:70:fb:ba:
2f:5f:01:4d:b8:43:f5:2d:5b:e9:e9:aa:cd:04:b0:
f6:33:fc:3d:1c:42:1e:c0:63:fe:1f:dd:cd:41:32:
b3:24:5d:fc:52:0e:73:44:c1:07:f6:b2:bb:b4:89:
4d:66:ce:ca:cd:58:9c:6e:dc:81:cb:0a:49:72:47:
0e:ee:d1:36:e1:69:94:e1:b4:98:b7:97:df:76:2d:
b7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FD:FD:43:1E:E4:1C:6B:54:1B:50:49:CA:F8:5C:F6:8A:F3:EC:1D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vf39Qx7kHGtUG1BJyvhc9orz7B0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/14
Signature Algorithm: sha256WithRSAEncryption
b1:e0:6f:4b:21:19:61:1b:10:3d:a6:38:2e:62:3b:1a:2b:c5:
49:0b:f7:58:1b:9d:63:ba:30:b7:fc:a6:1c:e2:00:04:10:18:
13:86:aa:44:b5:a9:2a:6c:72:3d:78:00:7e:04:74:1b:4b:e5:
d5:59:67:58:0b:a4:b9:5f:5a:da:9d:f2:6d:98:a5:12:ce:23:
8b:71:ff:cd:c5:e7:62:8a:88:3f:66:b6:0f:3e:88:bd:7b:47:
0c:4e:e8:f5:3b:2d:bd:51:79:05:d9:09:29:a4:cf:ea:9a:38:
1d:be:ed:e5:0a:b2:dc:9d:f3:e7:1a:6f:83:38:7d:88:b1:4c:
ed:01:03:04:7c:2e:97:25:f4:38:65:6b:a5:3b:37:df:de:db:
9c:c0:61:54:7f:ec:72:5b:7f:60:75:bc:be:90:b3:06:a9:d7:
83:84:b0:9b:d5:64:d4:06:26:d2:fa:f7:19:03:ae:48:0d:24:
7e:ac:2c:0e:95:1a:2c:c0:37:5c:77:fc:d4:ca:58:f4:32:94:
b5:8a:9a:2e:43:6c:a5:3f:fc:e7:3b:29:a0:a2:fa:fb:95:d9:
ce:bd:0d:0e:3e:5b:d2:6a:a7:b6:8b:a1:85:be:2e:bb:f9:d6:
60:64:80:62:cf:23:ef:c5:b3:3e:bb:23:f3:e3:7e:8a:2f:80:
09:54:1a:24
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICC64wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjI5MzJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU1RkRGRDQzMUVFNDFD
NkI1NDFCNTA0OUNBRjg1Q0Y2OEFGM0VDMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDvnsuVLSBaepmmk9kHtwRCLe+KUaOC2eAYO5hk8OjZLYIiHwUD
PwMRQ5f3Dh2LeIV+8jRfUPe3JIPVj0Jk7nnIuFViBJJ1339wiLuNfV42wDGl6lU8
r1Fow0e+hvxKE5NuayHwMmCXORl2kLAkyYx7IvprTt9azRmBIfaAjKkHpdNM0HeA
6e19PuI0/80X3IrpvhhRPc/eQLOLeCPFlWV4ftzVif3C+OBxWN0Erl1HR3D7ui9f
AU24Q/UtW+npqs0EsPYz/D0cQh7AY/4f3c1BMrMkXfxSDnNEwQf2sru0iU1mzsrN
WJxu3IHLCklyRw7u0TbhaZThtJi3l992LbftAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUVf39Qx7kHGtUG1BJyvhc9orz7B0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVmYzOVF4N2tIR3RVRzFCSnl2aGM5
b3J6N0IwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmpoMA0G
CSqGSIb3DQEBCwUAA4IBAQCx4G9LIRlhGxA9pjguYjsaK8VJC/dYG51jujC3/KYc
4gAEEBgThqpEtakqbHI9eAB+BHQbS+XVWWdYC6S5X1ranfJtmKUSziOLcf/Nxedi
iog/ZrYPPoi9e0cMTuj1Oy29UXkF2QkppM/qmjgdvu3lCrLcnfPnGm+DOH2IsUzt
AQMEfC6XJfQ4ZWulOzff3tucwGFUf+xyW39gdby+kLMGqdeDhLCb1WTUBibS+vcZ
A65IDSR+rCwOlRoswDdcd/zUylj0MpS1ipouQ2ylP/znOymgovr7ldnOvQ0OPlvS
aqe2i6GFvi67+dZgZIBizyPvxbM+uyPz436KL4AJVBok
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org