Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6FoRUOHy6sqNplGMe2qkJvQbIF0.roa
File: 6FoRUOHy6sqNplGMe2qkJvQbIF0.roa (raw, json)
Hash identifier: T6LlnvzeM0eQ50IU7WDNL/p7826LVlI2wZ4OBqorVoc=
Subject key identifier: E8:5A:11:50:E1:F2:EA:CA:8D:A6:51:8C:7B:6A:A4:26:F4:1B:20:5D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EBE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6FoRUOHy6sqNplGMe2qkJvQbIF0.roa
Signing time: Wed 29 Sep 2021 02:43:55 +0000
ROA not before: Wed 29 Sep 2021 02:43:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3774 (0xebe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E85A1150E1F2EACA8DA6518C7B6AA426F41B205D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:74:f6:de:77:28:6f:66:ad:b7:89:88:1b:bc:
9f:98:d1:b5:a4:0c:eb:a7:10:0c:65:b3:ad:59:47:
57:f0:0e:55:3f:09:d6:31:e4:c5:30:c4:88:3f:09:
fa:1a:34:e2:f7:84:99:23:7f:7f:6c:69:68:4f:5d:
4b:81:d8:ff:2b:4d:4e:b8:e8:90:e0:e1:ae:9c:0b:
05:d1:47:5d:e9:c1:8d:ef:cc:58:4f:c0:78:f8:62:
89:55:9d:0f:bf:6d:e9:6e:93:11:71:56:5f:63:cb:
ac:80:9d:31:dd:8e:9b:dc:10:df:d2:0a:2c:c2:e6:
6a:ba:17:51:e3:13:92:7a:bb:46:6f:9f:44:f5:ff:
3e:fa:81:f0:5c:19:62:56:93:0a:dd:f5:39:ef:df:
3b:72:60:dd:1b:a3:76:f8:72:ed:fa:65:67:53:93:
da:93:b9:6e:07:1e:28:0c:e6:25:32:ed:c1:85:e5:
94:15:f2:2d:28:7e:8c:e2:c2:df:8f:1e:47:74:3f:
45:7d:d8:b3:ce:a0:0d:4f:73:7a:8f:ed:f8:44:e1:
e5:29:a1:16:72:59:48:ad:2b:ed:d6:91:5a:eb:39:
87:aa:70:54:90:94:0d:d8:eb:13:da:94:a6:e2:51:
a7:58:0f:d4:e0:67:a2:24:6e:66:37:f1:72:fb:b1:
94:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5A:11:50:E1:F2:EA:CA:8D:A6:51:8C:7B:6A:A4:26:F4:1B:20:5D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6FoRUOHy6sqNplGMe2qkJvQbIF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bc:5c:58:1e:2f:2a:21:bc:17:3d:30:e4:c1:da:67:de:d7:ec:
c2:f8:a8:9b:53:f5:0a:ad:ff:93:02:47:fb:3b:20:f1:e0:db:
c3:45:68:22:13:b4:63:aa:8b:5d:aa:05:39:a5:97:39:6b:26:
da:e1:0d:ff:94:be:f1:8a:ec:21:46:46:41:cd:6c:c7:ae:88:
8f:86:b6:41:af:8e:5b:e9:09:0c:4d:66:ea:c4:7d:3f:43:75:
0c:51:59:00:7e:86:68:95:fd:d2:78:6a:1e:ce:d2:14:4b:22:
73:cd:20:cf:17:7c:de:1b:79:ec:a8:6a:bd:bd:7b:d2:62:f8:
d5:a9:10:c7:74:d2:3d:c6:18:04:33:39:50:c5:12:fe:84:87:
43:9f:30:7f:b8:d5:40:8b:94:05:15:c3:df:60:ce:0d:62:5b:
4f:1f:a1:4a:77:92:2b:3d:73:d3:06:62:ec:c8:a1:39:5d:5f:
5c:9e:ab:ea:96:1e:25:17:03:63:1b:5f:5b:2d:7b:d6:9c:fd:
e3:92:19:f6:37:ef:53:35:45:23:be:04:34:0b:19:5d:db:97:
a1:13:c2:a4:fe:f8:8c:cd:2a:18:21:af:26:99:58:52:67:3f:
8e:c5:75:6a:a3:a1:4f:4a:9a:34:6f:dc:05:e5:82:6d:af:d5:
9e:32:fd:40
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDr4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEU4NUExMTUwRTFGMkVB
Q0E4REE2NTE4QzdCNkFBNDI2RjQxQjIwNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVdPbedyhvZq23iYgbvJ+Y0bWkDOunEAxls61ZR1fwDlU/CdYx
5MUwxIg/CfoaNOL3hJkjf39saWhPXUuB2P8rTU646JDg4a6cCwXRR13pwY3vzFhP
wHj4YolVnQ+/belukxFxVl9jy6yAnTHdjpvcEN/SCizC5mq6F1HjE5J6u0Zvn0T1
/z76gfBcGWJWkwrd9Tnv3ztyYN0bo3b4cu36ZWdTk9qTuW4HHigM5iUy7cGF5ZQV
8i0ofoziwt+PHkd0P0V92LPOoA1Pc3qP7fhE4eUpoRZyWUitK+3WkVrrOYeqcFSQ
lA3Y6xPalKbiUadYD9TgZ6IkbmY38XL7sZS1AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU6FoRUOHy6sqNplGMe2qkJvQbIF0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNkZvUlVPSHk2c3FOcGxHTWUycWtK
dlFiSUYwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAHqTMA0G
CSqGSIb3DQEBCwUAA4IBAQC8XFgeLyohvBc9MOTB2mfe1+zC+KibU/UKrf+TAkf7
OyDx4NvDRWgiE7RjqotdqgU5pZc5ayba4Q3/lL7xiuwhRkZBzWzHroiPhrZBr45b
6QkMTWbqxH0/Q3UMUVkAfoZolf3SeGoeztIUSyJzzSDPF3zeG3nsqGq9vXvSYvjV
qRDHdNI9xhgEMzlQxRL+hIdDnzB/uNVAi5QFFcPfYM4NYltPH6FKd5IrPXPTBmLs
yKE5XV9cnqvqlh4lFwNjG19bLXvWnP3jkhn2N+9TNUUjvgQ0Cxld25ehE8Kk/viM
zSoYIa8mmVhSZz+OxXVqo6FPSpo0b9wF5YJtr9WeMv1A
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org