Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ckPqae9T3VXsnZjkfuKmCmFbfi4.roa
File: ckPqae9T3VXsnZjkfuKmCmFbfi4.roa (raw, json)
Hash identifier: kQZnOs3DhP8NOYMpMLairDh3lBpff5lmze/RJxMHXe4=
Subject key identifier: 72:43:EA:69:EF:53:DD:55:EC:9D:98:E4:7E:E2:A6:0A:61:5B:7E:2E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E4F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ckPqae9T3VXsnZjkfuKmCmFbfi4.roa
Signing time: Wed 29 Sep 2021 02:43:26 +0000
ROA not before: Wed 29 Sep 2021 02:43:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131586
IP address blocks: 106.106.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3663 (0xe4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7243EA69EF53DD55EC9D98E47EE2A60A615B7E2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:17:cd:70:1d:2d:51:1e:9b:82:4d:1a:af:45:
8d:af:b6:59:d2:e9:34:ca:78:4f:c4:e7:4f:e0:f2:
f6:1b:01:b6:b5:d8:23:43:27:c8:af:6d:90:23:8a:
64:25:20:04:40:5f:ac:5d:30:8b:c7:a2:3c:18:2e:
16:28:e6:0e:87:40:fb:b3:4d:82:5a:2c:12:6e:e9:
ca:e5:f9:3b:b9:df:6c:ad:da:50:7c:3b:90:95:8f:
60:7d:50:42:57:36:28:aa:d9:c8:cf:4d:12:2f:ec:
2a:e9:9a:5e:c9:f0:76:d8:49:68:d0:40:1f:5b:70:
35:7b:1f:1b:79:01:68:d9:a0:a9:29:09:76:30:43:
ef:55:6f:c4:0a:99:61:bc:d4:7e:74:11:dd:15:8b:
17:5a:73:f0:6f:46:58:99:f2:d3:11:32:12:00:49:
af:9d:ee:aa:84:6b:6d:fd:57:6e:ef:db:82:b7:b0:
5e:42:57:a2:7a:68:8c:1d:ab:61:a4:b2:11:2d:b2:
29:e3:a5:6b:b8:b7:58:95:23:b3:a5:c0:b4:73:5e:
60:23:ed:1a:95:01:cb:ab:c0:10:0e:0e:f5:1b:09:
cb:01:05:12:75:15:5a:ec:e1:e8:d9:6e:14:fc:aa:
f8:52:44:87:15:6f:f4:e4:fa:b7:02:09:c3:56:c1:
8f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:43:EA:69:EF:53:DD:55:EC:9D:98:E4:7E:E2:A6:0A:61:5B:7E:2E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ckPqae9T3VXsnZjkfuKmCmFbfi4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.0.0/17
Signature Algorithm: sha256WithRSAEncryption
97:17:3f:af:60:e2:96:d0:06:b9:28:70:e6:6f:7a:22:65:ac:
b4:40:50:d2:98:d2:f7:8b:62:5e:ae:52:00:aa:02:fe:db:ef:
4f:8e:60:06:e3:b1:86:2d:dc:c6:72:4d:71:f9:7c:62:5d:4a:
75:50:df:da:f4:5f:10:9f:95:83:c5:98:24:5f:3e:9c:11:75:
a0:c0:7e:dd:60:92:fa:b4:e3:69:86:79:36:78:d1:c0:86:a4:
c6:a0:bb:01:0d:c7:68:b1:47:3b:2e:fc:f7:e8:50:a3:53:60:
9f:f8:5d:1d:bf:e9:ba:bf:99:6d:24:73:01:b2:e9:e7:88:da:
79:51:49:ae:cb:7e:d3:26:53:a5:67:85:fa:9a:99:7a:37:97:
f5:1a:9a:4c:66:1f:60:70:c8:55:ac:d2:13:fc:88:e2:0b:f0:
db:b6:b4:e1:3c:37:4d:a6:ef:64:8f:13:2c:72:7d:d3:81:90:
d0:c1:d9:18:02:3c:65:b7:50:cd:44:d1:2b:dc:50:7c:b9:98:
4c:c1:4f:ae:65:18:89:43:bd:c9:0a:67:ba:4f:ed:8d:f4:1d:
80:bf:c8:ca:68:32:49:8c:f6:52:14:ea:f4:af:e3:13:60:fa:
98:9f:f3:5f:e0:da:0f:a0:53:82:55:d7:49:84:9a:0b:f6:2f:
0b:85:d2:37
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMjZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcyNDNFQTY5RUY1M0RE
NTVFQzlEOThFNDdFRTJBNjBBNjE1QjdFMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCaF81wHS1RHpuCTRqvRY2vtlnS6TTKeE/E50/g8vYbAba12CND
J8ivbZAjimQlIARAX6xdMIvHojwYLhYo5g6HQPuzTYJaLBJu6crl+Tu532yt2lB8
O5CVj2B9UEJXNiiq2cjPTRIv7Crpml7J8HbYSWjQQB9bcDV7Hxt5AWjZoKkpCXYw
Q+9Vb8QKmWG81H50Ed0Vixdac/BvRliZ8tMRMhIASa+d7qqEa239V27v24K3sF5C
V6J6aIwdq2GkshEtsinjpWu4t1iVI7OlwLRzXmAj7RqVAcurwBAODvUbCcsBBRJ1
FVrs4ejZbhT8qvhSRIcVb/Tk+rcCCcNWwY/JAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUckPqae9T3VXsnZjkfuKmCmFbfi4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvY2tQcWFlOVQzVlhzblpqa2Z1S21D
bUZiZmk0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB2pqADAN
BgkqhkiG9w0BAQsFAAOCAQEAlxc/r2DiltAGuShw5m96ImWstEBQ0pjS94tiXq5S
AKoC/tvvT45gBuOxhi3cxnJNcfl8Yl1KdVDf2vRfEJ+Vg8WYJF8+nBF1oMB+3WCS
+rTjaYZ5NnjRwIakxqC7AQ3HaLFHOy789+hQo1Ngn/hdHb/pur+ZbSRzAbLp54ja
eVFJrst+0yZTpWeF+pqZejeX9RqaTGYfYHDIVazSE/yI4gvw27a04Tw3TabvZI8T
LHJ904GQ0MHZGAI8ZbdQzUTRK9xQfLmYTMFPrmUYiUO9yQpnuk/tjfQdgL/Iymgy
SYz2UhTq9K/jE2D6mJ/zX+DaD6BTglXXSYSaC/YvC4XSNw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org