Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ac0Tj_5J7GT4sMAUs1jnpDsjlh8.roa
File: Ac0Tj_5J7GT4sMAUs1jnpDsjlh8.roa (raw, json)
Hash identifier: w5k6gNYOfrOiRiqRUDhPGFG5Vbny0jkCL9dritGkb8g=
Subject key identifier: 01:CD:13:8F:FE:49:EC:64:F8:B0:C0:14:B3:58:E7:A4:3B:23:96:1F
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 08A2
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ac0Tj_5J7GT4sMAUs1jnpDsjlh8.roa
Signing time: Tue 24 Nov 2020 09:16:01 +0000
ROA not before: Tue 24 Nov 2020 09:16:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2210 (0x8a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Nov 24 09:16:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=01CD138FFE49EC64F8B0C014B358E7A43B23961F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a7:5e:00:28:43:a4:bc:79:da:85:da:63:b9:
66:17:53:ef:f5:4e:a1:5f:32:5e:8e:f4:47:b3:9b:
2c:14:83:53:d8:e6:23:2d:6e:37:63:c4:cb:66:8e:
73:a4:32:60:cf:be:2a:d3:c5:b6:bf:28:24:88:d8:
cd:a7:4a:a1:9c:03:74:a1:6e:c5:19:94:dd:3c:85:
24:66:57:3d:16:41:be:f1:4e:eb:14:23:42:c5:4a:
cb:34:94:05:a3:3a:23:5b:85:c1:a2:d6:a9:73:cb:
27:88:b9:0d:99:39:cf:b8:5f:2f:23:a7:7a:9c:e2:
6e:07:86:99:76:92:cc:c2:1b:1e:f7:5f:f5:6a:79:
b0:18:8d:d0:e3:d8:21:6d:0a:c7:33:98:fd:8d:8c:
18:68:c9:6c:d9:e8:de:13:71:8b:22:f7:dc:ce:40:
4c:e6:72:b7:9e:40:1e:6c:52:39:5d:a2:54:ae:36:
be:2f:1e:d2:a8:4f:9c:5f:75:b1:72:2e:3e:79:db:
ac:1d:b3:12:a4:06:c3:f0:2c:cc:22:e8:b7:ea:bd:
59:b6:9d:45:8a:55:c6:ea:75:3b:10:39:59:d4:9c:
e4:8b:bf:88:53:cb:e0:9d:da:4e:86:3c:28:72:ae:
80:21:9b:8f:d3:dc:e6:0e:3a:cd:15:a0:96:fe:00:
7c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:CD:13:8F:FE:49:EC:64:F8:B0:C0:14:B3:58:E7:A4:3B:23:96:1F
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ac0Tj_5J7GT4sMAUs1jnpDsjlh8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
48:1d:e0:04:09:cf:5d:cf:02:53:e7:13:b4:f4:ae:1d:4b:96:
6a:34:aa:28:ef:76:84:6f:95:59:d3:99:87:38:29:f4:2e:66:
3a:17:4c:22:75:dd:54:fb:60:41:13:ba:be:31:01:02:e9:e9:
45:cd:ed:84:e9:8d:05:f7:78:cc:bf:d7:d8:83:62:5b:58:94:
99:f9:63:b3:50:9f:04:60:f1:42:1b:11:b5:1a:6d:10:37:73:
03:c5:e2:b0:c5:e6:37:93:ba:4e:0b:38:5c:4c:3b:03:03:fb:
4c:0a:0e:67:32:e8:86:8e:44:23:62:8a:e1:71:31:53:00:b0:
5e:f5:64:8f:3a:53:90:27:33:62:af:5b:73:9d:55:99:4b:84:
02:74:c9:d7:a2:8d:99:f0:6f:82:e1:82:46:48:54:29:11:dc:
02:42:60:59:b8:95:4b:fa:4d:7d:b4:1f:75:28:8b:bb:d7:d1:
d9:16:ab:6c:fb:00:69:5b:63:86:28:1f:f6:65:9f:cf:7b:78:
7c:8c:02:ae:21:83:75:ca:59:84:18:2e:b4:ac:94:45:6c:f9:
de:67:07:12:10:38:2c:9d:0c:58:53:39:65:b3:98:11:77:db:
01:b6:d5:47:61:e5:26:fb:7e:ba:31:79:ff:8f:02:e9:a5:27:
3e:60:42:fa
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMDExMjQw
OTE2MDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAxQ0QxMzhGRkU0OUVD
NjRGOEIwQzAxNEIzNThFN0E0M0IyMzk2MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUp14AKEOkvHnahdpjuWYXU+/1TqFfMl6O9EezmywUg1PY5iMt
bjdjxMtmjnOkMmDPvirTxba/KCSI2M2nSqGcA3ShbsUZlN08hSRmVz0WQb7xTusU
I0LFSss0lAWjOiNbhcGi1qlzyyeIuQ2ZOc+4Xy8jp3qc4m4Hhpl2kszCGx73X/Vq
ebAYjdDj2CFtCsczmP2NjBhoyWzZ6N4TcYsi99zOQEzmcreeQB5sUjldolSuNr4v
HtKoT5xfdbFyLj5526wdsxKkBsPwLMwi6LfqvVm2nUWKVcbqdTsQOVnUnOSLv4hT
y+Cd2k6GPChyroAhm4/T3OYOOs0VoJb+AHxJAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUAc0Tj/5J7GT4sMAUs1jnpDsjlh8wHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQWMwVGpfNUo3R1Q0c01BVXMxam5w
RHNqbGg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsBIQDAN
BgkqhkiG9w0BAQsFAAOCAQEASB3gBAnPXc8CU+cTtPSuHUuWajSqKO92hG+VWdOZ
hzgp9C5mOhdMInXdVPtgQRO6vjEBAunpRc3thOmNBfd4zL/X2INiW1iUmfljs1Cf
BGDxQhsRtRptEDdzA8XisMXmN5O6Tgs4XEw7AwP7TAoOZzLoho5EI2KK4XExUwCw
XvVkjzpTkCczYq9bc51VmUuEAnTJ16KNmfBvguGCRkhUKRHcAkJgWbiVS/pNfbQf
dSiLu9fR2RarbPsAaVtjhigf9mWfz3t4fIwCriGDdcpZhBgutKyURWz53mcHEhA4
LJ0MWFM5ZbOYEXfbAbbVR2HlJvt+ujF5/48C6aUnPmBC+g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org