Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-yG2PBt-Vz3DLyodjBtqRbjp5lc.roa
File: -yG2PBt-Vz3DLyodjBtqRbjp5lc.roa (raw, json)
Hash identifier: pR9BZ/jCx28ofDGPIY/TZxbQgdd3j4AK+3xQ8q5/MZA=
Subject key identifier: FB:21:B6:3C:1B:7E:57:3D:C3:2F:2A:1D:8C:1B:6A:45:B8:E9:E6:57
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08DA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-yG2PBt-Vz3DLyodjBtqRbjp5lc.roa
Signing time: Tue 29 Sep 2020 09:52:32 +0000
ROA not before: Tue 29 Sep 2020 09:52:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.56.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2266 (0x8da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FB21B63C1B7E573DC32F2A1D8C1B6A45B8E9E657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:70:62:7e:35:f2:a0:76:18:28:f4:d0:6d:df:
ba:b3:e0:ec:69:15:ab:55:c4:d0:c4:e0:8b:11:89:
06:ab:f1:50:d9:41:68:26:a4:50:d2:15:c5:da:a1:
b3:c5:38:f7:be:14:05:56:88:ec:da:79:36:89:39:
f1:bb:59:5a:ac:52:91:c9:07:61:09:82:ae:e1:01:
d9:d4:f0:af:84:47:98:25:f4:2a:9c:46:38:cb:61:
89:8c:45:71:4e:cf:fc:53:4b:a8:f7:bb:21:a3:fb:
4c:af:6f:83:5e:97:07:a7:b4:b3:fb:78:ed:c5:0d:
b4:3f:5b:da:f2:3c:c5:f0:be:6a:af:e7:ed:ab:03:
26:f3:55:69:9c:8d:64:20:33:46:4c:b7:42:d4:a0:
ac:fe:f5:bf:8e:6b:08:f5:d1:5e:30:83:aa:26:d8:
ec:33:0a:b4:db:a8:10:3a:33:44:21:f0:d3:04:87:
74:50:32:dd:2e:0c:28:80:ab:2e:05:98:75:ed:ef:
9c:a5:e4:52:b6:02:6c:59:e3:f2:17:6b:39:99:01:
f6:55:cd:66:83:4d:6c:e6:74:3e:56:31:84:bc:ad:
82:d7:1f:6e:c6:28:03:8e:76:65:ba:00:69:d3:f3:
03:47:37:2e:c5:c1:bc:89:ee:8f:d6:30:7a:f6:22:
37:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:21:B6:3C:1B:7E:57:3D:C3:2F:2A:1D:8C:1B:6A:45:B8:E9:E6:57
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-yG2PBt-Vz3DLyodjBtqRbjp5lc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.224.0/19
Signature Algorithm: sha256WithRSAEncryption
76:e8:88:93:c8:57:8a:67:42:52:21:d9:2a:1e:69:c6:08:61:
23:9b:99:79:0b:c9:60:be:43:86:09:55:56:64:2e:5f:e0:45:
5b:b5:52:ea:50:69:11:85:2b:41:42:a3:a8:4b:8d:f8:3a:4e:
a5:98:1d:fe:a6:bd:7b:f6:83:15:23:97:c1:6e:19:56:08:02:
10:ff:da:19:11:d5:78:c6:d0:d5:00:31:e0:5f:9b:78:6a:2a:
0a:41:6a:64:60:36:76:ce:02:ce:ce:cd:d0:bf:28:e4:f2:3f:
2f:c8:0d:a0:6a:0b:cb:8f:cf:d7:04:18:1a:ef:9b:66:f7:aa:
e5:4f:8b:cb:fc:52:a8:da:bd:d2:0f:74:1a:79:ab:9d:b9:17:
f5:f8:7b:b2:fc:81:35:b6:6c:22:b8:fd:80:57:a8:90:38:1a:
2c:84:ed:9b:10:2f:a9:46:60:f7:7c:a3:25:a2:e7:65:3c:02:
cc:4b:fe:9f:d7:34:8f:6e:11:00:1c:f1:82:9f:4f:5d:df:05:
81:97:7b:b8:22:34:b4:d1:7f:56:81:f8:d9:d3:aa:69:41:d3:
37:11:24:85:1a:f9:19:9a:fd:eb:5e:a3:b1:fc:cb:45:38:06:
3c:22:ae:58:92:8c:7e:57:7b:38:b3:5f:4d:97:13:22:9e:0f:
76:6a:29:9c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMzJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEZCMjFCNjNDMUI3RTU3
M0RDMzJGMkExRDhDMUI2QTQ1QjhFOUU2NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJcGJ+NfKgdhgo9NBt37qz4OxpFatVxNDE4IsRiQar8VDZQWgm
pFDSFcXaobPFOPe+FAVWiOzaeTaJOfG7WVqsUpHJB2EJgq7hAdnU8K+ER5gl9Cqc
RjjLYYmMRXFOz/xTS6j3uyGj+0yvb4NelwentLP7eO3FDbQ/W9ryPMXwvmqv5+2r
AybzVWmcjWQgM0ZMt0LUoKz+9b+Oawj10V4wg6om2OwzCrTbqBA6M0Qh8NMEh3RQ
Mt0uDCiAqy4FmHXt75yl5FK2AmxZ4/IXazmZAfZVzWaDTWzmdD5WMYS8rYLXH27G
KAOOdmW6AGnT8wNHNy7FwbyJ7o/WMHr2IjcHAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU+yG2PBt+Vz3DLyodjBtqRbjp5lcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvLXlHMlBCdC1WejNETHlvZGpCdHFS
YmpwNWxjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT044DAN
BgkqhkiG9w0BAQsFAAOCAQEAduiIk8hXimdCUiHZKh5pxghhI5uZeQvJYL5DhglV
VmQuX+BFW7VS6lBpEYUrQUKjqEuN+DpOpZgd/qa9e/aDFSOXwW4ZVggCEP/aGRHV
eMbQ1QAx4F+beGoqCkFqZGA2ds4Czs7N0L8o5PI/L8gNoGoLy4/P1wQYGu+bZveq
5U+Ly/xSqNq90g90GnmrnbkX9fh7svyBNbZsIrj9gFeokDgaLITtmxAvqUZg93yj
JaLnZTwCzEv+n9c0j24RABzxgp9PXd8FgZd7uCI0tNF/VoH42dOqaUHTNxEkhRr5
GZr9616jsfzLRTgGPCKuWJKMfld7OLNfTZcTIp4PdmopnA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org