Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5OPJ_3Rbpqn9JZwk2taHJdvyemQ.roa
File: 5OPJ_3Rbpqn9JZwk2taHJdvyemQ.roa (raw, json)
Hash identifier: 8qmqLml4WldxIwWPpB/MqukzIxIb44dc63crAvoCD3M=
Subject key identifier: E4:E3:C9:FF:74:5B:A6:A9:FD:25:9C:24:DA:D6:87:25:DB:F2:7A:64
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 085E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5OPJ_3Rbpqn9JZwk2taHJdvyemQ.roa
Signing time: Tue 29 Sep 2020 09:51:57 +0000
ROA not before: Tue 29 Sep 2020 09:51:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 112.104.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2142 (0x85e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E4E3C9FF745BA6A9FD259C24DAD68725DBF27A64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a4:3d:56:28:91:3c:75:79:95:9a:68:cf:2f:
3f:48:f2:d5:7b:7e:b9:dd:8f:d1:08:d8:1c:2f:16:
62:a4:5f:f7:26:07:23:70:bb:25:2a:c4:96:31:dd:
cd:73:a4:01:dc:1e:78:19:e6:86:50:ff:4b:3a:b8:
33:d8:2a:75:60:fd:93:5d:bb:23:42:39:ca:a9:da:
05:68:8f:db:a4:26:af:1d:e8:53:17:7e:f1:31:c0:
bc:da:c9:2a:23:17:49:cb:24:c4:12:13:a6:a6:93:
6a:64:83:d3:ba:b3:20:4f:5e:0c:9e:04:26:16:5f:
f7:f2:14:ea:36:51:fe:67:61:97:77:d7:11:6b:1b:
11:4a:f4:32:77:25:80:b5:a4:a5:10:f0:7a:05:b8:
32:c4:43:b6:09:08:b5:e5:3b:e6:4a:9e:74:69:da:
50:16:83:c6:f6:af:1e:08:9f:61:35:6f:48:b2:4c:
ac:71:f8:45:84:0a:59:cc:9b:3a:9a:bb:61:2e:89:
cf:ea:d4:48:96:76:26:83:85:36:a9:fc:b7:3a:93:
f5:6c:74:84:ab:2b:8d:f3:a2:dc:1f:40:16:f9:a8:
b5:10:c1:8a:6d:9a:4c:48:15:9d:cd:9b:b1:5a:b4:
0c:c3:8d:69:17:ac:66:56:22:be:2e:a7:ec:03:e4:
31:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E3:C9:FF:74:5B:A6:A9:FD:25:9C:24:DA:D6:87:25:DB:F2:7A:64
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5OPJ_3Rbpqn9JZwk2taHJdvyemQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a8:6d:27:30:81:7d:2e:0c:8f:ee:99:57:b7:10:90:44:8a:77:
fb:58:c4:29:e4:29:5a:52:ed:56:4b:1c:45:f4:b2:d7:89:61:
11:c3:79:b0:2a:50:85:2d:96:dc:69:da:7b:96:0d:9e:5f:4a:
96:1b:14:ee:95:8f:c2:36:9d:04:54:42:c0:e4:6f:33:34:ee:
62:d2:37:e4:0a:3d:e3:ce:84:53:46:61:ad:2d:4a:8c:4b:5a:
5c:52:e3:df:29:d9:4a:19:2e:cb:94:1d:38:66:fb:cb:90:a4:
8e:9f:73:a4:e4:46:21:36:bf:29:b7:99:27:3d:47:a0:0e:1d:
ec:86:61:78:98:46:2f:24:ac:31:3b:3c:93:3d:6c:0b:d0:e4:
b8:64:5a:cb:a2:56:93:0c:e5:d4:8f:6b:ae:19:2a:74:e0:e4:
75:ba:39:d5:d1:cd:8d:bf:29:c5:fc:ea:e7:16:11:82:0f:ae:
4d:08:0f:72:5f:e3:4e:0a:dc:a8:06:c9:fc:d1:af:48:d0:22:
8a:67:c4:8a:ec:6f:a5:f6:1d:63:ef:9e:98:7f:6f:f5:21:3e:
c9:b7:e8:73:67:c9:a2:25:aa:ee:4a:65:c5:63:29:ac:ed:a9:
ea:c3:9e:ea:c9:24:fc:84:9b:58:2f:b5:59:6f:6c:b4:e7:29:
13:ec:1c:e7
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCF4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUxNTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU0RTNDOUZGNzQ1QkE2
QTlGRDI1OUMyNERBRDY4NzI1REJGMjdBNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKpD1WKJE8dXmVmmjPLz9I8tV7frndj9EI2BwvFmKkX/cmByNw
uyUqxJYx3c1zpAHcHngZ5oZQ/0s6uDPYKnVg/ZNduyNCOcqp2gVoj9ukJq8d6FMX
fvExwLzaySojF0nLJMQSE6amk2pkg9O6syBPXgyeBCYWX/fyFOo2Uf5nYZd31xFr
GxFK9DJ3JYC1pKUQ8HoFuDLEQ7YJCLXlO+ZKnnRp2lAWg8b2rx4In2E1b0iyTKxx
+EWEClnMmzqau2Euic/q1EiWdiaDhTap/Lc6k/VsdISrK43zotwfQBb5qLUQwYpt
mkxIFZ3Nm7FatAzDjWkXrGZWIr4up+wD5DF5AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU5OPJ/3Rbpqn9JZwk2taHJdvyemQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNU9QSl8zUmJwcW45Slp3azJ0YUhK
ZHZ5ZW1RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXBoMA0G
CSqGSIb3DQEBCwUAA4IBAQCobScwgX0uDI/umVe3EJBEinf7WMQp5ClaUu1WSxxF
9LLXiWERw3mwKlCFLZbcadp7lg2eX0qWGxTulY/CNp0EVELA5G8zNO5i0jfkCj3j
zoRTRmGtLUqMS1pcUuPfKdlKGS7LlB04ZvvLkKSOn3Ok5EYhNr8pt5knPUegDh3s
hmF4mEYvJKwxOzyTPWwL0OS4ZFrLolaTDOXUj2uuGSp04OR1ujnV0c2NvynF/Orn
FhGCD65NCA9yX+NOCtyoBsn80a9I0CKKZ8SK7G+l9h1j756Yf2/1IT7Jt+hzZ8mi
JaruSmXFYyms7anqw57qyST8hJtYL7VZb2y05ykT7Bzn
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org