Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/a7Aw1btVH4GcdQPSa2pN8vuzB6E.roa
File: a7Aw1btVH4GcdQPSa2pN8vuzB6E.roa (raw, json)
Hash identifier: dkO7ATq5NZH52lAqFOOyJAEj5v8fqvih/rg2QuwZixI=
Subject key identifier: 6B:B0:30:D5:BB:55:1F:81:9C:75:03:D2:6B:6A:4D:F2:FB:B3:07:A1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08BE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/a7Aw1btVH4GcdQPSa2pN8vuzB6E.roa
Signing time: Tue 29 Sep 2020 09:52:24 +0000
ROA not before: Tue 29 Sep 2020 09:52:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 106.105.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2238 (0x8be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6BB030D5BB551F819C7503D26B6A4DF2FBB307A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:a3:a5:ab:c3:ad:b3:c2:4c:0c:9d:7c:fc:
a6:c6:de:5c:45:d3:d6:38:a0:d8:be:a1:ca:27:f0:
c9:1f:7e:d8:33:13:93:db:56:ad:f2:08:44:e6:17:
ff:07:07:48:06:18:64:44:84:0f:d0:f2:28:52:a6:
6f:1c:0b:c9:11:86:0a:17:86:43:92:86:e1:c3:51:
fd:59:6e:b3:1a:8c:0c:0a:c8:6f:ea:5f:ac:19:e1:
7d:2d:b7:d2:1b:a2:6c:6c:c3:29:9f:2e:bc:07:d7:
66:b0:79:ff:c5:7a:6f:b7:2f:83:ae:cc:d2:d1:39:
cf:f4:b5:27:a6:3d:14:52:9b:ae:3b:ce:dd:85:f2:
fc:bc:b4:dc:45:28:1c:2b:ca:50:3d:0c:cd:98:f3:
7b:0e:e6:63:d5:f5:1f:52:d8:aa:a3:b0:53:fe:03:
1d:a5:19:17:d8:74:15:24:a1:06:57:44:91:ce:90:
1b:96:1e:c1:ca:51:7c:08:6c:a4:16:c7:b3:59:d7:
f4:76:79:ac:d4:fa:01:15:df:cf:ba:43:6d:e6:87:
82:85:ee:4a:a7:fa:c6:e8:4e:dd:6f:fb:cd:39:aa:
61:08:e9:ca:5a:1f:72:ee:41:ca:e5:d6:60:93:50:
1e:bf:aa:42:02:70:35:2b:a5:a6:6a:98:9d:52:a2:
6a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B0:30:D5:BB:55:1F:81:9C:75:03:D2:6B:6A:4D:F2:FB:B3:07:A1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/a7Aw1btVH4GcdQPSa2pN8vuzB6E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.178.0/24
Signature Algorithm: sha256WithRSAEncryption
77:bf:8c:f6:87:9e:62:a2:c4:f6:8f:d2:66:ae:c7:41:72:ec:
a5:a5:b3:e1:62:76:f0:99:44:48:97:a3:e4:dd:aa:f4:5c:cc:
8b:3a:77:54:56:f8:f0:dd:0c:d2:b6:8d:a8:31:aa:14:e6:b3:
0c:6e:e1:f0:89:bb:61:39:94:27:11:04:d6:20:bb:3e:0b:33:
7b:e7:d5:3b:cd:83:37:0a:a6:d9:2b:57:7b:26:5c:33:03:b2:
6b:9c:bf:8a:9c:ef:db:04:50:16:d4:28:8a:1f:cc:8f:88:60:
72:4e:99:bd:70:3c:86:e5:b5:cf:2a:36:a6:c2:cb:08:6e:f0:
09:c3:62:5d:a6:34:53:a9:d6:51:f1:e1:f7:7b:bf:90:b6:ef:
d1:70:39:ef:ce:61:46:7b:31:a9:b0:3b:7d:85:2c:dd:7d:7f:
19:ef:ba:19:a7:ef:3d:61:ef:dd:93:6c:f4:17:10:85:a5:4e:
dc:77:4f:33:3d:e8:95:e9:a4:7b:26:0d:02:bb:37:09:cc:ad:
6c:a7:71:f4:4e:47:77:de:03:51:f3:ec:16:7a:e5:88:3e:40:
42:b5:bb:be:9e:fe:b8:42:d1:43:1a:ab:64:e1:4a:40:a4:08:
7b:c3:7d:17:57:76:bd:6a:fc:a0:bb:98:50:93:46:ff:db:1e:
0d:bb:ef:cb
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMjRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZCQjAzMEQ1QkI1NTFG
ODE5Qzc1MDNEMjZCNkE0REYyRkJCMzA3QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2QaOlq8Ots8JMDJ18/KbG3lxF09Y4oNi+ocon8MkfftgzE5Pb
Vq3yCETmF/8HB0gGGGREhA/Q8ihSpm8cC8kRhgoXhkOShuHDUf1ZbrMajAwKyG/q
X6wZ4X0tt9IbomxswymfLrwH12awef/Fem+3L4OuzNLROc/0tSemPRRSm647zt2F
8vy8tNxFKBwrylA9DM2Y83sO5mPV9R9S2KqjsFP+Ax2lGRfYdBUkoQZXRJHOkBuW
HsHKUXwIbKQWx7NZ1/R2eazU+gEV38+6Q23mh4KF7kqn+sboTt1v+805qmEI6cpa
H3LuQcrl1mCTUB6/qkICcDUrpaZqmJ1Somq7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUa7Aw1btVH4GcdQPSa2pN8vuzB6EwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYTdBdzFidFZINEdjZFFQU2EycE44
dnV6QjZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGppsjAN
BgkqhkiG9w0BAQsFAAOCAQEAd7+M9oeeYqLE9o/SZq7HQXLspaWz4WJ28JlESJej
5N2q9FzMizp3VFb48N0M0raNqDGqFOazDG7h8Im7YTmUJxEE1iC7Pgsze+fVO82D
Nwqm2StXeyZcMwOya5y/ipzv2wRQFtQoih/Mj4hgck6ZvXA8huW1zyo2psLLCG7w
CcNiXaY0U6nWUfHh93u/kLbv0XA5785hRnsxqbA7fYUs3X1/Ge+6GafvPWHv3ZNs
9BcQhaVO3HdPMz3olemkeyYNArs3CcytbKdx9E5Hd94DUfPsFnrliD5AQrW7vp7+
uELRQxqrZOFKQKQIe8N9F1d2vWr8oLuYUJNG/9seDbvvyw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org