Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/oSiVxBNp_5ZxxRhMKx_8ys2NuPo.roa
File: oSiVxBNp_5ZxxRhMKx_8ys2NuPo.roa (raw, json)
Hash identifier: 3gG1+wjeLYbJOW6Jcpr9AK7owyQlkPScUdsLFffYf3U=
Subject key identifier: A1:28:95:C4:13:69:FF:96:71:C5:18:4C:2B:1F:FC:CA:CD:8D:B8:FA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E36
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oSiVxBNp_5ZxxRhMKx_8ys2NuPo.roa
Signing time: Wed 29 Sep 2021 02:43:19 +0000
ROA not before: Wed 29 Sep 2021 02:43:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 106.105.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3638 (0xe36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A12895C41369FF9671C5184C2B1FFCCACD8DB8FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b3:43:45:66:32:0d:e9:5e:39:28:4a:b5:c3:
96:e3:56:29:64:06:f3:74:92:f0:cc:32:14:01:5b:
30:37:a5:89:26:08:36:03:d0:ce:43:52:87:dd:2a:
db:51:5e:47:2a:c0:34:e7:55:93:c6:28:d1:87:e4:
fd:cf:31:34:02:30:92:a4:29:09:48:68:88:d7:e1:
06:5b:e8:b3:ff:68:46:71:5c:a1:9d:ad:1f:33:ab:
06:62:b2:24:43:3b:91:cd:71:f3:fa:76:fa:1d:a9:
93:be:e1:2d:21:80:be:68:11:42:dd:6f:5d:77:d6:
91:62:c4:fb:34:56:3d:68:00:7e:7a:0b:27:38:90:
82:71:c8:84:13:5a:9f:89:d2:99:17:9d:68:fd:96:
74:52:d0:38:66:47:11:59:50:0d:b5:24:e8:95:b6:
c8:b9:93:f1:2b:16:f1:71:e6:86:5a:1c:c3:e8:48:
f4:f2:02:bf:d2:49:0d:99:60:93:e5:68:62:e4:3f:
2e:b0:f8:b2:e5:81:ac:44:56:45:00:f8:27:e3:a4:
e8:74:98:8d:9c:1d:be:75:9b:5a:56:b7:97:db:0e:
e0:1b:be:89:73:6e:b6:88:3a:9a:b4:63:b4:ce:e2:
13:1a:d0:22:61:39:03:94:2d:67:2a:66:57:6e:c9:
98:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:28:95:C4:13:69:FF:96:71:C5:18:4C:2B:1F:FC:CA:CD:8D:B8:FA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oSiVxBNp_5ZxxRhMKx_8ys2NuPo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.104.0/22
Signature Algorithm: sha256WithRSAEncryption
42:d7:14:14:66:36:4f:73:c8:5c:8d:ae:57:8b:12:4e:2f:9f:
c8:a6:16:47:75:49:19:89:12:e0:33:b1:62:d6:1c:ac:15:2e:
a1:68:65:57:bb:fb:64:93:be:6c:74:f2:96:68:1d:9a:62:01:
fb:34:7e:01:2d:c0:ad:14:23:2e:3b:f8:da:44:55:29:82:b6:
73:cc:3c:05:d2:56:e7:61:cb:3d:9a:4c:60:79:7b:72:e8:5e:
29:89:0d:37:26:d1:1c:04:88:e5:2b:07:b8:f4:05:91:cd:03:
0b:5a:b4:b5:37:97:26:8d:80:6b:be:40:2b:d3:66:df:48:55:
ac:2f:a7:6d:c6:e2:02:ea:f4:a1:9d:0d:c9:2c:3b:3f:e0:e2:
a0:51:db:16:43:a0:e9:98:9f:9a:b1:98:41:99:f5:23:34:bb:
50:4a:b5:93:6b:ad:f7:79:09:99:7a:3b:51:ec:0e:84:86:d7:
f5:e5:fc:ba:77:c6:15:3d:51:a3:c0:dc:af:3e:6b:39:9a:d0:
81:08:f7:a4:96:a9:66:92:7a:0d:10:95:6c:6b:95:f5:ec:a7:
f7:2c:8a:ef:9c:60:5c:46:9e:e7:6c:de:f1:a0:38:27:1c:76:
e7:13:83:74:ac:0f:4a:cb:c1:e1:82:d0:5a:a3:a9:b9:15:99:
6d:ef:78:fc
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEExMjg5NUM0MTM2OUZG
OTY3MUM1MTg0QzJCMUZGQ0NBQ0Q4REI4RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVs0NFZjIN6V45KEq1w5bjVilkBvN0kvDMMhQBWzA3pYkmCDYD
0M5DUofdKttRXkcqwDTnVZPGKNGH5P3PMTQCMJKkKQlIaIjX4QZb6LP/aEZxXKGd
rR8zqwZisiRDO5HNcfP6dvodqZO+4S0hgL5oEULdb1131pFixPs0Vj1oAH56Cyc4
kIJxyIQTWp+J0pkXnWj9lnRS0DhmRxFZUA21JOiVtsi5k/ErFvFx5oZaHMPoSPTy
Ar/SSQ2ZYJPlaGLkPy6w+LLlgaxEVkUA+CfjpOh0mI2cHb51m1pWt5fbDuAbvolz
braIOpq0Y7TO4hMa0CJhOQOULWcqZlduyZiXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUoSiVxBNp/5ZxxRhMKx/8ys2NuPowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvb1NpVnhCTnBfNVp4eFJoTUt4Xzh5
czJOdVBvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmppaDAN
BgkqhkiG9w0BAQsFAAOCAQEAQtcUFGY2T3PIXI2uV4sSTi+fyKYWR3VJGYkS4DOx
YtYcrBUuoWhlV7v7ZJO+bHTylmgdmmIB+zR+AS3ArRQjLjv42kRVKYK2c8w8BdJW
52HLPZpMYHl7cuheKYkNNybRHASI5SsHuPQFkc0DC1q0tTeXJo2Aa75AK9Nm30hV
rC+nbcbiAur0oZ0NySw7P+DioFHbFkOg6ZifmrGYQZn1IzS7UEq1k2ut93kJmXo7
UewOhIbX9eX8unfGFT1Ro8Dcrz5rOZrQgQj3pJapZpJ6DRCVbGuV9eyn9yyK75xg
XEae52ze8aA4Jxx25xODdKwPSsvB4YLQWqOpuRWZbe94/A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org