Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/AvjYXjcCVQTIzOtnuGiubFE2oQw.roa
File: AvjYXjcCVQTIzOtnuGiubFE2oQw.roa (raw, json)
Hash identifier: qsb2eBUwBkVA9Lywe/PZRdj7Is7ZhgC6D84N/hkVnWA=
Subject key identifier: 02:F8:D8:5E:37:02:55:04:C8:CC:EB:67:B8:68:AE:6C:51:36:A1:0C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0A40
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AvjYXjcCVQTIzOtnuGiubFE2oQw.roa
Signing time: Tue 24 Nov 2020 09:38:18 +0000
ROA not before: Tue 24 Nov 2020 09:38:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 210.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2624 (0xa40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Nov 24 09:38:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=02F8D85E37025504C8CCEB67B868AE6C5136A10C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5d:1a:dc:84:27:cf:dc:01:49:bb:97:d1:3f:
b1:93:ff:87:e1:1c:47:e5:3d:7e:b2:dd:c3:d2:73:
b5:27:b7:5d:d7:c4:ce:b1:85:c0:2f:14:3f:f4:c0:
dd:a9:7d:d3:22:51:99:67:16:2c:74:d0:d8:24:64:
a4:b0:5c:60:b7:e7:4b:ce:fb:97:8f:eb:6e:8a:e0:
59:1a:d0:6b:56:2e:63:07:19:d7:a4:6a:3d:92:9d:
83:af:f7:a9:00:01:45:c0:ef:62:c7:a8:73:76:e6:
98:4e:03:71:09:25:22:eb:ca:a7:42:31:bb:42:9c:
a5:98:e1:fd:1b:47:0b:22:16:07:13:b2:9e:bc:92:
ea:20:af:e6:6c:19:0a:34:5f:8b:ab:4e:9b:46:b2:
e1:91:55:8a:36:26:6c:b9:bb:f3:d3:99:bb:71:86:
11:0c:5a:a1:ce:0c:f8:2d:e6:16:21:ad:6e:91:c1:
1e:70:52:cb:6f:71:8d:65:e9:cc:ce:fc:b4:93:bd:
b8:06:0d:00:06:ce:85:dc:11:34:b9:49:3f:0c:fd:
46:4a:d6:06:8e:eb:d8:44:29:61:28:e7:33:ae:52:
8f:53:fd:9b:52:83:28:21:10:87:f9:d3:5d:bc:a4:
92:58:3c:0d:68:ba:b6:ec:2e:e2:60:0b:5e:a9:ed:
2a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F8:D8:5E:37:02:55:04:C8:CC:EB:67:B8:68:AE:6C:51:36:A1:0C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AvjYXjcCVQTIzOtnuGiubFE2oQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
01:44:a8:aa:a2:fd:bf:c8:65:71:a2:65:9f:e3:64:81:c3:95:
9c:94:8a:ed:43:54:05:b5:d9:bc:61:1b:99:a8:25:ab:89:fa:
b9:2f:a4:b2:c7:70:57:83:a4:d3:94:11:ec:76:d8:20:21:c7:
68:f7:b9:35:30:f7:ce:f8:af:d1:a3:c8:bc:7c:cb:14:11:f7:
7e:34:61:a4:15:5a:d8:20:2f:94:7a:80:8e:ec:79:46:1c:f1:
07:8c:a7:bb:24:ce:88:2a:b2:71:05:39:78:19:98:63:00:bb:
89:97:18:5d:ac:46:50:ba:99:ff:ef:0e:92:28:d9:26:c6:ba:
ad:dc:3e:68:db:45:e0:ec:c4:48:4a:f4:01:d6:94:3d:9e:c1:
0f:f9:88:0e:bd:f8:e6:4a:61:61:63:f0:db:b3:a5:d5:a0:09:
68:3e:0d:70:db:2b:9b:31:02:8c:17:db:b9:0c:17:a6:9a:1f:
89:5b:2f:ea:c8:c8:da:41:06:d2:7b:ad:1a:8a:c7:39:d5:f1:
76:a0:65:62:07:e6:61:47:f2:13:6f:f1:f4:02:65:2e:d3:c0:
f0:18:c3:5a:5d:73:57:7f:84:bb:e7:44:4e:83:ec:4d:80:a9:
30:4e:1c:5c:7d:be:99:3d:08:32:0c:05:45:91:b9:28:e5:96:
46:ed:20:52
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCkAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDExMjQw
OTM4MThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAyRjhEODVFMzcwMjU1
MDRDOENDRUI2N0I4NjhBRTZDNTEzNkExMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCXRrchCfP3AFJu5fRP7GT/4fhHEflPX6y3cPSc7Unt13XxM6x
hcAvFD/0wN2pfdMiUZlnFix00NgkZKSwXGC350vO+5eP626K4Fka0GtWLmMHGdek
aj2SnYOv96kAAUXA72LHqHN25phOA3EJJSLryqdCMbtCnKWY4f0bRwsiFgcTsp68
kuogr+ZsGQo0X4urTptGsuGRVYo2Jmy5u/PTmbtxhhEMWqHODPgt5hYhrW6RwR5w
UstvcY1l6czO/LSTvbgGDQAGzoXcETS5ST8M/UZK1gaO69hEKWEo5zOuUo9T/ZtS
gyghEIf50128pJJYPA1ourbsLuJgC16p7SqJAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUAvjYXjcCVQTIzOtnuGiubFE2oQwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQXZqWVhqY0NWUVRJek90bnVHaXVi
RkUyb1F3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJCMA0G
CSqGSIb3DQEBCwUAA4IBAQABRKiqov2/yGVxomWf42SBw5WclIrtQ1QFtdm8YRuZ
qCWrifq5L6Syx3BXg6TTlBHsdtggIcdo97k1MPfO+K/Ro8i8fMsUEfd+NGGkFVrY
IC+UeoCO7HlGHPEHjKe7JM6IKrJxBTl4GZhjALuJlxhdrEZQupn/7w6SKNkmxrqt
3D5o20Xg7MRISvQB1pQ9nsEP+YgOvfjmSmFhY/Dbs6XVoAloPg1w2yubMQKMF9u5
DBemmh+JWy/qyMjaQQbSe60aisc51fF2oGViB+ZhR/ITb/H0AmUu08DwGMNaXXNX
f4S750ROg+xNgKkwThxcfb6ZPQgyDAVFkbko5ZZG7SBS
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org