Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zpZpK8D_7vNoGKijIP0RIDAFoIQ.roa
File: zpZpK8D_7vNoGKijIP0RIDAFoIQ.roa (raw, json)
Hash identifier: +OUAjZUwKLZn5AegB5sZlY8lu7IJ/3McuDWrao4XeFk=
Subject key identifier: CE:96:69:2B:C0:FF:EE:F3:68:18:A8:A3:20:FD:11:20:30:05:A0:84
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E64
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zpZpK8D_7vNoGKijIP0RIDAFoIQ.roa
Signing time: Wed 29 Sep 2021 02:43:32 +0000
ROA not before: Wed 29 Sep 2021 02:43:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.105.88.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3684 (0xe64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CE96692BC0FFEEF36818A8A320FD11203005A084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ae:69:26:e4:4e:39:02:51:5c:80:e6:c3:1c:
d8:27:16:40:e8:08:12:74:7a:f5:a2:cd:d2:d2:8e:
9a:3d:8f:32:78:7f:e4:03:5a:ea:13:0a:57:22:b6:
d3:68:ff:b3:e3:de:0d:a8:ad:76:eb:d4:38:5a:53:
8f:91:4b:76:d6:0c:b9:b9:5d:e3:e9:39:c4:13:30:
d8:05:c9:6a:09:82:33:56:23:bc:3e:c7:33:0a:09:
76:1b:58:1d:23:53:da:54:02:c6:86:e7:0a:d0:3f:
3a:b9:ca:13:61:f8:31:00:8d:ed:c8:4a:ee:b0:c3:
dd:9c:8f:14:30:7b:41:01:78:8e:66:9b:b4:87:9f:
05:8e:ff:e6:b0:3f:d9:2c:35:29:88:be:45:00:0d:
e7:58:f9:7c:42:b5:af:7b:31:68:f3:58:c4:18:1d:
cd:3e:87:6c:88:67:18:34:b3:dd:5d:69:32:aa:5d:
b2:d3:d9:e8:5b:69:86:b6:5f:c0:bd:32:28:22:c2:
4f:df:87:d0:a2:62:36:22:e7:7e:e2:6d:1b:d7:58:
06:ee:1b:4e:d9:26:b9:6a:d9:9e:11:08:a9:80:9c:
7b:ec:58:90:5b:b4:74:9a:09:67:02:60:93:9e:2e:
5a:0f:7b:c3:34:57:40:ae:c3:47:79:21:7e:b7:ee:
22:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:96:69:2B:C0:FF:EE:F3:68:18:A8:A3:20:FD:11:20:30:05:A0:84
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zpZpK8D_7vNoGKijIP0RIDAFoIQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.88.0/21
Signature Algorithm: sha256WithRSAEncryption
71:0e:dd:be:c8:4c:3e:6c:6b:71:b8:20:b2:cf:60:ad:23:5d:
85:d2:ab:e1:ff:73:96:79:57:6c:40:ec:56:53:bc:15:d4:cc:
19:db:28:16:52:bc:72:f8:a0:ea:ba:c5:3f:78:54:f2:0f:82:
d5:2c:9d:78:6f:c0:a0:94:1d:b6:05:fa:da:4f:f5:5f:b4:36:
e1:c4:cf:f3:01:df:d9:56:25:2f:cb:12:10:d3:b5:5b:94:e5:
64:d1:65:3d:08:13:56:1b:ec:f1:d6:b6:59:79:65:09:bc:e9:
8b:93:4b:bd:1f:21:28:39:c3:62:0f:84:69:2d:95:6f:0a:df:
ab:1b:60:73:85:da:6b:31:2f:3e:fe:6d:cb:5a:5e:8a:17:fa:
65:ae:9c:63:55:4a:36:d8:e5:3e:3f:97:aa:32:a1:56:98:5f:
57:97:83:03:10:bf:3f:79:6c:a7:2b:93:96:fd:c2:b2:36:7f:
2d:2e:b2:d2:31:f4:60:97:ac:5c:aa:3e:f5:84:17:1d:bf:ea:
b7:bd:b9:29:21:f5:1f:87:b0:0b:6c:55:ec:91:f0:98:34:76:
43:8f:75:aa:ca:b4:1b:bd:61:d8:ca:01:11:8c:41:24:b0:5e:
09:a1:3e:07:d2:fb:34:57:34:7c:4b:44:b2:cd:eb:ec:30:7b:
aa:65:49:fd
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMzJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKENFOTY2OTJCQzBGRkVF
RjM2ODE4QThBMzIwRkQxMTIwMzAwNUEwODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDarmkm5E45AlFcgObDHNgnFkDoCBJ0evWizdLSjpo9jzJ4f+QD
WuoTClcittNo/7Pj3g2orXbr1DhaU4+RS3bWDLm5XePpOcQTMNgFyWoJgjNWI7w+
xzMKCXYbWB0jU9pUAsaG5wrQPzq5yhNh+DEAje3ISu6ww92cjxQwe0EBeI5mm7SH
nwWO/+awP9ksNSmIvkUADedY+XxCta97MWjzWMQYHc0+h2yIZxg0s91daTKqXbLT
2ehbaYa2X8C9Migiwk/fh9CiYjYi537ibRvXWAbuG07ZJrlq2Z4RCKmAnHvsWJBb
tHSaCWcCYJOeLloPe8M0V0Cuw0d5IX637iLXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUzpZpK8D/7vNoGKijIP0RIDAFoIQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvenBacEs4RF83dk5vR0tpaklQMFJJ
REFGb0lRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppWDAN
BgkqhkiG9w0BAQsFAAOCAQEAcQ7dvshMPmxrcbggss9grSNdhdKr4f9zlnlXbEDs
VlO8FdTMGdsoFlK8cvig6rrFP3hU8g+C1SydeG/AoJQdtgX62k/1X7Q24cTP8wHf
2VYlL8sSENO1W5TlZNFlPQgTVhvs8da2WXllCbzpi5NLvR8hKDnDYg+EaS2Vbwrf
qxtgc4XaazEvPv5ty1peihf6Za6cY1VKNtjlPj+XqjKhVphfV5eDAxC/P3lspyuT
lv3CsjZ/LS6y0jH0YJesXKo+9YQXHb/qt725KSH1H4ewC2xV7JHwmDR2Q491qsq0
G71h2MoBEYxBJLBeCaE+B9L7NFc0fEtEss3r7DB7qmVJ/Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org