Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8y9NOI03pQ9ZWTCGA1fAjOYHzfM.roa
File: 8y9NOI03pQ9ZWTCGA1fAjOYHzfM.roa (raw, json)
Hash identifier: 1hM6boR7J+O4HyNG6cMab++wWKSzBmFWNph7Luul3Ok=
Subject key identifier: F3:2F:4D:38:8D:37:A5:0F:59:59:30:86:03:57:C0:8C:E6:07:CD:F3
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0784
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8y9NOI03pQ9ZWTCGA1fAjOYHzfM.roa
Signing time: Tue 29 Sep 2020 09:52:49 +0000
ROA not before: Tue 29 Sep 2020 09:52:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1924 (0x784)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F32F4D388D37A50F595930860357C08CE607CDF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:35:46:12:83:8d:77:da:f3:79:13:79:a2:13:
ee:a7:21:e3:eb:af:1d:5d:c2:25:16:8e:76:99:d6:
f1:f1:1b:9c:d7:af:25:ef:2c:dc:64:61:b4:56:1f:
06:91:e1:a2:ec:11:f3:5a:8d:e8:67:ed:78:08:b8:
4b:bf:f7:60:41:d6:de:fb:fe:5e:c5:72:4f:df:18:
21:8d:68:83:36:4d:89:05:06:71:0f:2d:a9:c7:3d:
30:53:f0:55:ac:d0:7b:01:10:c9:53:c4:e5:b5:a0:
96:f0:8d:d9:f0:50:fc:60:84:01:cc:e9:7a:d2:e2:
40:b2:3f:cc:ce:ef:e7:4f:2d:e1:9e:68:f3:02:c5:
23:3a:ce:82:83:b0:00:68:fa:2b:4f:67:62:48:32:
4b:33:e8:e6:3f:2a:33:b4:02:d9:bd:e7:08:d8:4c:
89:7a:01:06:1c:d4:72:36:16:95:f3:b3:00:58:3c:
49:e7:94:7f:1b:bf:2b:df:fa:35:f7:05:be:41:65:
3b:af:5c:8b:51:bb:96:61:8a:7f:5c:c6:e7:b1:58:
64:9c:86:68:a6:b7:7c:57:07:ce:47:21:59:bf:d9:
57:7c:ce:6f:25:52:f5:38:b8:3e:b8:4d:d9:06:43:
a5:36:29:a3:2c:9b:6d:43:88:72:9d:e9:4f:1c:9b:
da:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:2F:4D:38:8D:37:A5:0F:59:59:30:86:03:57:C0:8C:E6:07:CD:F3
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8y9NOI03pQ9ZWTCGA1fAjOYHzfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.192.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:6c:02:f2:a3:28:35:ec:77:f4:96:64:bf:e9:ca:81:c1:61:
c4:be:20:0e:c2:b1:ef:7f:06:7f:37:67:9e:3a:5c:d9:ad:29:
95:64:bb:46:02:ea:04:77:d3:00:9e:a1:6c:d8:2c:fa:7c:8c:
29:8f:67:70:49:13:45:c4:38:9a:21:32:cd:53:ea:5d:78:0f:
7a:9b:25:c5:77:f2:9c:a4:ef:4e:7b:64:b3:91:e6:7a:52:c1:
37:18:86:a1:bb:36:d5:0e:c8:fa:a8:33:52:53:0d:ff:b1:69:
65:b1:9b:36:2e:c4:b3:8e:8c:50:f7:34:06:44:4d:d4:c1:f1:
39:3c:73:5e:31:f1:46:4c:5a:9e:34:e0:39:4a:2a:14:ae:3c:
51:bf:a8:30:27:e1:b1:fa:6b:01:57:80:74:da:e7:58:b2:b4:
ec:25:97:88:09:5a:da:8f:ee:2c:d8:73:6a:0f:fb:ce:d7:e7:
c3:69:98:2f:ab:2b:1b:51:09:07:a7:68:b7:68:ac:92:54:ec:
8b:74:b3:ad:aa:f4:59:a0:2d:6b:6f:26:35:2b:f0:b8:7e:8d:
62:ca:d9:72:7b:e4:b1:be:74:7f:67:ce:3c:d9:e3:1e:ab:aa:
18:6a:b2:93:05:03:8c:5a:8a:25:ee:20:fe:b5:bb:0e:13:e2:
69:33:65:ca
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICB4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMDA5Mjkw
OTUyNDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEYzMkY0RDM4OEQzN0E1
MEY1OTU5MzA4NjAzNTdDMDhDRTYwN0NERjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCaNUYSg4132vN5E3miE+6nIePrrx1dwiUWjnaZ1vHxG5zXryXv
LNxkYbRWHwaR4aLsEfNajehn7XgIuEu/92BB1t77/l7Fck/fGCGNaIM2TYkFBnEP
LanHPTBT8FWs0HsBEMlTxOW1oJbwjdnwUPxghAHM6XrS4kCyP8zO7+dPLeGeaPMC
xSM6zoKDsABo+itPZ2JIMksz6OY/KjO0Atm95wjYTIl6AQYc1HI2FpXzswBYPEnn
lH8bvyvf+jX3Bb5BZTuvXItRu5Zhin9cxuexWGSchmimt3xXB85HIVm/2Vd8zm8l
UvU4uD64TdkGQ6U2KaMsm21DiHKd6U8cm9rNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU8y9NOI03pQ9ZWTCGA1fAjOYHzfMwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOHk5Tk9JMDNwUTlaV1RDR0ExZkFq
T1lIemZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIwDAN
BgkqhkiG9w0BAQsFAAOCAQEAWmwC8qMoNex39JZkv+nKgcFhxL4gDsKx738Gfzdn
njpc2a0plWS7RgLqBHfTAJ6hbNgs+nyMKY9ncEkTRcQ4miEyzVPqXXgPepslxXfy
nKTvTntks5HmelLBNxiGobs21Q7I+qgzUlMN/7FpZbGbNi7Es46MUPc0BkRN1MHx
OTxzXjHxRkxanjTgOUoqFK48Ub+oMCfhsfprAVeAdNrnWLK07CWXiAla2o/uLNhz
ag/7ztfnw2mYL6srG1EJB6dot2isklTsi3Szrar0WaAta28mNSvwuH6NYsrZcnvk
sb50f2fOPNnjHquqGGqykwUDjFqKJe4g/rW7DhPiaTNlyg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org