Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/afqVmitNdeR_M7fEYZ6_bHW41Kc.roa
File: afqVmitNdeR_M7fEYZ6_bHW41Kc.roa (raw, json)
Hash identifier: 4givs/bc+PJryI/2ZbKsaw3ZyHCJVsEThK0q2MBLZz4=
Subject key identifier: 69:FA:95:9A:2B:4D:75:E4:7F:33:B7:C4:61:9E:BF:6C:75:B8:D4:A7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 090B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/afqVmitNdeR_M7fEYZ6_bHW41Kc.roa
Signing time: Tue 29 Sep 2020 09:52:44 +0000
ROA not before: Tue 29 Sep 2020 09:52:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 106.105.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2315 (0x90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69FA959A2B4D75E47F33B7C4619EBF6C75B8D4A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:05:70:8c:ab:db:34:1c:e7:6d:e9:9b:20:1d:
12:20:0b:1e:fa:f5:4a:b8:ca:4c:db:7e:10:c6:f3:
67:0f:d1:90:e5:5d:1e:6c:47:da:06:66:92:60:ac:
40:8f:da:ef:9c:b0:c7:a2:f0:6a:fa:04:f8:1a:24:
fd:ec:af:06:41:7b:66:55:3f:87:e1:4a:6c:b3:f9:
0a:56:0d:25:86:af:54:d1:c9:04:be:e2:af:40:50:
26:16:5a:17:c7:fa:17:ca:65:8c:3a:36:1f:bf:8c:
eb:04:07:9d:0f:c2:80:88:3f:cd:e5:a4:2c:3b:fb:
e6:cb:7c:a4:dd:bd:22:37:fd:fb:df:2e:1b:07:61:
63:d7:2a:ff:3b:c8:2e:bd:b7:50:74:14:75:a7:bb:
f5:45:57:df:bb:70:0b:23:5a:1e:55:6b:42:61:73:
6b:35:aa:cd:c8:aa:0b:75:9f:fa:d6:7b:a6:14:e0:
02:ce:99:a6:92:7d:d0:d4:19:1b:05:81:0d:12:d2:
14:a9:64:b0:06:54:d2:3a:05:25:3d:57:95:12:fc:
43:e6:05:24:f1:47:28:1b:b9:a8:16:3d:6b:95:75:
87:6a:cd:26:39:2d:bd:38:0d:eb:e1:cf:52:21:4d:
66:cc:63:9e:3d:d7:ef:64:1f:29:3a:e0:7b:97:6c:
a3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FA:95:9A:2B:4D:75:E4:7F:33:B7:C4:61:9E:BF:6C:75:B8:D4:A7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/afqVmitNdeR_M7fEYZ6_bHW41Kc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.8.0/21
Signature Algorithm: sha256WithRSAEncryption
46:f2:85:f4:4e:b7:e3:00:2c:e9:41:ad:72:19:2d:41:7c:7f:
e6:09:f5:b8:2a:a1:67:98:53:67:dc:48:7c:b4:7d:4e:35:aa:
df:85:90:6c:fb:f8:4c:9e:62:fc:b8:62:05:a4:48:6b:46:10:
b6:23:16:c9:3f:77:20:5b:49:10:d3:3c:ad:22:cd:88:71:37:
b0:22:96:8e:11:72:99:ea:4a:94:e2:cd:89:fe:73:af:5a:81:
fb:20:4a:c9:59:42:d9:0e:d0:24:04:ce:55:dc:df:95:2c:10:
f6:be:aa:bf:77:23:aa:28:94:73:d3:ae:75:89:40:7d:32:08:
d3:09:da:3a:24:3f:aa:fb:58:39:0c:75:59:44:bd:f4:e3:7c:
6c:97:4d:3d:b3:04:6c:89:ac:40:20:10:01:1b:20:bf:89:60:
e6:2e:40:cf:89:a7:0b:17:e2:08:79:94:7e:43:c5:b2:2a:c4:
5e:31:8d:1b:49:e3:83:09:8c:84:9e:4f:8c:18:07:2d:d7:dd:
87:94:4b:fd:ec:29:56:9f:b9:83:05:69:69:ff:2c:2e:1a:99:
ab:9b:7e:9f:e8:95:4f:a0:83:9d:73:d0:39:12:17:4a:8b:d1:
78:69:68:6f:a1:b0:54:55:53:a2:52:78:11:29:29:d9:e4:e2:
cd:b1:91:a4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCQswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyNDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY5RkE5NTlBMkI0RDc1
RTQ3RjMzQjdDNDYxOUVCRjZDNzVCOEQ0QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPBXCMq9s0HOdt6ZsgHRIgCx769Uq4ykzbfhDG82cP0ZDlXR5s
R9oGZpJgrECP2u+csMei8Gr6BPgaJP3srwZBe2ZVP4fhSmyz+QpWDSWGr1TRyQS+
4q9AUCYWWhfH+hfKZYw6Nh+/jOsEB50PwoCIP83lpCw7++bLfKTdvSI3/fvfLhsH
YWPXKv87yC69t1B0FHWnu/VFV9+7cAsjWh5Va0Jhc2s1qs3Iqgt1n/rWe6YU4ALO
maaSfdDUGRsFgQ0S0hSpZLAGVNI6BSU9V5US/EPmBSTxRygbuagWPWuVdYdqzSY5
Lb04Devhz1IhTWbMY5491+9kHyk64HuXbKOfAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUafqVmitNdeR/M7fEYZ6/bHW41KcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYWZxVm1pdE5kZVJfTTdmRVlaNl9i
SFc0MUtjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppCDAN
BgkqhkiG9w0BAQsFAAOCAQEARvKF9E634wAs6UGtchktQXx/5gn1uCqhZ5hTZ9xI
fLR9TjWq34WQbPv4TJ5i/LhiBaRIa0YQtiMWyT93IFtJENM8rSLNiHE3sCKWjhFy
mepKlOLNif5zr1qB+yBKyVlC2Q7QJATOVdzflSwQ9r6qv3cjqiiUc9OudYlAfTII
0wnaOiQ/qvtYOQx1WUS99ON8bJdNPbMEbImsQCAQARsgv4lg5i5Az4mnCxfiCHmU
fkPFsirEXjGNG0njgwmMhJ5PjBgHLdfdh5RL/ewpVp+5gwVpaf8sLhqZq5t+n+iV
T6CDnXPQORIXSovReGlob6GwVFVTolJ4ESkp2eTizbGRpA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org