Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ap0IyhdKMrgLrshD8ubgvLyOs-Y.roa
File: Ap0IyhdKMrgLrshD8ubgvLyOs-Y.roa (raw, json)
Hash identifier: bwHYU16+2g+Fw6LUbNCkaGxiWXtn+q2WB/xfR9mDX4E=
Subject key identifier: 02:9D:08:CA:17:4A:32:B8:0B:AE:C8:43:F2:E6:E0:BC:BC:8E:B3:E6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EB4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ap0IyhdKMrgLrshD8ubgvLyOs-Y.roa
Signing time: Wed 29 Sep 2021 02:43:52 +0000
ROA not before: Wed 29 Sep 2021 02:43:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 123.205.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3764 (0xeb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=029D08CA174A32B80BAEC843F2E6E0BCBC8EB3E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a2:ed:23:a8:d6:a9:08:c5:61:dd:da:43:8c:
ca:41:96:dd:5e:c5:49:3b:12:27:f7:28:04:b9:3e:
07:47:59:46:f2:a9:67:ca:00:51:c6:9c:28:9d:21:
f0:e0:01:a9:a7:5d:74:be:6b:73:56:72:1f:15:00:
56:0f:ff:48:50:6e:d0:ef:bb:ef:7c:26:f5:a4:6b:
81:6e:a7:68:93:08:a8:7d:2b:19:95:8f:6d:53:2b:
e5:f8:0a:01:2e:84:ec:2d:5b:16:3b:4d:90:d1:61:
b6:e4:3d:1b:5a:54:9f:a8:69:85:a0:58:be:b1:65:
a1:1c:2d:59:58:b8:f5:99:c7:d7:08:93:94:5a:1d:
ab:87:5a:fc:38:c1:46:bf:31:f1:e2:d4:9c:17:cc:
1b:a0:88:44:00:f8:5b:db:2c:9c:1f:a9:c2:89:e9:
8d:65:25:01:9e:7b:e7:ff:00:aa:82:78:ec:c3:42:
db:4d:b0:59:91:7a:fd:e2:bf:4a:44:a7:c9:e2:f5:
11:85:a2:5d:45:34:95:fd:24:12:1b:5b:87:32:e4:
b4:eb:a8:73:70:a7:19:e4:54:69:bb:c9:8a:24:c2:
e5:fa:aa:4d:24:a9:c5:ff:93:b9:e0:fa:28:d6:01:
ee:1a:de:51:85:ac:28:fc:72:70:fe:66:10:3e:42:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9D:08:CA:17:4A:32:B8:0B:AE:C8:43:F2:E6:E0:BC:BC:8E:B3:E6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ap0IyhdKMrgLrshD8ubgvLyOs-Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.58.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:a7:84:00:86:d9:2b:8e:60:a5:41:5e:74:37:16:c8:2c:e5:
b8:14:fc:48:b4:2a:03:80:21:a4:3d:07:57:a8:c6:61:eb:3d:
5a:55:18:ad:08:76:17:99:aa:4e:ca:33:09:94:d1:46:54:29:
6c:68:b3:f5:8e:93:c4:3f:ce:5d:84:ed:61:96:0a:0b:f5:28:
c5:ec:0d:a2:f9:ec:e4:3c:eb:b5:3c:14:22:19:40:63:06:0c:
4b:3c:26:4d:42:14:7c:26:66:87:3c:d9:41:af:a0:6a:73:8a:
ec:68:26:db:07:4c:91:c2:29:5a:c5:ba:8d:b7:a9:ea:1b:71:
48:b3:e3:34:f9:37:07:bd:2f:fd:78:6a:40:34:64:99:67:ee:
e6:e2:33:44:59:f7:9f:7f:6c:3a:2d:4b:0c:13:43:3e:e0:b8:
06:46:2d:3b:d2:67:9c:0c:15:a2:bd:a5:24:2b:01:dd:07:34:
ed:29:d3:e4:12:f2:d0:c3:22:a6:6e:45:f1:86:ac:1b:ef:fe:
a8:97:d7:81:c0:4a:98:b7:93:5d:53:2a:2c:a0:28:31:1a:dc:
6a:35:3b:c1:8b:34:84:28:34:0d:d4:bc:85:f2:4f:5c:cb:b1:
c7:d9:08:55:15:4a:74:5e:bd:6f:3b:25:94:ec:3a:38:37:07:
0a:b2:92:72
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDrQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDAyOUQwOENBMTc0QTMy
QjgwQkFFQzg0M0YyRTZFMEJDQkM4RUIzRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDaou0jqNapCMVh3dpDjMpBlt1exUk7Eif3KAS5PgdHWUbyqWfK
AFHGnCidIfDgAamnXXS+a3NWch8VAFYP/0hQbtDvu+98JvWka4Fup2iTCKh9KxmV
j21TK+X4CgEuhOwtWxY7TZDRYbbkPRtaVJ+oaYWgWL6xZaEcLVlYuPWZx9cIk5Ra
HauHWvw4wUa/MfHi1JwXzBugiEQA+FvbLJwfqcKJ6Y1lJQGee+f/AKqCeOzDQttN
sFmRev3iv0pEp8ni9RGFol1FNJX9JBIbW4cy5LTrqHNwpxnkVGm7yYokwuX6qk0k
qcX/k7ng+ijWAe4a3lGFrCj8cnD+ZhA+QuCpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUAp0IyhdKMrgLrshD8ubgvLyOs+YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQXAwSXloZEtNcmdMcnNoRDh1Ymd2
THlPcy1ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNOjAN
BgkqhkiG9w0BAQsFAAOCAQEAO6eEAIbZK45gpUFedDcWyCzluBT8SLQqA4AhpD0H
V6jGYes9WlUYrQh2F5mqTsozCZTRRlQpbGiz9Y6TxD/OXYTtYZYKC/UoxewNovns
5DzrtTwUIhlAYwYMSzwmTUIUfCZmhzzZQa+ganOK7Ggm2wdMkcIpWsW6jbep6htx
SLPjNPk3B70v/XhqQDRkmWfu5uIzRFn3n39sOi1LDBNDPuC4BkYtO9JnnAwVor2l
JCsB3Qc07SnT5BLy0MMipm5F8YasG+/+qJfXgcBKmLeTXVMqLKAoMRrcajU7wYs0
hCg0DdS8hfJPXMuxx9kIVRVKdF69bzsllOw6ODcHCrKScg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org