Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fDHYnC6hdXKRdEub7slRMC5XJ28.roa
File: fDHYnC6hdXKRdEub7slRMC5XJ28.roa (raw, json)
Hash identifier: Rzt7IHOkIe3VFPyESPcXnFzTzPUi0BdLtjJCuw827vs=
Subject key identifier: 7C:31:D8:9C:2E:A1:75:72:91:74:4B:9B:EE:C9:51:30:2E:57:27:6F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E79
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fDHYnC6hdXKRdEub7slRMC5XJ28.roa
Signing time: Wed 29 Sep 2021 02:43:38 +0000
ROA not before: Wed 29 Sep 2021 02:43:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.107.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3705 (0xe79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7C31D89C2EA1757291744B9BEEC951302E57276F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:23:28:01:53:26:57:7f:e4:a4:ec:24:22:a2:
90:b0:ba:e7:86:e2:af:ec:7e:0f:b6:1d:34:1f:7e:
fc:e6:70:fa:1d:d5:31:45:6c:fa:b9:3a:76:fe:a3:
8d:d8:09:e1:2a:5a:47:d7:8e:74:72:d9:72:46:5c:
0e:e6:29:e3:98:4f:d8:0c:bd:f5:de:86:08:4d:a6:
02:c9:96:20:67:1a:fc:e6:62:c9:56:bd:13:7d:c6:
0e:ae:70:1c:51:95:82:23:29:d3:49:17:89:20:f1:
92:22:cf:08:20:b1:a7:d5:65:56:2b:bb:68:d3:ef:
b9:f6:6d:e4:86:e6:2b:91:d4:f7:33:94:22:be:36:
f1:12:32:b7:83:f7:65:26:75:ad:06:e2:53:fb:26:
45:c8:47:26:74:d1:ca:37:be:57:3e:bb:a4:0b:25:
5d:09:7b:a1:ef:6c:e7:42:61:a1:ff:e9:2a:12:ad:
9b:e2:bf:3e:cd:4d:ee:a4:ab:e9:0e:99:bd:ef:e6:
ae:b2:5f:18:16:93:09:da:a2:47:6d:24:f4:c9:15:
fd:8b:d3:16:41:22:e7:75:fd:98:b3:d7:dc:c7:0f:
04:27:09:9b:1c:62:23:20:47:c4:42:ea:48:62:e5:
60:b2:46:25:af:64:b0:b9:86:2c:2e:c3:0e:46:a1:
c3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:31:D8:9C:2E:A1:75:72:91:74:4B:9B:EE:C9:51:30:2E:57:27:6F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fDHYnC6hdXKRdEub7slRMC5XJ28.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.128.0/20
Signature Algorithm: sha256WithRSAEncryption
17:d3:88:81:69:14:c0:60:dc:9a:6f:b2:53:78:7b:54:3f:6e:
30:1a:15:c4:95:0d:b6:b9:7c:65:29:66:36:3e:f5:08:fb:4c:
5a:21:40:0d:79:5f:86:4b:3f:88:a1:82:f5:cc:0d:61:a1:e8:
1f:ad:27:11:4c:d3:fd:6a:77:8e:25:b3:ac:6c:7d:4d:d8:83:
1e:76:7c:87:a7:f9:5f:a3:63:16:94:fc:79:cb:48:4d:35:e4:
b8:01:ff:8b:65:93:c8:c8:97:11:ff:d5:2b:2b:59:f3:7f:18:
53:f5:d5:ea:b7:8d:94:5a:bb:6e:07:d7:68:8d:05:b7:21:88:
30:a9:44:a1:1a:0c:42:f7:f6:b1:7a:e7:75:6e:97:21:c8:fd:
c9:bf:54:7b:0b:2f:09:bf:1f:fe:b0:e9:67:8f:6a:97:f9:e5:
f1:ce:a8:ee:56:ce:4f:c3:4a:a9:2c:61:d6:ff:08:2f:0d:27:
23:10:f7:7b:ae:d4:2b:e8:98:62:bf:8a:cd:90:78:93:89:c4:
21:24:35:a5:cf:70:10:e0:cf:40:43:94:c9:8b:fc:23:ac:4d:
ff:a0:8c:a0:38:9f:da:4c:84:67:61:ed:a8:43:33:6b:0a:c8:
bf:75:41:fe:8f:c6:ac:1e:ac:f6:4e:5e:ab:3d:90:b4:7f:65:
9d:26:78:dd
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDnkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMzhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDdDMzFEODlDMkVBMTc1
NzI5MTc0NEI5QkVFQzk1MTMwMkU1NzI3NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUIygBUyZXf+Sk7CQiopCwuueG4q/sfg+2HTQffvzmcPod1TFF
bPq5Onb+o43YCeEqWkfXjnRy2XJGXA7mKeOYT9gMvfXehghNpgLJliBnGvzmYslW
vRN9xg6ucBxRlYIjKdNJF4kg8ZIizwggsafVZVYru2jT77n2beSG5iuR1PczlCK+
NvESMreD92Umda0G4lP7JkXIRyZ00co3vlc+u6QLJV0Je6HvbOdCYaH/6SoSrZvi
vz7NTe6kq+kOmb3v5q6yXxgWkwnaokdtJPTJFf2L0xZBIud1/Ziz19zHDwQnCZsc
YiMgR8RC6khi5WCyRiWvZLC5hiwuww5GocMnAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUfDHYnC6hdXKRdEub7slRMC5XJ28wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZkRIWW5DNmhkWEtSZEV1YjdzbFJN
QzVYSjI4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGprgDAN
BgkqhkiG9w0BAQsFAAOCAQEAF9OIgWkUwGDcmm+yU3h7VD9uMBoVxJUNtrl8ZSlm
Nj71CPtMWiFADXlfhks/iKGC9cwNYaHoH60nEUzT/Wp3jiWzrGx9TdiDHnZ8h6f5
X6NjFpT8ectITTXkuAH/i2WTyMiXEf/VKytZ838YU/XV6reNlFq7bgfXaI0FtyGI
MKlEoRoMQvf2sXrndW6XIcj9yb9UewsvCb8f/rDpZ49ql/nl8c6o7lbOT8NKqSxh
1v8ILw0nIxD3e67UK+iYYr+KzZB4k4nEISQ1pc9wEODPQEOUyYv8I6xN/6CMoDif
2kyEZ2HtqEMzawrIv3VB/o/GrB6s9k5eqz2QtH9lnSZ43Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org