Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pRdrWhSptWN36MNByah6AgvizT0.roa
File: pRdrWhSptWN36MNByah6AgvizT0.roa (raw, json)
Hash identifier: 0jl+sAk4OJ+2aUGbWxfKcmgOHk7mt3ttATbjLXE8/Zk=
Subject key identifier: A5:17:6B:5A:14:A9:B5:63:77:E8:C3:41:C9:A8:7A:02:0B:E2:CD:3D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E66
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pRdrWhSptWN36MNByah6AgvizT0.roa
Signing time: Wed 29 Sep 2021 02:43:32 +0000
ROA not before: Wed 29 Sep 2021 02:43:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 106.105.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3686 (0xe66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A5176B5A14A9B56377E8C341C9A87A020BE2CD3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e3:2b:27:7b:be:5c:21:f3:ac:70:ca:40:0b:
20:9d:4b:67:67:13:65:8b:0c:2c:62:ff:80:6d:72:
71:dd:1c:c2:25:0a:70:91:c2:c9:43:12:f5:d0:62:
52:51:8f:5e:fa:53:6c:0c:37:64:7d:04:25:8d:ed:
18:47:73:e3:12:c8:b2:72:0a:3d:22:2f:11:4b:85:
91:0c:08:45:f2:21:c6:e1:22:9c:4d:15:5c:e0:7b:
59:2c:72:3e:be:0b:ac:de:4e:f1:b2:c4:50:01:32:
b2:01:82:44:7f:80:cd:7c:97:1f:b7:20:48:d4:37:
63:22:6f:0c:92:0f:64:11:c5:5f:a7:e2:ae:53:63:
09:cd:8b:39:ce:db:5a:fc:58:45:75:ec:f9:02:45:
b2:c3:06:e6:8b:fd:f2:21:c2:4c:e2:be:22:b1:dd:
b7:57:b3:ac:65:1e:54:25:71:3a:87:13:37:7a:4a:
a2:0f:f0:57:40:22:ef:3b:16:e1:ff:cd:69:7d:6e:
1f:34:0d:73:60:d7:7b:54:eb:09:3f:9f:f3:2b:6c:
a4:9d:59:2a:9c:3d:fb:cb:46:4f:9b:33:68:ef:3e:
94:84:83:7d:81:fd:cd:02:0a:de:f4:62:7b:e4:ed:
e7:a5:4e:78:2a:3f:86:ab:38:5c:a4:17:c9:74:b2:
dc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:17:6B:5A:14:A9:B5:63:77:E8:C3:41:C9:A8:7A:02:0B:E2:CD:3D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pRdrWhSptWN36MNByah6AgvizT0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.128.0/19
Signature Algorithm: sha256WithRSAEncryption
58:9d:72:ce:af:a0:5f:23:51:ce:00:89:2c:de:56:7c:9a:95:
53:41:42:48:b3:90:16:7b:c2:9a:c9:18:7f:6b:03:62:92:03:
24:d4:69:ac:cb:e5:20:91:e8:59:d1:ce:5b:6c:d4:fa:0b:f5:
2d:1d:f4:6d:b4:05:a5:d1:bf:82:e2:cf:e4:1c:1e:d5:3a:67:
f4:b4:03:b6:7a:eb:81:0e:97:c0:a2:65:01:f1:a3:72:bc:3a:
04:14:2a:fb:d3:5a:74:23:75:49:22:3e:fc:5c:f4:75:2b:70:
3c:c1:ed:5d:9a:64:29:a3:31:81:42:2c:10:25:19:c3:b3:58:
b8:84:30:da:cf:90:52:17:1e:42:85:ee:a6:97:5c:62:20:0d:
57:63:42:46:3a:5d:b6:cb:e8:26:df:42:34:cf:94:13:00:5f:
75:78:2d:1b:2c:e0:e8:f0:b4:8f:64:97:01:de:ad:d5:99:6a:
75:25:2f:cd:61:bf:39:10:14:c9:1e:57:1a:67:5c:4e:d5:3b:
a7:48:d0:47:d3:32:fb:62:f4:28:91:bb:c4:25:78:41:48:8c:
ba:46:eb:75:d7:10:94:8d:4b:6c:58:32:69:d9:6d:9e:e9:9a:
59:6b:3a:c2:2a:6d:a5:ef:18:d2:4d:01:6c:47:a4:77:08:c3:
e4:08:32:31
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDmYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMzJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEE1MTc2QjVBMTRBOUI1
NjM3N0U4QzM0MUM5QTg3QTAyMEJFMkNEM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDF4ysne75cIfOscMpACyCdS2dnE2WLDCxi/4BtcnHdHMIlCnCR
wslDEvXQYlJRj176U2wMN2R9BCWN7RhHc+MSyLJyCj0iLxFLhZEMCEXyIcbhIpxN
FVzge1kscj6+C6zeTvGyxFABMrIBgkR/gM18lx+3IEjUN2MibwySD2QRxV+n4q5T
YwnNiznO21r8WEV17PkCRbLDBuaL/fIhwkziviKx3bdXs6xlHlQlcTqHEzd6SqIP
8FdAIu87FuH/zWl9bh80DXNg13tU6wk/n/MrbKSdWSqcPfvLRk+bM2jvPpSEg32B
/c0CCt70Ynvk7eelTngqP4arOFykF8l0stxVAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUpRdrWhSptWN36MNByah6AgvizT0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcFJkcldoU3B0V04zNk1OQnlhaDZB
Z3ZpelQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppgDAN
BgkqhkiG9w0BAQsFAAOCAQEAWJ1yzq+gXyNRzgCJLN5WfJqVU0FCSLOQFnvCmskY
f2sDYpIDJNRprMvlIJHoWdHOW2zU+gv1LR30bbQFpdG/guLP5Bwe1Tpn9LQDtnrr
gQ6XwKJlAfGjcrw6BBQq+9NadCN1SSI+/Fz0dStwPMHtXZpkKaMxgUIsECUZw7NY
uIQw2s+QUhceQoXuppdcYiANV2NCRjpdtsvoJt9CNM+UEwBfdXgtGyzg6PC0j2SX
Ad6t1ZlqdSUvzWG/ORAUyR5XGmdcTtU7p0jQR9My+2L0KJG7xCV4QUiMukbrddcQ
lI1LbFgyadltnumaWWs6wiptpe8Y0k0BbEekdwjD5AgyMQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org