Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/j5jLs5ZzAJm10CKuiNrCTWeUEys.roa
File: j5jLs5ZzAJm10CKuiNrCTWeUEys.roa (raw, json)
Hash identifier: Ui9ASY2lvH9Q/smlR6yE26w9t9ESFxYHN2c6fs/BMvI=
Subject key identifier: 8F:98:CB:B3:96:73:00:99:B5:D0:22:AE:88:DA:C2:4D:67:94:13:2B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E53
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/j5jLs5ZzAJm10CKuiNrCTWeUEys.roa
Signing time: Wed 29 Sep 2021 02:43:27 +0000
ROA not before: Wed 29 Sep 2021 02:43:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 106.105.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3667 (0xe53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8F98CBB396730099B5D022AE88DAC24D6794132B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ed:a7:fb:e4:cd:27:1d:18:62:83:c1:d6:83:
10:28:7d:08:9d:d8:8d:16:b8:b9:f1:2b:53:36:13:
04:0e:dd:63:60:38:85:27:c9:99:2a:74:33:f9:a1:
5b:7b:43:dc:92:4b:ab:76:3f:01:c7:67:9e:b5:04:
d4:b2:75:4d:61:d5:73:11:3f:bf:de:d9:1a:35:66:
a2:82:34:26:89:65:66:15:a6:08:5d:b5:73:c3:a1:
2e:19:90:23:9d:06:99:60:76:ca:f5:c2:23:81:48:
35:b4:4e:22:4f:63:0d:6c:cf:bf:72:a5:d3:23:5d:
6a:17:4e:7d:ab:35:45:9e:4d:24:83:66:e0:34:05:
3b:cf:d3:ec:6f:e7:0a:37:7f:a9:4d:56:28:5b:74:
dd:10:d5:14:57:66:a0:b2:8c:67:16:56:24:aa:60:
7a:d7:ec:5d:c7:6a:b2:db:ec:27:3d:02:85:31:11:
56:3a:d3:9a:fb:24:ee:8d:a3:e8:b7:1c:e5:51:4e:
5f:87:f8:ee:f9:37:10:4d:17:04:9a:48:25:e4:5e:
3c:41:8c:f4:cb:37:29:a1:70:67:77:3e:26:07:43:
66:f2:52:c7:b1:82:3a:9c:55:2b:33:6e:94:b4:24:
b9:6c:cf:ba:48:c6:fa:d9:17:3e:a4:ad:ef:8e:1c:
0a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:98:CB:B3:96:73:00:99:B5:D0:22:AE:88:DA:C2:4D:67:94:13:2B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/j5jLs5ZzAJm10CKuiNrCTWeUEys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6c:04:46:8f:9c:c7:71:47:d7:92:f8:cc:6f:2a:c9:a1:0b:d3:
d3:66:1e:87:62:51:be:92:8f:13:08:02:f3:bd:72:6b:37:86:
09:ec:44:d0:a5:2c:7a:76:b9:be:05:89:7e:9e:8a:e5:67:e0:
41:7a:14:40:09:22:0a:5d:58:d9:81:f6:a3:73:c9:b5:91:c8:
ea:59:2c:e2:22:ff:10:7d:35:a5:3a:28:bf:46:fe:36:59:93:
37:cb:66:96:88:f3:c1:89:2c:9c:a9:e5:d8:3e:57:34:c3:49:
aa:b2:5d:6b:be:64:07:21:7d:f4:80:8a:da:af:2a:bf:21:b5:
4e:e9:cd:29:98:4e:bf:e7:20:02:9a:91:d8:42:ac:1d:41:01:
c9:18:b7:ac:2a:2a:72:34:5b:d8:15:bb:df:fd:6a:40:be:54:
f0:bd:1b:2b:c3:0e:f7:73:a8:f0:50:9a:16:d4:b0:8b:83:0b:
5a:44:32:b5:04:63:9c:46:d7:96:79:f7:f6:5f:73:38:90:3a:
0a:10:d6:aa:f2:d3:f2:32:f7:19:06:cb:52:ba:11:85:26:11:
f8:b9:e1:24:78:e5:37:0f:2f:7b:3d:0c:22:44:cc:88:c0:33:
de:fa:67:0e:82:7d:d8:95:6d:cd:86:8f:dc:7e:58:57:96:44:
b3:a5:dd:f8
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDlMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMjdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhGOThDQkIzOTY3MzAw
OTlCNUQwMjJBRTg4REFDMjRENjc5NDEzMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDn7af75M0nHRhig8HWgxAofQid2I0WuLnxK1M2EwQO3WNgOIUn
yZkqdDP5oVt7Q9ySS6t2PwHHZ561BNSydU1h1XMRP7/e2Ro1ZqKCNCaJZWYVpghd
tXPDoS4ZkCOdBplgdsr1wiOBSDW0TiJPYw1sz79ypdMjXWoXTn2rNUWeTSSDZuA0
BTvP0+xv5wo3f6lNVihbdN0Q1RRXZqCyjGcWViSqYHrX7F3HarLb7Cc9AoUxEVY6
05r7JO6No+i3HOVRTl+H+O75NxBNFwSaSCXkXjxBjPTLNymhcGd3PiYHQ2byUsex
gjqcVSszbpS0JLlsz7pIxvrZFz6kre+OHAqXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUj5jLs5ZzAJm10CKuiNrCTWeUEyswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvajVqTHM1WnpBSm0xMENLdWlOckNU
V2VVRXlzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppIDAN
BgkqhkiG9w0BAQsFAAOCAQEAbARGj5zHcUfXkvjMbyrJoQvT02Yeh2JRvpKPEwgC
871yazeGCexE0KUsena5vgWJfp6K5WfgQXoUQAkiCl1Y2YH2o3PJtZHI6lks4iL/
EH01pToov0b+NlmTN8tmlojzwYksnKnl2D5XNMNJqrJda75kByF99ICK2q8qvyG1
TunNKZhOv+cgApqR2EKsHUEByRi3rCoqcjRb2BW73/1qQL5U8L0bK8MO93Oo8FCa
FtSwi4MLWkQytQRjnEbXlnn39l9zOJA6ChDWqvLT8jL3GQbLUroRhSYR+LnhJHjl
Nw8vez0MIkTMiMAz3vpnDoJ92JVtzYaP3H5YV5ZEs6Xd+A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org