Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cH9Sh8k63sDUs-PJlPGb7UVSWrY.roa
File: cH9Sh8k63sDUs-PJlPGb7UVSWrY.roa (raw, json)
Hash identifier: ul3ThKU6ufnUP64p6rw5Pka/8EMDTY0IT924Yz71gSk=
Subject key identifier: 70:7F:52:87:C9:3A:DE:C0:D4:B3:E3:C9:94:F1:9B:ED:45:52:5A:B6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 085B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cH9Sh8k63sDUs-PJlPGb7UVSWrY.roa
Signing time: Tue 29 Sep 2020 09:51:56 +0000
ROA not before: Tue 29 Sep 2020 09:51:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2139 (0x85b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=707F5287C93ADEC0D4B3E3C994F19BED45525AB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a3:6b:98:79:c9:87:f8:81:42:60:b3:45:3f:
0a:7e:bd:8b:51:e2:e3:ba:b4:ab:13:41:18:52:00:
c5:12:85:a0:e5:e5:a1:84:b9:35:ac:e7:77:cb:ff:
c0:18:8c:81:b4:07:d2:ac:a3:27:fd:7f:f2:db:2d:
7c:37:15:16:d2:02:50:a5:42:2f:aa:25:a1:8f:8f:
95:c9:d0:9d:43:43:63:f1:01:51:85:7c:94:ce:66:
5a:55:63:d0:64:cf:cc:b3:8d:47:0a:fd:66:25:58:
17:93:5b:cd:5c:72:0b:9e:4e:99:73:7d:f2:b8:8f:
db:96:87:7f:06:1d:05:3b:ad:c7:fa:c2:47:0d:23:
fd:ae:50:63:36:60:b0:f4:a4:16:ab:d7:04:a0:c1:
db:fc:e1:7e:f2:56:fe:6c:a5:ad:7f:5d:23:6e:91:
3d:5e:df:dd:23:e8:94:bf:c1:d2:d8:ae:de:25:eb:
02:f6:70:c0:95:61:dc:4f:45:87:4c:0d:45:be:c2:
6e:b5:44:c9:61:e6:81:3c:3d:11:92:9d:74:d7:43:
4e:76:c2:9b:6b:90:94:fa:c7:ff:ca:57:39:8e:ad:
44:d8:6c:1f:c3:2a:64:d6:01:fd:ac:ca:1c:74:20:
1a:0c:a1:20:df:e4:a6:2c:7e:a6:1f:8a:bb:c2:7d:
59:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:7F:52:87:C9:3A:DE:C0:D4:B3:E3:C9:94:F1:9B:ED:45:52:5A:B6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cH9Sh8k63sDUs-PJlPGb7UVSWrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.249.0/24
Signature Algorithm: sha256WithRSAEncryption
99:41:61:bb:09:d8:fa:d0:55:29:87:ca:d4:3d:6f:65:c0:2b:
a6:a7:d5:c4:4a:27:71:bc:b4:6a:ca:ec:c3:77:17:fa:53:aa:
b3:ac:7d:eb:09:78:9e:60:07:16:51:f6:db:3f:a8:7d:94:23:
19:03:7f:9b:7e:d2:e6:bd:0b:f9:91:b4:3e:77:e7:34:8c:02:
ee:1b:7c:1f:ce:74:59:38:87:59:31:64:e1:80:d9:83:f9:93:
4a:ab:85:33:5b:e9:36:33:b7:0f:b6:12:c9:67:ba:8b:0e:43:
79:eb:63:92:2c:30:b8:dd:b7:8d:bd:1e:ad:00:39:f0:3f:a1:
39:79:dc:c5:e8:91:5d:74:a3:19:87:06:5c:09:4c:a4:87:db:
60:0f:64:f9:a7:f6:40:ce:06:ae:71:6c:d7:fb:9e:46:91:40:
26:2b:6e:61:ae:0f:c7:53:18:1b:86:f1:4e:bb:23:88:ed:f4:
9c:bc:42:8f:39:c3:e2:36:ce:6f:15:f7:0a:dd:9e:bd:05:09:
82:aa:37:69:7b:b2:6f:9a:fe:70:81:78:02:3b:d0:b0:98:54:
a2:50:64:7d:e8:94:29:36:c0:55:03:4c:a8:c4:b6:5b:13:5f:
3f:01:e5:b0:cc:d6:5e:ba:7d:c7:2b:74:a5:75:78:a4:03:24:
23:16:83:a5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCFswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUxNTZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDcwN0Y1Mjg3QzkzQURF
QzBENEIzRTNDOTk0RjE5QkVENDU1MjVBQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDo2uYecmH+IFCYLNFPwp+vYtR4uO6tKsTQRhSAMUShaDl5aGE
uTWs53fL/8AYjIG0B9Ksoyf9f/LbLXw3FRbSAlClQi+qJaGPj5XJ0J1DQ2PxAVGF
fJTOZlpVY9Bkz8yzjUcK/WYlWBeTW81ccgueTplzffK4j9uWh38GHQU7rcf6wkcN
I/2uUGM2YLD0pBar1wSgwdv84X7yVv5spa1/XSNukT1e390j6JS/wdLYrt4l6wL2
cMCVYdxPRYdMDUW+wm61RMlh5oE8PRGSnXTXQ052wptrkJT6x//KVzmOrUTYbB/D
KmTWAf2syhx0IBoMoSDf5KYsfqYfirvCfVkzAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUcH9Sh8k63sDUs+PJlPGb7UVSWrYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvY0g5U2g4azYzc0RVcy1QSmxQR2I3
VVZTV3JZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpp+TAN
BgkqhkiG9w0BAQsFAAOCAQEAmUFhuwnY+tBVKYfK1D1vZcArpqfVxEoncby0asrs
w3cX+lOqs6x96wl4nmAHFlH22z+ofZQjGQN/m37S5r0L+ZG0PnfnNIwC7ht8H850
WTiHWTFk4YDZg/mTSquFM1vpNjO3D7YSyWe6iw5DeetjkiwwuN23jb0erQA58D+h
OXncxeiRXXSjGYcGXAlMpIfbYA9k+af2QM4GrnFs1/ueRpFAJituYa4Px1MYG4bx
TrsjiO30nLxCjznD4jbObxX3Ct2evQUJgqo3aXuyb5r+cIF4AjvQsJhUolBkfeiU
KTbAVQNMqMS2WxNfPwHlsMzWXrp9xyt0pXV4pAMkIxaDpQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org