Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DX80dPnvUAxyzrE1m7QG05_J_qk.roa
File: DX80dPnvUAxyzrE1m7QG05_J_qk.roa (raw, json)
Hash identifier: Mh1lUVR0xn6Zkzq6iEr8DTbDgEpb//42JOfjjdEJoDg=
Subject key identifier: 0D:7F:34:74:F9:EF:50:0C:72:CE:B1:35:9B:B4:06:D3:9F:C9:FE:A9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E05
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DX80dPnvUAxyzrE1m7QG05_J_qk.roa
Signing time: Wed 29 Sep 2021 02:43:07 +0000
ROA not before: Wed 29 Sep 2021 02:43:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 221.169.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3589 (0xe05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0D7F3474F9EF500C72CEB1359BB406D39FC9FEA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:73:26:1a:c1:83:5f:b3:98:9e:e9:3f:a7:30:
f8:eb:a9:7d:ec:a7:7f:c6:db:d2:92:56:32:ac:c0:
3f:34:6b:9b:48:4b:83:3f:95:90:21:30:f3:f4:82:
c0:81:14:e0:ab:3b:32:b4:31:2f:9c:8c:8f:22:6d:
a8:50:9d:f0:3d:b7:b1:43:66:1e:09:c6:17:60:6e:
05:66:7b:e2:d8:0a:97:c0:ea:67:c6:92:24:99:b2:
e0:a3:1f:bc:b2:a1:75:db:33:f2:b9:41:a1:c4:b9:
ad:aa:d9:04:3d:13:c1:01:e6:a5:b8:18:db:04:11:
36:b4:f8:53:24:00:1d:61:05:bd:c1:a7:c4:f1:a3:
ad:01:43:3b:82:e8:b7:24:f2:30:fa:a6:d1:9c:65:
61:a2:e9:ad:2f:c3:63:6d:39:12:18:2f:51:89:25:
63:6f:17:6c:0d:5d:5c:21:0f:14:7e:29:40:fe:50:
4f:9a:38:4d:5e:2f:85:7f:bb:22:4e:58:1f:83:94:
1d:03:1d:65:ba:db:f2:c7:28:50:aa:98:38:ee:b9:
a3:56:8f:41:5c:b8:d9:51:e2:54:de:a9:72:de:12:
d6:61:16:a2:03:93:39:3d:49:d8:c7:62:6b:0e:11:
82:56:f0:21:e3:e9:fc:20:8c:c2:98:6e:0b:06:a2:
63:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:7F:34:74:F9:EF:50:0C:72:CE:B1:35:9B:B4:06:D3:9F:C9:FE:A9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DX80dPnvUAxyzrE1m7QG05_J_qk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:59:fa:4e:dc:88:66:3a:6b:7a:36:e1:9f:d2:4f:80:b4:14:
fa:2f:ee:d5:6d:ea:11:c5:b1:c6:96:24:95:ea:fc:07:c2:28:
75:08:15:5c:68:bc:8b:51:00:b9:48:a9:17:1f:d4:70:f4:63:
fa:c8:e6:31:ea:33:3f:7e:69:77:fc:03:e5:6c:ec:5b:46:01:
98:e3:2f:7c:f6:89:2c:a6:73:e7:93:37:94:a8:07:91:50:4f:
f2:fc:4f:20:9b:63:14:83:7a:7f:cd:b1:e7:54:7b:16:91:29:
69:2c:40:68:63:78:aa:65:3d:b0:44:22:4f:de:32:00:1d:88:
d8:2d:3c:56:f2:d6:0d:6f:66:f3:39:18:66:7b:4f:14:8d:8d:
69:7a:ec:c3:86:29:ce:53:5c:d6:43:97:e5:22:88:29:11:5e:
66:0a:25:a9:a2:b2:57:05:78:4e:b9:fd:74:32:98:9e:35:a5:
83:ff:b7:ca:b8:44:4b:15:9d:c7:21:5f:f5:67:9b:b9:0f:38:
12:c8:c3:64:29:8a:12:42:89:0d:1d:2b:15:2e:c2:7d:ed:d0:
00:3e:7b:5a:5a:d8:b1:06:c1:04:13:84:54:4b:b1:d9:53:33:
4b:f5:eb:a4:3f:62:da:9e:e4:31:6f:12:4a:15:bd:2a:21:4a:
88:bd:34:37
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDgUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDBEN0YzNDc0RjlFRjUw
MEM3MkNFQjEzNTlCQjQwNkQzOUZDOUZFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDpcyYawYNfs5ie6T+nMPjrqX3sp3/G29KSVjKswD80a5tIS4M/
lZAhMPP0gsCBFOCrOzK0MS+cjI8ibahQnfA9t7FDZh4JxhdgbgVme+LYCpfA6mfG
kiSZsuCjH7yyoXXbM/K5QaHEua2q2QQ9E8EB5qW4GNsEETa0+FMkAB1hBb3Bp8Tx
o60BQzuC6Lck8jD6ptGcZWGi6a0vw2NtORIYL1GJJWNvF2wNXVwhDxR+KUD+UE+a
OE1eL4V/uyJOWB+DlB0DHWW62/LHKFCqmDjuuaNWj0FcuNlR4lTeqXLeEtZhFqID
kzk9SdjHYmsOEYJW8CHj6fwgjMKYbgsGomN7AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUDX80dPnvUAxyzrE1m7QG05/J/qkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRFg4MGRQbnZVQXh5enJFMW03UUcw
NV9KX3FrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAN2pMA0G
CSqGSIb3DQEBCwUAA4IBAQCKWfpO3IhmOmt6NuGf0k+AtBT6L+7VbeoRxbHGliSV
6vwHwih1CBVcaLyLUQC5SKkXH9Rw9GP6yOYx6jM/fml3/APlbOxbRgGY4y989oks
pnPnkzeUqAeRUE/y/E8gm2MUg3p/zbHnVHsWkSlpLEBoY3iqZT2wRCJP3jIAHYjY
LTxW8tYNb2bzORhme08UjY1peuzDhinOU1zWQ5flIogpEV5mCiWporJXBXhOuf10
MpieNaWD/7fKuERLFZ3HIV/1Z5u5DzgSyMNkKYoSQokNHSsVLsJ97dAAPntaWtix
BsEEE4RUS7HZUzNL9eukP2LanuQxbxJKFb0qIUqIvTQ3
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org