Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qyUXHFXYceVO9C6WXqp6-nKcYaU.roa
File: qyUXHFXYceVO9C6WXqp6-nKcYaU.roa (raw, json)
Hash identifier: eLHa2IihDjBaTbEj1qo29DAuoK2OtCmB4mp5qFl9moc=
Subject key identifier: AB:25:17:1C:55:D8:71:E5:4E:F4:2E:96:5E:AA:7A:FA:72:9C:61:A5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08F9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qyUXHFXYceVO9C6WXqp6-nKcYaU.roa
Signing time: Tue 29 Sep 2020 09:52:40 +0000
ROA not before: Tue 29 Sep 2020 09:52:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2297 (0x8f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AB25171C55D871E54EF42E965EAA7AFA729C61A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4d:49:29:ef:23:1a:e7:35:c2:22:b8:68:7f:
1c:cb:12:16:34:ed:04:00:eb:c0:54:9f:5d:91:03:
d0:e5:b3:e2:93:cb:b8:f2:3f:90:11:96:a7:a7:a6:
36:47:19:3b:3c:12:a9:b0:98:8d:a3:d7:0e:98:6e:
4a:e2:4d:ae:83:b1:e8:fe:03:bf:aa:b9:37:2f:c0:
18:14:56:60:44:3a:d2:b8:e3:88:35:76:a0:fa:f8:
62:37:d7:ff:be:13:dc:3d:8b:58:1a:23:45:e0:cf:
75:5d:4b:a3:74:c1:ed:90:73:6c:d3:3d:2b:91:37:
23:dc:97:20:3b:24:76:e6:bc:31:68:35:f6:68:3b:
07:93:3d:1e:30:f7:bf:5b:fc:4b:f7:8e:c1:a4:82:
11:51:8d:ee:77:86:3f:2e:da:4e:cc:8d:93:2e:fe:
af:ab:ea:ba:12:1f:76:fe:2f:41:8c:e3:21:d1:fc:
67:75:1c:6d:ec:e4:15:07:bc:b8:c4:d4:9a:c7:85:
ec:e5:b5:eb:0b:e2:c1:58:e2:d1:59:0e:d4:f4:c5:
6a:46:70:b5:3f:9e:b3:ef:78:ee:22:99:5c:2f:75:
d0:2a:1d:38:a2:52:48:aa:2d:af:76:b3:b6:f9:29:
b7:c4:72:93:ed:32:b7:59:95:cb:b9:2d:61:54:04:
23:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:25:17:1C:55:D8:71:E5:4E:F4:2E:96:5E:AA:7A:FA:72:9C:61:A5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qyUXHFXYceVO9C6WXqp6-nKcYaU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.160.0/19
Signature Algorithm: sha256WithRSAEncryption
55:6d:c8:4c:23:c7:9d:ed:d9:04:4e:1d:eb:bd:88:f1:81:d7:
54:0b:a3:86:2c:78:05:07:28:68:66:33:08:f5:c9:29:db:40:
5a:13:81:91:0f:f8:61:0d:ef:02:07:85:4d:29:7d:b2:55:e9:
f1:82:99:ad:cf:c3:bd:7d:19:55:9d:40:ff:23:f0:6d:19:3b:
13:1c:bc:6a:11:73:e6:f2:48:dd:ac:ca:68:ec:7a:3b:6a:3d:
ed:b6:4f:6b:fe:cd:55:8a:e8:50:c9:31:21:93:32:65:d2:c5:
84:3e:2b:3b:ba:bc:35:d6:3d:47:2b:47:77:cf:36:b0:b2:ef:
ad:22:55:77:c6:12:e0:b7:4c:cf:0b:4f:47:e1:a3:02:57:86:
ce:d6:8a:c7:be:fd:42:3d:99:28:21:22:95:38:57:a3:c8:61:
c4:a8:83:e7:9d:3f:7b:98:ce:30:4c:ef:44:34:e3:16:31:f9:
18:8f:25:85:64:f9:bb:f9:49:a2:ba:8c:3d:aa:f9:48:96:6c:
fe:c6:3f:85:0e:81:e9:0d:a1:a4:3a:30:1b:e7:96:ce:24:da:
ec:32:66:04:05:56:5e:c5:a9:bf:4a:30:68:a0:80:fe:d4:02:
c4:4a:26:c8:82:0a:46:cc:0c:64:47:a5:74:b5:fb:ad:bf:11:
d7:ab:48:22
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyNDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFCMjUxNzFDNTVEODcx
RTU0RUY0MkU5NjVFQUE3QUZBNzI5QzYxQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYTUkp7yMa5zXCIrhofxzLEhY07QQA68BUn12RA9Dls+KTy7jy
P5ARlqenpjZHGTs8EqmwmI2j1w6YbkriTa6Dsej+A7+quTcvwBgUVmBEOtK444g1
dqD6+GI31/++E9w9i1gaI0Xgz3VdS6N0we2Qc2zTPSuRNyPclyA7JHbmvDFoNfZo
OweTPR4w979b/Ev3jsGkghFRje53hj8u2k7MjZMu/q+r6roSH3b+L0GM4yHR/Gd1
HG3s5BUHvLjE1JrHhezltesL4sFY4tFZDtT0xWpGcLU/nrPveO4imVwvddAqHTii
UkiqLa92s7b5KbfEcpPtMrdZlcu5LWFUBCOlAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUqyUXHFXYceVO9C6WXqp6+nKcYaUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcXlVWEhGWFljZVZPOUM2V1hxcDYt
bktjWWFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXHEoDAN
BgkqhkiG9w0BAQsFAAOCAQEAVW3ITCPHne3ZBE4d672I8YHXVAujhix4BQcoaGYz
CPXJKdtAWhOBkQ/4YQ3vAgeFTSl9slXp8YKZrc/DvX0ZVZ1A/yPwbRk7Exy8ahFz
5vJI3azKaOx6O2o97bZPa/7NVYroUMkxIZMyZdLFhD4rO7q8NdY9RytHd882sLLv
rSJVd8YS4LdMzwtPR+GjAleGztaKx779Qj2ZKCEilThXo8hhxKiD550/e5jOMEzv
RDTjFjH5GI8lhWT5u/lJorqMPar5SJZs/sY/hQ6B6Q2hpDowG+eWziTa7DJmBAVW
XsWpv0owaKCA/tQCxEomyIIKRswMZEeldLX7rb8R16tIIg==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:23:04 2025 by rpki-client