Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/s_0IPh3rh3oJR9lM5wkeXRRBV2s.roa
File: s_0IPh3rh3oJR9lM5wkeXRRBV2s.roa (raw, json)
Hash identifier: Vj+rNxI5ImumIfaLq7E+ewPtJgSKdSsxH3q4o6xwUaw=
Subject key identifier: B3:FD:08:3E:1D:EB:87:7A:09:47:D9:4C:E7:09:1E:5D:14:41:57:6B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0A37
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/s_0IPh3rh3oJR9lM5wkeXRRBV2s.roa
Signing time: Tue 24 Nov 2020 09:21:41 +0000
ROA not before: Tue 24 Nov 2020 09:21:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2615 (0xa37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Nov 24 09:21:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B3FD083E1DEB877A0947D94CE7091E5D1441576B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:af:2d:c3:19:83:c1:e9:72:24:a4:d5:5c:af:
39:e4:77:75:48:69:51:7d:74:18:0e:1a:c5:f8:0c:
88:38:89:68:a8:03:36:1b:27:71:3a:a4:f5:5e:38:
ff:a8:d0:84:1d:45:78:e9:ff:cf:e1:07:4e:c8:9d:
c5:88:c4:9a:68:8b:f2:85:7b:6d:6c:22:ca:ec:ac:
b2:80:f1:8f:dc:b7:74:38:1a:23:d4:09:a8:13:7a:
b8:f7:0a:17:39:0a:37:fd:97:69:05:cb:b9:7a:0d:
86:29:de:be:df:00:05:e1:96:ed:29:e2:34:7c:83:
e2:f2:9d:bd:96:0e:36:af:7a:ef:48:31:f7:f5:b2:
56:5e:db:94:81:17:3c:4f:2d:31:57:66:43:45:c6:
20:d0:9e:81:15:44:3d:e1:34:a2:86:f9:22:2a:4e:
05:49:54:ae:93:c2:49:dd:fe:14:fa:c5:a2:74:00:
e8:99:5a:52:57:05:35:fd:06:51:c6:0c:65:1b:1c:
a1:cc:05:e0:59:db:10:4c:34:e0:7a:a7:5d:ae:52:
16:d3:d1:01:99:72:53:d4:f2:a5:fa:19:b9:88:13:
94:ff:b6:3e:b1:69:57:5c:12:52:1d:85:f8:e1:1b:
8e:fc:df:a2:59:98:bd:bb:1c:b9:41:b9:8f:b8:8c:
1e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:FD:08:3E:1D:EB:87:7A:09:47:D9:4C:E7:09:1E:5D:14:41:57:6B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/s_0IPh3rh3oJR9lM5wkeXRRBV2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2f:18:86:ab:42:d0:ed:99:3a:7b:8d:9b:2c:2d:cf:d8:80:ca:
5d:32:ea:90:79:f6:9b:12:f3:80:2d:18:ce:99:a8:77:a2:32:
6f:1d:6d:15:b8:65:18:8f:1b:a2:dd:2e:e8:62:c6:92:4e:ee:
e4:86:20:6d:39:2c:b4:05:fe:e9:33:9f:85:8d:4d:aa:98:f6:
fa:9c:d5:68:42:44:3f:52:05:5e:cc:62:d8:98:a5:ec:af:c8:
56:75:74:2e:0b:c0:f7:e2:e4:95:9d:fa:22:e5:ff:a0:63:d5:
0c:02:2a:dd:d8:54:d9:18:31:c4:84:e9:ca:05:12:5d:04:50:
ba:2a:e5:c6:91:d8:a5:a4:3d:15:3a:7c:50:ed:35:a1:3f:e7:
7a:a4:97:19:d8:1e:30:bc:33:3a:66:5e:52:c2:65:48:54:db:
08:70:92:74:e4:26:ae:ec:19:ee:99:71:c3:0f:8a:65:f0:1b:
8f:eb:59:ac:7b:8d:71:b3:80:ec:fe:dd:c2:b0:9c:44:88:bf:
5b:f9:da:a9:56:9a:10:90:be:27:0e:fe:b3:b3:18:59:73:63:
7f:46:1a:0e:22:3e:69:f8:95:b1:e0:53:00:b3:5a:a3:69:cb:
3e:41:c8:ce:2b:da:6f:8c:26:6a:4a:08:d9:72:13:71:39:24:
2d:8e:a9:60
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDExMjQw
OTIxNDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEIzRkQwODNFMURFQjg3
N0EwOTQ3RDk0Q0U3MDkxRTVEMTQ0MTU3NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTry3DGYPB6XIkpNVcrznkd3VIaVF9dBgOGsX4DIg4iWioAzYb
J3E6pPVeOP+o0IQdRXjp/8/hB07IncWIxJpoi/KFe21sIsrsrLKA8Y/ct3Q4GiPU
CagTerj3Chc5Cjf9l2kFy7l6DYYp3r7fAAXhlu0p4jR8g+Lynb2WDjaveu9IMff1
slZe25SBFzxPLTFXZkNFxiDQnoEVRD3hNKKG+SIqTgVJVK6Twknd/hT6xaJ0AOiZ
WlJXBTX9BlHGDGUbHKHMBeBZ2xBMNOB6p12uUhbT0QGZclPU8qX6GbmIE5T/tj6x
aVdcElIdhfjhG47836JZmL27HLlBuY+4jB5fAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUs/0IPh3rh3oJR9lM5wkeXRRBV2swHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvc18wSVBoM3JoM29KUjlsTTV3a2VY
UlJCVjJzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD07MA0G
CSqGSIb3DQEBCwUAA4IBAQAvGIarQtDtmTp7jZssLc/YgMpdMuqQefabEvOALRjO
mah3ojJvHW0VuGUYjxui3S7oYsaSTu7khiBtOSy0Bf7pM5+FjU2qmPb6nNVoQkQ/
UgVezGLYmKXsr8hWdXQuC8D34uSVnfoi5f+gY9UMAird2FTZGDHEhOnKBRJdBFC6
KuXGkdilpD0VOnxQ7TWhP+d6pJcZ2B4wvDM6Zl5SwmVIVNsIcJJ05Cau7BnumXHD
D4pl8BuP61mse41xs4Ds/t3CsJxEiL9b+dqpVpoQkL4nDv6zsxhZc2N/RhoOIj5p
+JWx4FMAs1qjacs+QcjOK9pvjCZqSgjZchNxOSQtjqlg
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:19 2025 by rpki-client