Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/parY0GNBgsEg-9QzpQ6ttfANuTU.roa
File: parY0GNBgsEg-9QzpQ6ttfANuTU.roa (raw, json)
Hash identifier: GY/OIO8WNSqBHi9vxeOjZWlNlqdhinnKS/NTijRzlI8=
Subject key identifier: A5:AA:D8:D0:63:41:82:C1:20:FB:D4:33:A5:0E:AD:B5:F0:0D:B9:35
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E77
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/parY0GNBgsEg-9QzpQ6ttfANuTU.roa
Signing time: Wed 29 Sep 2021 02:43:37 +0000
ROA not before: Wed 29 Sep 2021 02:43:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 106.106.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3703 (0xe77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A5AAD8D0634182C120FBD433A50EADB5F00DB935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:be:a0:30:f8:3b:a8:71:1f:71:f6:e9:ac:ef:
af:75:54:80:a8:ab:26:06:a8:6b:0e:40:0b:d1:cd:
63:8e:c4:da:9c:9b:84:4e:62:fe:9b:e0:5c:21:52:
7a:2e:a6:35:29:18:60:49:57:9a:3c:25:b3:27:94:
8d:8d:e9:dd:b3:36:22:34:5b:e8:85:1f:d5:64:91:
df:68:c1:5a:ec:be:26:4d:41:86:cc:63:cf:e1:f8:
6b:e6:c5:97:00:54:6b:96:6e:ac:67:bd:d7:ec:ac:
af:6e:d2:1d:37:18:2b:a7:69:61:37:b9:8b:0c:81:
c0:70:8f:7d:3b:77:52:2b:53:cc:4f:68:d5:d8:46:
25:c0:dd:61:f0:2d:78:6a:60:dd:f3:e4:05:14:44:
ba:9d:95:e2:7d:b7:17:08:9c:08:71:be:c9:49:f2:
f4:69:ad:5a:76:93:fb:65:87:9f:5a:6c:fe:71:2a:
41:66:72:07:f7:2c:78:8f:5e:9f:6e:cd:65:03:38:
32:2f:d3:cb:41:66:76:50:a6:42:70:94:13:b6:8b:
9a:6f:55:df:b6:a9:d3:8a:5b:66:9e:4f:98:cf:a6:
da:73:e7:b4:79:39:28:08:10:82:d7:ff:d0:ea:e2:
bd:e9:d5:7a:c5:84:31:c7:c6:14:42:76:50:1a:77:
80:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AA:D8:D0:63:41:82:C1:20:FB:D4:33:A5:0E:AD:B5:F0:0D:B9:35
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/parY0GNBgsEg-9QzpQ6ttfANuTU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.220.0/22
Signature Algorithm: sha256WithRSAEncryption
56:06:a0:60:31:b2:80:b2:3b:63:d6:60:19:63:0f:9a:d5:34:
1a:be:81:50:b3:04:3b:37:61:83:62:88:5c:c4:45:8f:8c:32:
64:71:99:8a:71:28:02:ff:b1:14:68:d6:05:52:d4:6b:e8:c9:
fb:e3:ec:ae:d4:0b:12:6e:9f:84:b2:4f:f1:d5:10:ef:6b:11:
c3:bd:ee:58:67:17:96:1f:01:d4:a1:35:55:cc:8d:16:35:63:
53:5f:34:6c:bd:d0:0b:9a:5e:30:05:67:fa:97:f2:f2:5b:75:
e3:ee:fa:44:35:6d:65:dc:f4:c8:40:cd:46:de:84:b5:56:56:
2a:14:fd:1a:00:d5:21:80:8a:b7:e6:83:42:c2:96:37:99:cb:
70:91:36:73:dd:bf:d1:93:13:db:b0:07:23:4d:b4:2d:ba:a5:
ee:8a:40:7c:9e:70:b1:33:0d:47:3f:94:1e:02:97:03:85:78:
48:c8:36:50:e6:9f:77:e2:59:e9:00:f1:79:f3:92:83:82:f5:
60:7d:41:e2:6d:5d:38:54:b9:14:ce:f4:cc:35:9c:c1:54:f4:
cc:ee:44:12:86:e3:cb:87:9b:c6:c4:b6:33:67:4b:85:65:2e:
6a:00:b7:76:63:a7:48:74:95:41:0b:11:01:56:dc:9b:70:e0:
47:ca:5d:2a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMzdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEE1QUFEOEQwNjM0MTgy
QzEyMEZCRDQzM0E1MEVBREI1RjAwREI5MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDvvqAw+DuocR9x9ums7691VICoqyYGqGsOQAvRzWOOxNqcm4RO
Yv6b4FwhUnoupjUpGGBJV5o8JbMnlI2N6d2zNiI0W+iFH9Vkkd9owVrsviZNQYbM
Y8/h+GvmxZcAVGuWbqxnvdfsrK9u0h03GCunaWE3uYsMgcBwj307d1IrU8xPaNXY
RiXA3WHwLXhqYN3z5AUURLqdleJ9txcInAhxvslJ8vRprVp2k/tlh59abP5xKkFm
cgf3LHiPXp9uzWUDODIv08tBZnZQpkJwlBO2i5pvVd+2qdOKW2aeT5jPptpz57R5
OSgIEILX/9Dq4r3p1XrFhDHHxhRCdlAad4AtAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUparY0GNBgsEg+9QzpQ6ttfANuTUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcGFyWTBHTkJnc0VnLTlRenBRNnR0
ZkFOdVRVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmpq3DAN
BgkqhkiG9w0BAQsFAAOCAQEAVgagYDGygLI7Y9ZgGWMPmtU0Gr6BULMEOzdhg2KI
XMRFj4wyZHGZinEoAv+xFGjWBVLUa+jJ++PsrtQLEm6fhLJP8dUQ72sRw73uWGcX
lh8B1KE1VcyNFjVjU180bL3QC5peMAVn+pfy8lt14+76RDVtZdz0yEDNRt6EtVZW
KhT9GgDVIYCKt+aDQsKWN5nLcJE2c92/0ZMT27AHI020Lbql7opAfJ5wsTMNRz+U
HgKXA4V4SMg2UOafd+JZ6QDxefOSg4L1YH1B4m1dOFS5FM70zDWcwVT0zO5EEobj
y4ebxsS2M2dLhWUuagC3dmOnSHSVQQsRAVbcm3DgR8pdKg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org