Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4FUfuvoYMKfSUq193CD-e9vymk8.roa
File: 4FUfuvoYMKfSUq193CD-e9vymk8.roa (raw, json)
Hash identifier: 2wqJtCOWmZtLmGxPQee0+61hakLbE65mppaIW6BSXwk=
Subject key identifier: E0:55:1F:BA:FA:18:30:A7:D2:52:AD:7D:DC:20:FE:7B:DB:F2:9A:4F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B82
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4FUfuvoYMKfSUq193CD-e9vymk8.roa
Signing time: Sun 07 Feb 2021 06:23:29 +0000
ROA not before: Sun 07 Feb 2021 06:23:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.32.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2946 (0xb82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:23:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E0551FBAFA1830A7D252AD7DDC20FE7BDBF29A4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e3:b2:04:ee:41:18:cd:3d:57:db:57:5b:44:
f9:03:60:22:28:a1:e6:53:b1:fd:78:53:8b:7f:eb:
ff:a3:9a:38:c8:f3:ca:af:b9:27:82:3e:2d:13:79:
63:82:6f:de:98:00:b3:e7:23:e2:a8:e5:e2:d7:76:
8d:35:f5:47:7d:d8:ed:f9:e9:e6:59:34:51:1c:6b:
42:6a:60:95:ad:7f:5f:4a:a7:c4:1d:9c:10:6c:51:
b6:ab:5f:83:e2:ea:4c:d2:99:65:67:76:07:a6:d7:
8f:2b:1a:db:3e:62:04:ce:27:f0:d8:17:ec:a8:86:
b6:7e:4f:f3:f1:76:d2:99:73:15:30:25:73:5c:e7:
c0:7f:72:06:75:90:38:26:e3:8e:8f:b7:5d:e3:bd:
e2:39:7d:15:1e:d2:e6:fd:fa:8b:62:6d:91:09:b1:
e4:eb:f6:e9:20:93:e1:e1:b3:ad:24:5a:bf:22:2b:
0a:67:4d:85:af:11:1b:58:37:65:c9:9b:bf:9a:39:
46:6a:b8:d9:4e:cb:46:99:5f:79:f2:eb:2f:7a:8b:
72:df:de:7a:6d:e4:1f:4b:c8:59:9a:12:0e:51:a7:
29:c0:48:a8:fa:68:8e:41:aa:43:6d:d9:e6:be:32:
dc:26:8d:25:ee:62:08:29:74:e5:f1:d3:67:a1:6d:
82:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:55:1F:BA:FA:18:30:A7:D2:52:AD:7D:DC:20:FE:7B:DB:F2:9A:4F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4FUfuvoYMKfSUq193CD-e9vymk8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6e:6c:7d:48:40:78:53:49:8a:59:6d:d7:39:83:00:b0:bf:cc:
2a:e4:ef:00:10:02:6d:bb:fa:41:2d:55:75:de:a8:e6:c7:c2:
9e:24:e8:fb:28:17:e0:e4:7d:36:7f:c2:0e:a0:25:b4:cc:74:
ca:5f:a6:37:98:71:b9:25:69:7a:8d:05:d7:36:e0:3d:05:e4:
6f:34:5b:2a:9b:cc:59:d2:5b:5d:8c:58:4a:1f:17:27:ee:9d:
06:3c:e4:14:85:85:98:cd:54:75:52:fd:c7:e4:75:72:f1:ea:
32:94:19:ad:1f:0d:86:d4:5f:ac:39:39:cd:97:7e:6d:71:0d:
79:fb:bc:60:34:ea:9d:4f:b9:f2:0c:f6:d7:0c:ed:bd:91:95:
ca:e0:e5:56:b1:06:d8:a4:83:92:81:75:a8:2f:83:5e:54:7d:
7e:ee:d3:da:fe:45:b3:e3:ac:c2:5c:7d:e9:13:c1:b3:f5:1d:
e2:9e:be:49:82:42:e8:e1:d4:6e:73:29:26:42:dd:94:fb:6f:
4a:6b:ec:5c:4d:d5:7a:82:7e:3f:11:a6:a8:32:12:c7:82:83:
4e:b9:69:27:3a:cd:60:2a:72:db:84:cd:d7:c4:92:89:28:ec:
92:ac:b8:b1:5d:87:00:0c:d1:26:1e:8b:97:0d:01:2f:7a:55:
51:04:68:b5
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICC4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjIzMjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEUwNTUxRkJBRkExODMw
QTdEMjUyQUQ3RERDMjBGRTdCREJGMjlBNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCg47IE7kEYzT1X21dbRPkDYCIooeZTsf14U4t/6/+jmjjI88qv
uSeCPi0TeWOCb96YALPnI+Ko5eLXdo019Ud92O356eZZNFEca0JqYJWtf19Kp8Qd
nBBsUbarX4Pi6kzSmWVndgem148rGts+YgTOJ/DYF+yohrZ+T/PxdtKZcxUwJXNc
58B/cgZ1kDgm446Pt13jveI5fRUe0ub9+otibZEJseTr9ukgk+Hhs60kWr8iKwpn
TYWvERtYN2XJm7+aOUZquNlOy0aZX3ny6y96i3Lf3npt5B9LyFmaEg5RpynASKj6
aI5BqkNt2ea+MtwmjSXuYggpdOXx02ehbYLNAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU4FUfuvoYMKfSUq193CD+e9vymk8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNEZVZnV2b1lNS2ZTVXExOTNDRC1l
OXZ5bWs4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANogMA0G
CSqGSIb3DQEBCwUAA4IBAQBubH1IQHhTSYpZbdc5gwCwv8wq5O8AEAJtu/pBLVV1
3qjmx8KeJOj7KBfg5H02f8IOoCW0zHTKX6Y3mHG5JWl6jQXXNuA9BeRvNFsqm8xZ
0ltdjFhKHxcn7p0GPOQUhYWYzVR1Uv3H5HVy8eoylBmtHw2G1F+sOTnNl35tcQ15
+7xgNOqdT7nyDPbXDO29kZXK4OVWsQbYpIOSgXWoL4NeVH1+7tPa/kWz46zCXH3p
E8Gz9R3inr5JgkLo4dRucykmQt2U+29Ka+xcTdV6gn4/EaaoMhLHgoNOuWknOs1g
KnLbhM3XxJKJKOySrLixXYcADNEmHouXDQEvelVRBGi1
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org