Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ctoj86y2DEKTtnMTEsvAB0242CY.roa
File: Ctoj86y2DEKTtnMTEsvAB0242CY.roa (raw, json)
Hash identifier: kwfYnF0R+Z6iBiElM5rGRtQ5fxYtObCsjGxYoJ550Q4=
Subject key identifier: 0A:DA:23:F3:AC:B6:0C:42:93:B6:73:13:12:CB:C0:07:4D:B8:D8:26
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E12
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ctoj86y2DEKTtnMTEsvAB0242CY.roa
Signing time: Wed 29 Sep 2021 02:43:10 +0000
ROA not before: Wed 29 Sep 2021 02:43:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 113.196.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3602 (0xe12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0ADA23F3ACB60C4293B6731312CBC0074DB8D826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a1:27:4b:50:03:81:96:8a:92:d8:bd:26:8b:
d4:a1:70:79:66:25:9e:cd:3c:b5:a0:6a:0f:c7:fc:
b6:2c:da:17:5c:32:87:b4:20:2d:f4:74:11:17:f4:
d0:d1:a8:7c:e2:1a:76:e5:d6:a8:7b:16:fb:61:3e:
4f:a2:e2:47:b3:8f:ee:d5:47:b6:3b:fd:b8:92:e3:
19:0d:7e:09:de:e6:c5:ba:10:33:19:9b:27:ed:56:
ef:87:41:5b:7c:3f:b8:65:1e:0a:bf:e4:b6:49:95:
d1:b9:1d:ef:01:9e:6c:6d:30:1d:95:42:d9:f8:9d:
a3:93:4c:f2:f5:24:1d:79:38:12:83:74:c5:34:c9:
7c:a6:39:8e:ea:ba:a0:ae:ec:05:00:d5:61:d0:32:
be:c1:59:0e:8c:3d:82:e6:29:7b:cc:7d:67:36:c4:
cf:9f:b5:86:2f:dc:b1:e0:af:9b:13:61:4c:0b:44:
ca:05:c5:65:b7:8e:45:79:59:39:0d:7f:6f:b1:c6:
f5:d9:d7:85:69:11:c6:9f:c1:f9:48:a4:0e:ef:ed:
b2:bd:0d:77:94:cf:43:15:e4:ca:8c:7e:5b:f2:90:
8c:d4:a0:3f:48:62:6c:fd:27:6a:32:2a:af:21:2a:
c4:1a:aa:cd:92:25:1f:f9:e7:79:a0:7b:ed:a5:0a:
ff:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DA:23:F3:AC:B6:0C:42:93:B6:73:13:12:CB:C0:07:4D:B8:D8:26
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ctoj86y2DEKTtnMTEsvAB0242CY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
22:ab:5a:15:a3:22:58:71:ff:19:86:fa:fe:67:04:21:a3:b8:
99:af:d1:1e:91:83:a8:52:3d:d6:aa:c8:b9:c2:66:72:3c:32:
c5:7f:d2:40:3d:80:17:62:8f:2b:7c:4b:0b:eb:4a:cc:f8:e3:
29:fd:1a:74:7f:61:48:8d:00:3e:02:59:1a:b3:e4:94:a3:00:
c5:f3:ee:d7:da:25:8c:b7:f1:fd:9a:51:2c:29:3c:ed:04:04:
5d:c2:72:50:71:a2:55:3c:6d:f3:b5:02:fc:de:62:5b:f7:57:
8b:a4:ac:ad:b1:10:36:e1:c2:42:fe:74:29:bf:2b:33:2a:a1:
0d:8c:5a:a7:9b:f4:14:24:65:17:79:52:c7:17:81:33:58:14:
8d:25:b8:1e:04:98:9b:ce:2f:b2:d8:da:64:65:03:c7:57:5a:
62:05:1a:38:de:dd:7a:b4:84:84:9e:62:c0:a8:00:d9:12:b4:
b6:08:e1:81:81:33:e0:64:24:c0:80:0a:00:9d:ec:49:24:c5:
63:34:76:b4:8e:38:77:dd:f5:74:72:8c:55:dd:63:e2:3f:52:
24:02:59:08:e1:d4:9f:42:43:fa:71:8f:1a:c8:2c:15:b9:16:
3b:7c:61:7e:0b:64:a1:03:de:87:42:91:7d:d1:52:4b:e0:47:
88:e4:21:63
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMTBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDBBREEyM0YzQUNCNjBD
NDI5M0I2NzMxMzEyQ0JDMDA3NERCOEQ4MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXoSdLUAOBloqS2L0mi9ShcHlmJZ7NPLWgag/H/LYs2hdcMoe0
IC30dBEX9NDRqHziGnbl1qh7FvthPk+i4kezj+7VR7Y7/biS4xkNfgne5sW6EDMZ
myftVu+HQVt8P7hlHgq/5LZJldG5He8BnmxtMB2VQtn4naOTTPL1JB15OBKDdMU0
yXymOY7quqCu7AUA1WHQMr7BWQ6MPYLmKXvMfWc2xM+ftYYv3LHgr5sTYUwLRMoF
xWW3jkV5WTkNf2+xxvXZ14VpEcafwflIpA7v7bK9DXeUz0MV5MqMflvykIzUoD9I
Ymz9J2oyKq8hKsQaqs2SJR/553mge+2lCv9bAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUCtoj86y2DEKTtnMTEsvAB0242CYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQ3Rvajg2eTJERUtUdG5NVEVzdkFC
MDI0MkNZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAHHEMA0G
CSqGSIb3DQEBCwUAA4IBAQAiq1oVoyJYcf8Zhvr+ZwQho7iZr9EekYOoUj3Wqsi5
wmZyPDLFf9JAPYAXYo8rfEsL60rM+OMp/Rp0f2FIjQA+Alkas+SUowDF8+7X2iWM
t/H9mlEsKTztBARdwnJQcaJVPG3ztQL83mJb91eLpKytsRA24cJC/nQpvyszKqEN
jFqnm/QUJGUXeVLHF4EzWBSNJbgeBJibzi+y2NpkZQPHV1piBRo43t16tISEnmLA
qADZErS2COGBgTPgZCTAgAoAnexJJMVjNHa0jjh33fV0coxV3WPiP1IkAlkI4dSf
QkP6cY8ayCwVuRY7fGF+C2ShA96HQpF90VJL4EeI5CFj
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org