Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/35kgclVSYZLTQ_LuUP1Cg2chUFI.roa
File: 35kgclVSYZLTQ_LuUP1Cg2chUFI.roa (raw, json)
Hash identifier: MAg3nS+w7L9kLOvy/v1/pG01AwFm2got/U8G7jj/RPU=
Subject key identifier: DF:99:20:72:55:52:61:92:D3:43:F2:EE:50:FD:42:83:67:21:50:52
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A10
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/35kgclVSYZLTQ_LuUP1Cg2chUFI.roa
Signing time: Sun 07 Feb 2021 06:38:46 +0000
ROA not before: Sun 07 Feb 2021 06:38:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2576 (0xa10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:38:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DF99207255526192D343F2EE50FD428367215052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e8:21:b9:06:70:bf:b6:c4:9d:69:04:fe:94:
ae:5f:7b:54:d2:73:0c:9b:3c:fd:7f:7f:68:8f:e6:
af:56:57:33:b1:91:32:0c:ac:39:1d:0a:62:7f:ca:
8f:cf:f5:1c:23:2f:45:7d:34:5c:a6:5f:3a:86:ef:
15:1e:8e:01:91:f1:a4:d1:51:55:df:f6:17:41:af:
fe:45:18:ad:7b:c4:bf:8f:26:ef:c1:10:bb:fb:c2:
f7:b3:14:3d:e3:66:c1:53:1f:46:66:60:48:90:b5:
66:bd:81:8a:ec:b4:5e:79:2c:65:e9:14:d6:04:23:
74:ee:c2:14:8d:80:e9:be:a4:61:bb:7c:08:7d:b4:
f2:01:15:e1:3b:7c:f5:c5:2e:06:b8:63:71:b9:79:
46:d5:51:3a:81:e6:8d:c2:8a:22:b2:1f:7b:de:48:
04:bc:a1:67:20:17:30:f3:6f:ab:c0:95:73:38:e5:
a8:00:43:cd:a7:03:86:f7:3a:87:e4:18:9c:db:55:
ca:b8:74:d0:a4:c5:3f:43:ea:79:8c:ed:ab:a8:34:
35:e7:0f:de:81:1f:74:ba:9b:09:50:d6:23:09:d5:
9a:6c:4d:84:56:8e:5e:30:82:9d:5c:b3:7e:88:4f:
99:fc:9f:b4:ff:ee:ee:0f:02:89:06:94:30:ea:22:
9f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:99:20:72:55:52:61:92:D3:43:F2:EE:50:FD:42:83:67:21:50:52
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/35kgclVSYZLTQ_LuUP1Cg2chUFI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.4.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:4c:fd:e7:1e:fe:20:4d:c4:b3:0f:23:d8:78:df:ae:13:70:
3c:f3:55:82:0b:dc:2f:cb:83:d2:a2:31:13:86:7e:3a:aa:b5:
44:2a:8e:c1:97:a3:8a:b1:14:d2:08:ea:82:4f:a7:8f:5c:36:
f9:96:37:9c:3a:17:49:bb:c7:a0:74:c2:7f:4d:3d:8d:c4:40:
08:00:4c:e3:ca:76:80:0f:dc:11:e0:c2:82:5f:e2:c2:85:2e:
8f:7d:0e:cc:45:95:fc:52:19:bc:76:96:9f:3f:b3:3c:c0:f5:
01:58:32:88:bc:78:5d:bb:aa:b2:13:af:91:7d:b0:fb:70:8e:
b9:cf:76:cb:fc:89:a3:05:bd:cf:79:0f:95:d6:0c:89:6c:2d:
e3:04:eb:a2:62:49:f5:c8:2e:5f:19:67:06:0c:49:f0:ed:f9:
4c:f1:81:ca:b9:40:0e:64:da:c1:58:3a:2d:95:31:e9:de:d9:
99:de:a0:b5:16:96:02:c2:2b:01:7b:31:26:86:91:d6:2c:59:
40:15:9c:40:2a:ae:0d:48:52:40:6f:cc:e3:07:31:91:b9:86:
d4:f5:51:e1:72:db:30:8e:2b:f3:93:3a:ef:18:63:85:6d:58:
36:f7:66:09:8d:93:ae:91:4c:41:6f:51:9e:a2:f7:4c:d4:2f:
a0:47:d8:ff
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICChAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjM4NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERGOTkyMDcyNTU1MjYx
OTJEMzQzRjJFRTUwRkQ0MjgzNjcyMTUwNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDF6CG5BnC/tsSdaQT+lK5fe1TScwybPP1/f2iP5q9WVzOxkTIM
rDkdCmJ/yo/P9RwjL0V9NFymXzqG7xUejgGR8aTRUVXf9hdBr/5FGK17xL+PJu/B
ELv7wvezFD3jZsFTH0ZmYEiQtWa9gYrstF55LGXpFNYEI3TuwhSNgOm+pGG7fAh9
tPIBFeE7fPXFLga4Y3G5eUbVUTqB5o3CiiKyH3veSAS8oWcgFzDzb6vAlXM45agA
Q82nA4b3OofkGJzbVcq4dNCkxT9D6nmM7auoNDXnD96BH3S6mwlQ1iMJ1ZpsTYRW
jl4wgp1cs36IT5n8n7T/7u4PAokGlDDqIp/TAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU35kgclVSYZLTQ/LuUP1Cg2chUFIwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMzVrZ2NsVlNZWkxUUV9MdVVQMUNn
MmNoVUZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBIBDAN
BgkqhkiG9w0BAQsFAAOCAQEArUz95x7+IE3Esw8j2HjfrhNwPPNVggvcL8uD0qIx
E4Z+Oqq1RCqOwZejirEU0gjqgk+nj1w2+ZY3nDoXSbvHoHTCf009jcRACABM48p2
gA/cEeDCgl/iwoUuj30OzEWV/FIZvHaWnz+zPMD1AVgyiLx4XbuqshOvkX2w+3CO
uc92y/yJowW9z3kPldYMiWwt4wTromJJ9cguXxlnBgxJ8O35TPGByrlADmTawVg6
LZUx6d7Zmd6gtRaWAsIrAXsxJoaR1ixZQBWcQCquDUhSQG/M4wcxkbmG1PVR4XLb
MI4r85M67xhjhW1YNvdmCY2TrpFMQW9RnqL3TNQvoEfY/w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org