Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rVpM44xiir1GSxxk7YCwdm08q5w.roa
File: rVpM44xiir1GSxxk7YCwdm08q5w.roa (raw, json)
Hash identifier: vn2FckzK8GVM6mA99Haw7kTlxdNAkIIHfjm/WYB/lRg=
Subject key identifier: AD:5A:4C:E3:8C:62:8A:BD:46:4B:1C:64:ED:80:B0:76:6D:3C:AB:9C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E71
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rVpM44xiir1GSxxk7YCwdm08q5w.roa
Signing time: Wed 29 Sep 2021 02:43:36 +0000
ROA not before: Wed 29 Sep 2021 02:43:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 106.105.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3697 (0xe71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AD5A4CE38C628ABD464B1C64ED80B0766D3CAB9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0d:a3:e9:b9:b6:fe:51:94:9f:1f:9f:9a:d3:
52:dc:b7:94:45:14:94:cd:b5:a2:b6:fa:32:03:76:
44:b0:88:0e:81:67:6a:dc:78:ca:82:b9:2e:90:5f:
82:53:7f:69:c0:cd:2b:18:4a:60:6a:50:06:75:3a:
3b:0d:e3:a2:cf:d3:63:db:6e:97:b8:a2:78:a1:74:
71:46:82:1e:79:38:0a:3e:9c:de:d8:a3:a2:9f:bd:
30:e5:88:aa:63:38:e1:03:aa:3d:9a:91:26:cd:72:
0e:1e:ee:56:6c:f6:03:67:e3:82:83:78:49:df:9e:
ac:68:2d:ba:d1:e9:bb:a5:44:30:67:6b:26:95:ea:
cd:fd:a5:20:9a:b1:42:b7:b7:cd:3d:62:ee:2e:1a:
cb:6f:9c:31:ef:24:c0:5f:e1:28:99:95:65:ce:c4:
1b:ef:2e:9d:4c:1a:c7:61:59:e1:39:58:9f:19:0e:
e3:34:2d:d6:8a:d6:67:c6:5c:32:19:27:36:4e:95:
15:19:13:8c:c6:64:fc:14:ec:eb:c7:05:60:52:25:
7b:00:f7:17:01:4c:de:7a:29:e2:44:61:98:92:1c:
4f:cd:cb:12:78:d2:fb:d2:3f:ab:c5:d8:32:9a:fb:
4e:ad:88:cc:5e:e9:0c:d8:11:ad:4e:7b:41:93:ac:
6f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5A:4C:E3:8C:62:8A:BD:46:4B:1C:64:ED:80:B0:76:6D:3C:AB:9C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rVpM44xiir1GSxxk7YCwdm08q5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.224.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:4b:e5:44:61:19:27:82:da:78:72:31:8b:8a:92:f9:cd:38:
88:dd:aa:5a:d4:7f:0c:5b:77:73:25:99:88:c7:5d:2e:62:b1:
38:26:64:36:1f:9c:f6:92:0e:88:83:66:aa:ff:13:6b:73:b7:
82:68:03:4f:05:be:93:6c:cd:3c:a0:7b:03:64:07:31:e4:1e:
ef:d4:63:f6:66:94:07:09:d7:ee:44:1b:b0:68:0e:69:4f:50:
21:5f:35:80:8f:35:f9:6f:b6:e6:52:da:41:01:c4:58:fd:1b:
48:52:6f:0b:ed:ae:c2:35:a3:fa:38:55:65:90:f9:80:55:fb:
87:30:01:59:74:33:98:56:04:8a:04:d1:6e:42:7a:f4:66:43:
98:dc:17:b5:9b:23:3b:9a:af:16:22:a3:0a:05:4d:14:dd:6f:
b7:a6:c9:60:4e:d2:1c:a4:0d:3e:1d:97:a8:99:f8:30:ee:bd:
25:b1:f7:24:70:e4:25:ee:ba:b0:e1:84:f9:4f:84:f0:4d:99:
06:df:9e:ed:dd:6e:7b:12:c9:da:0b:27:f8:05:ef:12:d8:97:
fa:0c:0c:cc:8d:56:ee:48:51:19:a5:1a:68:c6:3d:24:bf:81:
d0:6b:15:57:23:97:70:cd:0c:cf:92:85:f2:7b:8d:b6:c2:b2:
96:e9:ea:4c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMzZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFENUE0Q0UzOEM2MjhB
QkQ0NjRCMUM2NEVEODBCMDc2NkQzQ0FCOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1DaPpubb+UZSfH5+a01Lct5RFFJTNtaK2+jIDdkSwiA6BZ2rc
eMqCuS6QX4JTf2nAzSsYSmBqUAZ1OjsN46LP02Pbbpe4onihdHFGgh55OAo+nN7Y
o6KfvTDliKpjOOEDqj2akSbNcg4e7lZs9gNn44KDeEnfnqxoLbrR6bulRDBnayaV
6s39pSCasUK3t809Yu4uGstvnDHvJMBf4SiZlWXOxBvvLp1MGsdhWeE5WJ8ZDuM0
LdaK1mfGXDIZJzZOlRUZE4zGZPwU7OvHBWBSJXsA9xcBTN56KeJEYZiSHE/NyxJ4
0vvSP6vF2DKa+06tiMxe6QzYEa1Oe0GTrG+BAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUrVpM44xiir1GSxxk7YCwdm08q5wwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvclZwTTQ0eGlpcjFHU3h4azdZQ3dk
bTA4cTV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2pp4DAN
BgkqhkiG9w0BAQsFAAOCAQEAnEvlRGEZJ4LaeHIxi4qS+c04iN2qWtR/DFt3cyWZ
iMddLmKxOCZkNh+c9pIOiINmqv8Ta3O3gmgDTwW+k2zNPKB7A2QHMeQe79Rj9maU
BwnX7kQbsGgOaU9QIV81gI81+W+25lLaQQHEWP0bSFJvC+2uwjWj+jhVZZD5gFX7
hzABWXQzmFYEigTRbkJ69GZDmNwXtZsjO5qvFiKjCgVNFN1vt6bJYE7SHKQNPh2X
qJn4MO69JbH3JHDkJe66sOGE+U+E8E2ZBt+e7d1uexLJ2gsn+AXvEtiX+gwMzI1W
7khRGaUaaMY9JL+B0GsVVyOXcM0Mz5KF8nuNtsKylunqTA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org