Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/ncl4PF2gVhlSqIieC-xz0RI97Ds.roa
File: ncl4PF2gVhlSqIieC-xz0RI97Ds.roa (raw, json)
Hash identifier: 8D1ckuUhhq8QqZFRIkPdYZdbTEmWEkVLjkmikD4L9E0=
Subject key identifier: 9D:C9:78:3C:5D:A0:56:19:52:A8:88:9E:0B:EC:73:D1:12:3D:EC:3B
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0A49
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/ncl4PF2gVhlSqIieC-xz0RI97Ds.roa
Signing time: Thu 15 Sep 2022 02:41:59 +0000
ROA not before: Thu 15 Sep 2022 02:41:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18411
IP address blocks: 61.56.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 15 02:41:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9DC9783C5DA0561952A8889E0BEC73D1123DEC3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ad:cc:62:3e:ed:14:2b:72:25:13:ed:dc:82:
ea:ff:60:85:d2:39:34:41:18:9e:d5:ca:2b:e4:64:
e8:ff:ab:14:14:7a:32:8a:e7:51:90:c3:dd:cb:e6:
65:8e:b7:63:a0:7b:bc:85:58:9a:30:e0:f1:dc:25:
c5:6b:2d:21:59:63:3c:1b:11:05:35:27:33:85:a6:
6e:c8:d5:12:91:a8:52:47:e3:8b:6e:c2:c6:02:db:
ac:0a:74:03:01:d3:3e:1a:53:62:05:12:74:88:6b:
93:e7:4d:fa:4e:87:10:8a:5d:71:ab:6d:89:a9:25:
af:10:03:54:76:68:61:e6:a7:37:71:8e:59:47:86:
b1:91:63:05:ab:df:fd:b3:62:76:62:65:2b:94:6e:
a7:98:ef:c6:f8:48:ce:be:fe:bd:5e:34:a9:06:32:
e0:6a:a4:33:6e:ac:0a:cc:ed:2a:01:7a:c3:62:ef:
d5:e0:f1:41:87:8e:12:61:65:6f:cb:50:49:8f:01:
34:e6:dd:b1:80:c3:34:36:24:e8:f7:7f:03:31:fc:
69:73:05:3e:7f:d4:f4:13:6e:92:90:65:b7:94:1a:
6a:05:c9:34:92:02:f9:6e:43:48:f6:9e:2f:bd:53:
50:c5:11:c9:09:5a:56:71:e4:07:cb:5f:3a:4a:ef:
3a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C9:78:3C:5D:A0:56:19:52:A8:88:9E:0B:EC:73:D1:12:3D:EC:3B
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/ncl4PF2gVhlSqIieC-xz0RI97Ds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.18.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:ab:93:97:14:3f:68:a5:f4:6e:a3:33:dc:65:73:ea:c3:1a:
10:a7:93:d1:e1:09:74:47:17:69:57:13:4a:02:56:de:5e:e1:
e1:c5:88:34:fb:98:96:05:ba:91:80:28:b6:a4:fa:10:34:1d:
1a:33:f7:01:82:14:13:8e:1e:2b:d1:a7:6d:4d:d7:b5:b7:5e:
cd:e9:40:81:d0:90:cd:c8:c7:e9:3a:0e:9c:b6:33:2d:93:57:
93:f4:58:48:e0:62:82:7d:83:44:b9:d1:fd:d3:a1:96:0e:94:
9a:3f:c1:c6:27:e9:40:3e:e0:50:19:8d:0f:ba:c7:3a:6a:f9:
d5:2f:1a:57:79:58:8c:9c:20:7f:48:87:44:10:f7:ce:25:e8:
a6:a2:87:42:ce:33:8a:a4:88:34:8a:b0:c1:82:85:47:31:72:
4f:36:b2:85:c3:a1:2e:11:25:19:1c:9b:81:0f:79:ac:df:38:
3e:d5:73:33:53:c7:20:53:cc:28:24:c6:7d:52:fd:1f:f1:72:
a0:d5:45:e5:bf:e4:d2:82:d8:ea:87:6e:64:31:fb:fb:85:38:
aa:6f:ff:0b:53:c5:14:11:2d:05:b4:bf:56:b7:d1:03:fc:e3:
b8:57:6d:05:11:a3:d8:15:ea:f7:de:60:7c:9d:e0:18:31:78:
6f:90:9f:d5
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD
NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yMjA5MTUw
MjQxNTlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDlEQzk3ODNDNURBMDU2
MTk1MkE4ODg5RTBCRUM3M0QxMTIzREVDM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9rcxiPu0UK3IlE+3cgur/YIXSOTRBGJ7VyivkZOj/qxQUejKK
51GQw93L5mWOt2Oge7yFWJow4PHcJcVrLSFZYzwbEQU1JzOFpm7I1RKRqFJH44tu
wsYC26wKdAMB0z4aU2IFEnSIa5PnTfpOhxCKXXGrbYmpJa8QA1R2aGHmpzdxjllH
hrGRYwWr3/2zYnZiZSuUbqeY78b4SM6+/r1eNKkGMuBqpDNurArM7SoBesNi79Xg
8UGHjhJhZW/LUEmPATTm3bGAwzQ2JOj3fwMx/GlzBT5/1PQTbpKQZbeUGmoFyTSS
AvluQ0j2ni+9U1DFEckJWlZx5AfLXzpK7zodAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUncl4PF2gVhlSqIieC+xz0RI97DswHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ
pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv
bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9uY2w0UEYyZ1ZobFNxSWllQy14
ejBSSTk3RHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPTgS
MA0GCSqGSIb3DQEBCwUAA4IBAQBbq5OXFD9opfRuozPcZXPqwxoQp5PR4Ql0Rxdp
VxNKAlbeXuHhxYg0+5iWBbqRgCi2pPoQNB0aM/cBghQTjh4r0adtTde1t17N6UCB
0JDNyMfpOg6ctjMtk1eT9FhI4GKCfYNEudH906GWDpSaP8HGJ+lAPuBQGY0Pusc6
avnVLxpXeViMnCB/SIdEEPfOJeimoodCzjOKpIg0irDBgoVHMXJPNrKFw6EuESUZ
HJuBD3ms3zg+1XMzU8cgU8woJMZ9Uv0f8XKg1UXlv+TSgtjqh25kMfv7hTiqb/8L
U8UUES0FtL9Wt9ED/OO4V20FEaPYFer33mB8neAYMXhvkJ/V
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org