Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0RVEjYy4fdzZrqCTeLcrLtYq7U8.roa
File: 0RVEjYy4fdzZrqCTeLcrLtYq7U8.roa (raw, json)
Hash identifier: bOZeQMy7QfyLxG2fpjpVyIqBjc1FhwRnUIzYv2skcHk=
Subject key identifier: D1:15:44:8D:8C:B8:7D:DC:D9:AE:A0:93:78:B7:2B:2E:D6:2A:ED:4F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DF0
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0RVEjYy4fdzZrqCTeLcrLtYq7U8.roa
Signing time: Wed 29 Sep 2021 02:43:01 +0000
ROA not before: Wed 29 Sep 2021 02:43:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 61.56.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3568 (0xdf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D115448D8CB87DDCD9AEA09378B72B2ED62AED4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3d:b9:4a:fa:30:c5:76:59:f3:bf:5e:27:a4:
ed:ef:4f:78:e7:fe:86:90:9e:bc:41:11:a8:ac:94:
9c:52:91:c6:4f:5f:b9:09:82:6d:42:07:29:6f:9d:
70:82:90:2e:0f:bc:7a:44:61:6c:3b:0f:cf:f0:a1:
87:46:4f:19:de:3d:79:ef:a7:63:35:ab:99:e3:72:
4f:63:f3:bb:8b:21:e7:a8:7f:ba:af:a8:e8:ad:09:
d6:6b:4d:4c:ad:af:ce:3b:39:90:5c:6b:6d:67:db:
69:dc:6f:c5:e7:0f:c2:1b:a8:1b:c9:4c:26:87:3a:
d8:f5:af:f0:10:f4:52:ee:2b:39:5f:01:0a:e1:3e:
87:61:8d:76:ba:c8:aa:64:35:5c:ca:56:89:9f:77:
de:f2:e0:14:98:1f:30:e8:08:68:1e:c7:fd:93:5a:
de:64:87:8d:34:af:9f:1d:21:a0:e3:7e:d2:cd:fd:
57:bf:47:0c:09:70:98:7c:60:1a:6c:27:af:70:96:
e4:88:2c:d2:79:fc:c6:9c:1b:0a:62:3b:66:91:8b:
ed:4b:70:ea:7b:da:c7:63:04:99:58:ac:df:7b:c7:
84:45:a1:1e:b9:f4:40:db:63:18:d6:f1:54:59:6b:
be:0b:91:d8:f3:c0:76:56:74:e1:a9:bd:88:29:3b:
ac:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:15:44:8D:8C:B8:7D:DC:D9:AE:A0:93:78:B7:2B:2E:D6:2A:ED:4F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0RVEjYy4fdzZrqCTeLcrLtYq7U8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.192.0/19
Signature Algorithm: sha256WithRSAEncryption
78:a6:f0:f4:4f:35:5d:8d:23:e8:89:9d:cf:b2:ba:69:31:90:
c8:3a:4f:95:f2:d2:b1:1a:75:6e:37:a1:f4:56:19:d5:19:09:
c7:30:1d:8f:fb:ad:1f:24:e9:c1:d4:fa:c8:52:ac:10:36:8c:
41:45:ff:ce:e5:c6:65:3f:9b:24:fb:05:69:c7:e3:4c:29:47:
75:60:3b:33:0e:8b:d3:03:86:fd:35:a0:15:4d:d8:a5:5e:4c:
df:19:3f:59:53:d8:e2:c5:ec:6c:56:a0:2b:04:55:bf:25:14:
c6:71:2c:32:51:de:d2:9e:51:e2:8c:29:66:2d:3e:a2:af:21:
1a:bd:a6:c7:ba:5b:8d:f6:7e:dc:6e:44:be:26:96:3a:5e:e4:
6f:0e:30:98:77:9c:48:ee:8a:ff:32:39:e5:b4:1a:60:86:cc:
41:6e:29:61:7b:ec:c0:b5:a0:f2:41:37:e0:ba:45:4c:0b:a3:
2a:7a:db:5c:b9:15:bf:e6:67:f7:31:01:dd:10:ab:55:6d:62:
00:52:c5:64:92:dd:f5:38:7a:b9:62:89:57:cf:29:24:99:f7:
f1:d4:8c:cc:75:30:15:ed:86:85:c3:97:c9:b4:83:f2:6c:03:
8f:a3:87:e3:43:58:77:e8:1a:e3:f2:d5:75:21:77:d5:45:aa:
03:02:16:b5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQxMTU0NDhEOENCODdE
RENEOUFFQTA5Mzc4QjcyQjJFRDYyQUVENEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKPblK+jDFdlnzv14npO3vT3jn/oaQnrxBEaislJxSkcZPX7kJ
gm1CBylvnXCCkC4PvHpEYWw7D8/woYdGTxnePXnvp2M1q5njck9j87uLIeeof7qv
qOitCdZrTUytr847OZBca21n22ncb8XnD8IbqBvJTCaHOtj1r/AQ9FLuKzlfAQrh
PodhjXa6yKpkNVzKVomfd97y4BSYHzDoCGgex/2TWt5kh400r58dIaDjftLN/Ve/
RwwJcJh8YBpsJ69wluSILNJ5/MacGwpiO2aRi+1LcOp72sdjBJlYrN97x4RFoR65
9EDbYxjW8VRZa74LkdjzwHZWdOGpvYgpO6yjAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU0RVEjYy4fdzZrqCTeLcrLtYq7U8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMFJWRWpZeTRmZHpacnFDVGVMY3JM
dFlxN1U4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT04wDAN
BgkqhkiG9w0BAQsFAAOCAQEAeKbw9E81XY0j6Imdz7K6aTGQyDpPlfLSsRp1bjeh
9FYZ1RkJxzAdj/utHyTpwdT6yFKsEDaMQUX/zuXGZT+bJPsFacfjTClHdWA7Mw6L
0wOG/TWgFU3YpV5M3xk/WVPY4sXsbFagKwRVvyUUxnEsMlHe0p5R4owpZi0+oq8h
Gr2mx7pbjfZ+3G5EviaWOl7kbw4wmHecSO6K/zI55bQaYIbMQW4pYXvswLWg8kE3
4LpFTAujKnrbXLkVv+Zn9zEB3RCrVW1iAFLFZJLd9Th6uWKJV88pJJn38dSMzHUw
Fe2GhcOXybSD8mwDj6OH40NYd+ga4/LVdSF31UWqAwIWtQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org