Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/817xukAegSKDh7mJyzWdVuMXhzM.roa
File: 817xukAegSKDh7mJyzWdVuMXhzM.roa (raw, json)
Hash identifier: vJPCjoTEZ6rHUVhS+wjiJkr3M40xRsidqGgzEaMCklA=
Subject key identifier: F3:5E:F1:BA:40:1E:81:22:83:87:B9:89:CB:35:9D:56:E3:17:87:33
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B88
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/817xukAegSKDh7mJyzWdVuMXhzM.roa
Signing time: Sun 07 Feb 2021 06:25:10 +0000
ROA not before: Sun 07 Feb 2021 06:25:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.67.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2952 (0xb88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:25:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F35EF1BA401E81228387B989CB359D56E3178733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b2:ee:fc:b7:e8:67:f7:33:09:f0:6d:eb:66:
d8:d9:44:8c:f7:8e:4f:49:e3:52:35:f4:cd:5d:f5:
c2:65:12:00:16:8c:df:d9:00:66:3f:4a:57:70:84:
13:b0:2f:5e:60:70:0d:c5:85:b2:a4:19:1f:56:86:
23:86:21:8e:a6:2d:dd:5b:65:38:f7:f7:c8:88:7d:
ee:29:49:b4:f9:4c:9f:96:ed:84:ff:d2:1b:8e:8a:
0e:8d:21:0c:21:0c:65:c8:f8:df:c9:cb:03:d4:9f:
3a:5c:59:81:bd:c4:ad:40:cc:ec:58:f3:26:72:3e:
3c:cc:bf:5b:e1:eb:2f:13:c7:63:85:73:36:8e:30:
4d:da:eb:f6:71:1b:73:30:92:b3:de:c7:32:ff:8e:
58:3d:fa:a3:db:66:36:31:d1:40:db:2e:f2:d5:ad:
c3:14:23:08:00:e8:23:f5:2c:d4:67:c3:b4:fc:cb:
ed:f9:96:ca:3d:8d:6c:41:bf:8e:55:c6:dd:13:39:
5a:19:a0:54:cb:0c:69:40:99:ac:57:9e:3a:36:d0:
0f:2f:bd:56:d5:53:1a:a5:b2:0f:a4:29:47:3b:05:
d8:f9:cf:b9:7e:91:f8:1e:67:55:0f:4b:f5:ba:83:
3f:8e:98:59:69:42:3a:c2:45:64:be:06:fa:0c:53:
b5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5E:F1:BA:40:1E:81:22:83:87:B9:89:CB:35:9D:56:E3:17:87:33
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/817xukAegSKDh7mJyzWdVuMXhzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.67.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b3:6f:db:b6:c0:9b:65:f2:ac:7a:06:6a:76:7d:9f:2b:7f:72:
17:c2:66:26:b1:bd:50:d2:11:f3:42:47:35:35:50:a1:86:e7:
36:88:66:ac:00:db:8f:3b:e9:ec:7a:49:ca:14:62:2b:f9:6a:
60:52:7b:81:2c:44:f5:e4:0c:72:ca:08:4e:0f:0b:3b:12:5b:
b4:27:a0:e7:9d:a2:e7:46:92:13:99:df:e9:6b:c1:31:90:5f:
e2:a4:08:fc:fe:d5:95:2a:ac:7c:a1:ba:6f:fd:c4:f4:70:e1:
44:66:b4:2d:eb:1e:42:39:11:19:49:0d:bc:fd:d0:81:85:2e:
c8:e3:80:70:5d:20:a7:dc:1e:7b:87:14:e3:8d:17:32:76:7f:
50:46:67:66:4e:d7:dc:d9:c1:df:5d:91:53:6d:cc:b7:07:3e:
7f:9c:8b:f5:a9:f2:88:b0:0a:ac:80:06:63:65:1c:86:72:f6:
d4:11:7d:b7:c3:74:8b:3b:40:6e:f0:64:a4:87:66:2a:47:95:
97:00:fd:00:8b:f6:54:c9:a2:f9:45:59:cc:61:b6:5f:5a:2b:
14:1c:e4:e5:bc:69:38:95:34:1c:d9:bd:a1:45:51:54:06:b0:
02:32:3d:8c:04:70:11:2c:47:dd:bf:b6:bf:4b:49:1d:ee:5b:
d1:91:a2:75
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICC4gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjI1MTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEYzNUVGMUJBNDAxRTgx
MjI4Mzg3Qjk4OUNCMzU5RDU2RTMxNzg3MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDpsu78t+hn9zMJ8G3rZtjZRIz3jk9J41I19M1d9cJlEgAWjN/Z
AGY/SldwhBOwL15gcA3FhbKkGR9WhiOGIY6mLd1bZTj398iIfe4pSbT5TJ+W7YT/
0huOig6NIQwhDGXI+N/JywPUnzpcWYG9xK1AzOxY8yZyPjzMv1vh6y8Tx2OFczaO
ME3a6/ZxG3MwkrPexzL/jlg9+qPbZjYx0UDbLvLVrcMUIwgA6CP1LNRnw7T8y+35
lso9jWxBv45Vxt0TOVoZoFTLDGlAmaxXnjo20A8vvVbVUxqlsg+kKUc7Bdj5z7l+
kfgeZ1UPS/W6gz+OmFlpQjrCRWS+BvoMU7UrAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU817xukAegSKDh7mJyzWdVuMXhzMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvODE3eHVrQWVnU0tEaDdtSnl6V2RW
dU1YaHpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtDMA0G
CSqGSIb3DQEBCwUAA4IBAQCzb9u2wJtl8qx6Bmp2fZ8rf3IXwmYmsb1Q0hHzQkc1
NVChhuc2iGasANuPO+nseknKFGIr+WpgUnuBLET15AxyyghODws7Elu0J6DnnaLn
RpITmd/pa8ExkF/ipAj8/tWVKqx8obpv/cT0cOFEZrQt6x5COREZSQ28/dCBhS7I
44BwXSCn3B57hxTjjRcydn9QRmdmTtfc2cHfXZFTbcy3Bz5/nIv1qfKIsAqsgAZj
ZRyGcvbUEX23w3SLO0Bu8GSkh2YqR5WXAP0Ai/ZUyaL5RVnMYbZfWisUHOTlvGk4
lTQc2b2hRVFUBrACMj2MBHARLEfdv7a/S0kd7lvRkaJ1
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org