Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hOPf-FnnPCcHoIRjtu8UGy9CPwg.roa
File: hOPf-FnnPCcHoIRjtu8UGy9CPwg.roa (raw, json)
Hash identifier: yDtd8Q6cJZcu3P2XQuakAvh8X6PWNLOCwOvExURoTm4=
Subject key identifier: 84:E3:DF:F8:59:E7:3C:27:07:A0:84:63:B6:EF:14:1B:2F:42:3F:08
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hOPf-FnnPCcHoIRjtu8UGy9CPwg.roa
Signing time: Thu 15 Sep 2022 02:43:42 +0000
ROA not before: Thu 15 Sep 2022 02:43:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=84E3DFF859E73C2707A08463B6EF141B2F423F08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:66:34:43:04:32:52:00:6f:d6:55:81:6d:fe:
20:32:b9:5c:0f:41:53:aa:07:0b:32:3c:5b:ef:4e:
b1:7d:bd:ef:e3:0c:37:42:0b:69:04:18:ce:29:ec:
13:22:be:19:c7:56:ac:55:99:7c:22:a9:8a:6d:95:
ef:38:fe:1c:b8:64:42:07:8d:95:27:96:cb:84:a4:
7c:c9:27:c3:a4:96:e5:f8:8c:3c:fc:ac:07:ef:9f:
e0:fd:f6:41:6b:32:93:06:a9:8f:e1:61:7c:13:78:
b4:0c:88:06:47:ef:0c:41:ee:32:96:95:62:9a:42:
a2:06:13:f5:3f:a0:f2:8e:3f:e2:3e:67:12:e5:17:
9e:31:1e:08:0b:f0:6e:e2:bf:82:34:fe:66:03:69:
ef:8c:e3:30:18:de:b8:e9:96:45:8a:a7:79:af:5c:
6f:87:a6:01:7c:3c:22:18:61:94:9d:c1:18:21:c7:
fc:05:b9:8b:f4:19:ae:b8:be:99:11:34:08:16:6d:
87:f6:3b:02:d2:30:b1:17:b4:4a:ab:79:bf:47:e8:
a7:a9:6f:f9:25:47:08:d3:8a:7d:7a:a2:30:94:a6:
d4:66:30:86:4c:2b:1d:d8:d1:3e:b2:fb:83:73:07:
d0:23:df:3f:ed:98:88:11:d3:ea:d2:83:91:82:46:
bc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:E3:DF:F8:59:E7:3C:27:07:A0:84:63:B6:EF:14:1B:2F:42:3F:08
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hOPf-FnnPCcHoIRjtu8UGy9CPwg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.32.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:9f:58:54:46:b3:c3:47:3e:c9:b9:5b:1e:16:78:9b:f6:58:
0e:62:19:d1:a8:49:d8:a3:c8:b7:53:46:d6:76:9f:f6:d3:da:
c4:03:11:ac:95:35:21:13:2c:14:2a:ea:18:e4:e7:0a:ba:66:
0f:9e:37:26:89:9d:48:1a:5a:32:a3:26:b1:c5:6c:d7:78:bb:
a2:88:58:e8:21:79:80:29:36:38:9d:30:ae:4d:35:32:93:5a:
85:83:10:b3:f4:ed:fa:d5:8a:1d:26:8a:ae:a3:69:05:3a:e4:
d6:d5:61:b9:66:46:18:c6:b6:ed:95:83:be:5c:22:90:85:f9:
b5:bf:90:28:c1:60:4f:80:58:7e:4f:d9:67:c8:fc:6c:d4:91:
8f:0c:41:67:76:4a:6b:d7:f5:2e:8e:31:2f:7b:b9:83:1b:de:
36:fe:c4:8c:31:3f:81:2e:c6:ae:5d:aa:01:fe:bc:4c:b2:3e:
22:41:f6:55:4b:47:3c:3b:a2:f0:c7:63:27:3b:30:ea:03:29:
a4:7c:90:f2:33:f6:3c:55:6a:6b:35:40:eb:84:e2:e7:8a:73:
28:2b:2e:dd:2d:01:34:b6:a1:7d:1f:3a:76:dc:f6:85:47:ec:
ce:54:e8:43:5e:44:37:78:76:7a:49:fe:12:79:f6:89:cb:c9:
b0:87:90:07
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMjA5MTUw
MjQzNDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg0RTNERkY4NTlFNzND
MjcwN0EwODQ2M0I2RUYxNDFCMkY0MjNGMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7ZjRDBDJSAG/WVYFt/iAyuVwPQVOqBwsyPFvvTrF9ve/jDDdC
C2kEGM4p7BMivhnHVqxVmXwiqYptle84/hy4ZEIHjZUnlsuEpHzJJ8OkluX4jDz8
rAfvn+D99kFrMpMGqY/hYXwTeLQMiAZH7wxB7jKWlWKaQqIGE/U/oPKOP+I+ZxLl
F54xHggL8G7iv4I0/mYDae+M4zAY3rjplkWKp3mvXG+HpgF8PCIYYZSdwRghx/wF
uYv0Ga64vpkRNAgWbYf2OwLSMLEXtEqreb9H6Kepb/klRwjTin16ojCUptRmMIZM
Kx3Y0T6y+4NzB9Aj3z/tmIgR0+rSg5GCRrydAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUhOPf+FnnPCcHoIRjtu8UGy9CPwgwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaE9QZi1Gbm5QQ2NIb0lSanR1OFVH
eTlDUHdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIIDAN
BgkqhkiG9w0BAQsFAAOCAQEAD59YVEazw0c+yblbHhZ4m/ZYDmIZ0ahJ2KPIt1NG
1naf9tPaxAMRrJU1IRMsFCrqGOTnCrpmD543JomdSBpaMqMmscVs13i7oohY6CF5
gCk2OJ0wrk01MpNahYMQs/Tt+tWKHSaKrqNpBTrk1tVhuWZGGMa27ZWDvlwikIX5
tb+QKMFgT4BYfk/ZZ8j8bNSRjwxBZ3ZKa9f1Lo4xL3u5gxveNv7EjDE/gS7Grl2q
Af68TLI+IkH2VUtHPDui8MdjJzsw6gMppHyQ8jP2PFVqazVA64Ti54pzKCsu3S0B
NLahfR86dtz2hUfszlToQ15EN3h2ekn+Enn2icvJsIeQBw==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:13:45 2025 by rpki-client