Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DQxD5EawP8Lv25Yo9dKbyF0RFd8.roa
File: DQxD5EawP8Lv25Yo9dKbyF0RFd8.roa (raw, json)
Hash identifier: Zd2wECRVMLqz4RMh+4vL0OBc24IBpO0CV6f51H1YhgA=
Subject key identifier: 0D:0C:43:E4:46:B0:3F:C2:EF:DB:96:28:F5:D2:9B:C8:5D:11:15:DF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E96
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DQxD5EawP8Lv25Yo9dKbyF0RFd8.roa
Signing time: Wed 29 Sep 2021 02:43:46 +0000
ROA not before: Wed 29 Sep 2021 02:43:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 113.196.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3734 (0xe96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0D0C43E446B03FC2EFDB9628F5D29BC85D1115DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:55:1f:66:6f:b5:e6:ae:c9:c4:d4:eb:b7:68:
9b:5c:e2:85:ad:7c:76:51:53:b2:d4:57:16:c9:e3:
13:85:10:25:e2:45:e3:6e:3f:e2:80:ab:64:8c:20:
03:c6:7d:5e:0c:f0:1d:79:5b:00:93:a1:f5:ea:3c:
85:04:42:3b:42:ef:f8:f2:c5:d4:d2:36:a1:7f:fc:
10:be:3e:30:7a:fc:ed:64:c6:cb:02:78:ed:64:c6:
db:61:28:c8:55:b4:e5:e2:85:25:90:8a:ed:fc:f0:
52:77:8c:c0:3f:ef:06:39:93:10:cb:be:fd:76:8b:
9b:2c:d6:39:a1:c1:eb:4c:78:ba:b4:91:c2:41:91:
1b:37:56:29:f6:76:ba:c9:a1:aa:9c:23:8f:c4:5c:
07:58:24:81:4c:a5:e3:6e:be:93:48:59:76:9f:e4:
15:83:20:8a:b3:0d:54:a5:b3:8c:51:99:33:c4:29:
c8:ad:18:66:cb:84:c8:e7:28:c6:55:1d:3d:c5:1f:
2a:69:e0:95:b3:ed:e2:9d:47:13:b9:05:d7:29:d5:
a6:69:80:c0:1f:f8:8e:fe:f3:85:d4:a0:bc:02:b4:
b1:59:18:23:e5:78:11:0c:a6:8e:a6:6c:dd:73:1f:
43:48:80:36:dc:d3:7c:49:43:6f:39:fa:e4:9e:22:
69:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0C:43:E4:46:B0:3F:C2:EF:DB:96:28:F5:D2:9B:C8:5D:11:15:DF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DQxD5EawP8Lv25Yo9dKbyF0RFd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.192.0/18
Signature Algorithm: sha256WithRSAEncryption
36:3d:05:85:09:b0:82:e9:f7:f8:39:b3:be:58:ff:e6:ff:75:
34:85:51:e0:02:b7:36:3c:50:75:4e:24:dc:0f:32:1f:c0:67:
f2:24:75:6a:52:9e:c1:1b:74:df:0a:36:52:4c:04:0d:cf:c9:
00:f3:4d:bc:9a:f8:2e:71:6a:b2:73:47:5e:52:78:ff:52:9e:
0d:1e:bc:6d:6d:7a:8f:f5:99:b2:bb:5d:96:e2:6a:c3:be:23:
67:92:eb:17:af:0c:fd:7a:93:05:7e:59:04:a2:42:6e:f5:4f:
a8:ad:be:ee:6b:60:2b:9b:8b:90:f4:38:ce:fd:f3:8d:40:73:
ff:c8:b9:40:aa:86:be:a6:8f:13:58:da:3e:fa:34:13:75:f4:
5d:17:1e:41:5f:ea:64:6a:ca:91:7d:a7:c0:ed:75:b2:5a:e5:
fc:08:2c:e4:f0:34:fe:09:d8:18:af:82:9c:a5:7f:46:0e:28:
f2:c2:91:97:9f:f4:ab:31:ab:96:e4:23:54:14:fb:25:43:5f:
90:04:bf:3e:1f:cf:2d:20:54:78:8b:e4:80:e0:cc:7e:f9:b8:
64:7c:33:c6:42:8a:58:05:6f:98:4d:9d:66:5b:65:a7:2b:54:
f6:fe:8d:0d:75:52:66:46:95:c0:30:bc:eb:bd:be:6f:08:23:
63:cf:a1:75
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDpYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNDZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDBEMEM0M0U0NDZCMDNG
QzJFRkRCOTYyOEY1RDI5QkM4NUQxMTE1REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNVR9mb7XmrsnE1Ou3aJtc4oWtfHZRU7LUVxbJ4xOFECXiReNu
P+KAq2SMIAPGfV4M8B15WwCTofXqPIUEQjtC7/jyxdTSNqF//BC+PjB6/O1kxssC
eO1kxtthKMhVtOXihSWQiu388FJ3jMA/7wY5kxDLvv12i5ss1jmhwetMeLq0kcJB
kRs3Vin2drrJoaqcI4/EXAdYJIFMpeNuvpNIWXaf5BWDIIqzDVSls4xRmTPEKcit
GGbLhMjnKMZVHT3FHypp4JWz7eKdRxO5Bdcp1aZpgMAf+I7+84XUoLwCtLFZGCPl
eBEMpo6mbN1zH0NIgDbc03xJQ285+uSeImkHAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUDQxD5EawP8Lv25Yo9dKbyF0RFd8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRFF4RDVFYXdQOEx2MjVZbzlkS2J5
RjBSRmQ4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnHEwDAN
BgkqhkiG9w0BAQsFAAOCAQEANj0FhQmwgun3+Dmzvlj/5v91NIVR4AK3NjxQdU4k
3A8yH8Bn8iR1alKewRt03wo2UkwEDc/JAPNNvJr4LnFqsnNHXlJ4/1KeDR68bW16
j/WZsrtdluJqw74jZ5LrF68M/XqTBX5ZBKJCbvVPqK2+7mtgK5uLkPQ4zv3zjUBz
/8i5QKqGvqaPE1jaPvo0E3X0XRceQV/qZGrKkX2nwO11slrl/Ags5PA0/gnYGK+C
nKV/Rg4o8sKRl5/0qzGrluQjVBT7JUNfkAS/Ph/PLSBUeIvkgODMfvm4ZHwzxkKK
WAVvmE2dZltlpytU9v6NDXVSZkaVwDC8672+bwgjY8+hdQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org