Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4U49dNTDCXiXL41tcnRqW84sGYU.roa
File: 4U49dNTDCXiXL41tcnRqW84sGYU.roa (raw, json)
Hash identifier: 0y9F1mPHMP0TUOVSUVQnoFt7pmzg8ru3PVDNw5DwYEM=
Subject key identifier: E1:4E:3D:74:D4:C3:09:78:97:2F:8D:6D:72:74:6A:5B:CE:2C:19:85
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E22
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4U49dNTDCXiXL41tcnRqW84sGYU.roa
Signing time: Wed 29 Sep 2021 02:43:14 +0000
ROA not before: Wed 29 Sep 2021 02:43:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 203.73.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3618 (0xe22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E14E3D74D4C30978972F8D6D72746A5BCE2C1985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:37:f0:d5:40:50:67:bc:1a:47:d6:4b:37:30:
86:c9:1b:fe:d5:14:d4:b5:5b:b1:8c:81:e2:29:63:
fb:11:56:c6:cb:e8:1b:54:71:46:d3:97:b7:ec:ca:
bd:6c:1b:05:5a:1c:d9:6a:d5:ac:b6:53:3b:4c:74:
e0:bf:d7:25:fa:8d:1f:63:0d:bc:8a:b0:6a:de:b3:
1f:51:4e:3a:67:47:5d:c7:bd:58:b7:09:42:40:79:
43:a3:0f:5e:67:d7:2e:bc:4f:55:9c:76:ea:94:42:
f3:25:49:b3:6c:b5:da:27:16:ef:96:2d:15:44:bb:
86:9f:7b:4a:49:85:36:54:f0:f3:64:6d:5b:ad:a1:
cb:7f:0e:74:b9:19:28:aa:08:6f:f6:ea:b3:7c:b9:
bc:5c:93:19:73:57:e7:ec:05:eb:2d:a8:51:a9:ea:
7f:4c:06:5a:7c:7d:df:52:81:eb:06:0e:ad:35:ef:
4f:54:43:58:3f:5b:75:92:74:98:1e:68:e7:a0:b5:
56:c3:85:dd:fd:d1:44:00:c6:6d:9e:95:89:3d:bd:
58:75:72:62:61:8d:05:90:f4:76:7e:80:ab:13:02:
72:65:b7:c2:9c:6c:cf:88:ea:59:a6:5e:da:24:e4:
8c:36:8e:1b:6e:bc:63:82:6c:3b:89:93:e0:a5:95:
39:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:4E:3D:74:D4:C3:09:78:97:2F:8D:6D:72:74:6A:5B:CE:2C:19:85
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4U49dNTDCXiXL41tcnRqW84sGYU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c6:07:54:d9:00:0e:33:49:34:e3:ae:9a:bf:5c:6f:0d:99:62:
64:d3:73:fe:2c:e3:f4:02:99:af:df:f6:e2:3a:90:ce:5f:66:
bd:95:f8:f0:26:45:23:03:c8:ee:87:11:ff:4b:21:f9:5d:5c:
c6:33:bb:d9:28:e2:45:f0:54:2e:19:8c:8f:08:87:1b:9b:d4:
ad:4e:1d:4b:a1:df:40:ea:d1:cb:a6:85:65:61:c5:10:ad:f3:
8b:4d:04:69:5a:af:a8:7b:4f:b3:2a:32:03:87:06:c7:c4:93:
b4:ac:7d:5d:b4:0c:3b:c1:14:63:c4:77:bf:ff:2a:96:93:b9:
c3:4f:77:93:08:6b:b6:58:f2:45:ea:ea:a1:e8:ed:bf:2b:bd:
cc:c8:b7:ff:4c:86:33:53:a0:92:f5:e9:5f:e8:6b:e2:04:52:
a4:ac:b3:4c:3f:e2:b0:3f:91:54:c1:43:7b:80:5b:df:6a:b9:
cb:95:89:0c:53:de:a8:3b:3a:56:f2:75:c2:ab:f5:d1:04:2b:
de:8a:2d:76:3b:52:10:bc:a0:cf:fc:82:b6:43:16:05:7c:63:
c0:af:51:b2:11:92:44:cb:4a:35:3c:90:31:9a:05:5b:53:c6:
3d:e2:e8:ad:57:f9:e0:46:7b:39:40:4a:6c:33:ff:9d:43:51:
75:54:e0:ec
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDiIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEUxNEUzRDc0RDRDMzA5
Nzg5NzJGOEQ2RDcyNzQ2QTVCQ0UyQzE5ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZN/DVQFBnvBpH1ks3MIbJG/7VFNS1W7GMgeIpY/sRVsbL6BtU
cUbTl7fsyr1sGwVaHNlq1ay2UztMdOC/1yX6jR9jDbyKsGresx9RTjpnR13HvVi3
CUJAeUOjD15n1y68T1WcduqUQvMlSbNstdonFu+WLRVEu4afe0pJhTZU8PNkbVut
oct/DnS5GSiqCG/26rN8ubxckxlzV+fsBestqFGp6n9MBlp8fd9SgesGDq01709U
Q1g/W3WSdJgeaOegtVbDhd390UQAxm2elYk9vVh1cmJhjQWQ9HZ+gKsTAnJlt8Kc
bM+I6lmmXtok5Iw2jhtuvGOCbDuJk+CllTkTAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU4U49dNTDCXiXL41tcnRqW84sGYUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNFU0OWROVERDWGlYTDQxdGNuUnFX
ODRzR1lVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtJMA0G
CSqGSIb3DQEBCwUAA4IBAQDGB1TZAA4zSTTjrpq/XG8NmWJk03P+LOP0Apmv3/bi
OpDOX2a9lfjwJkUjA8juhxH/SyH5XVzGM7vZKOJF8FQuGYyPCIcbm9StTh1Lod9A
6tHLpoVlYcUQrfOLTQRpWq+oe0+zKjIDhwbHxJO0rH1dtAw7wRRjxHe//yqWk7nD
T3eTCGu2WPJF6uqh6O2/K73MyLf/TIYzU6CS9elf6GviBFKkrLNMP+KwP5FUwUN7
gFvfarnLlYkMU96oOzpW8nXCq/XRBCveii12O1IQvKDP/IK2QxYFfGPAr1GyEZJE
y0o1PJAxmgVbU8Y94uitV/ngRns5QEpsM/+dQ1F1VODs
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org