Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/G1SpaDtD0DCymiPMzr9zMVsphaM.roa
File: G1SpaDtD0DCymiPMzr9zMVsphaM.roa (raw, json)
Hash identifier: GYTJwNYvBm/nq2IDpK0iEHq4DWQVDw40bdWa36FMF7U=
Subject key identifier: 1B:54:A9:68:3B:43:D0:30:B2:9A:23:CC:CE:BF:73:31:5B:29:85:A3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C33
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/G1SpaDtD0DCymiPMzr9zMVsphaM.roa
Signing time: Sun 07 Feb 2021 07:09:27 +0000
ROA not before: Sun 07 Feb 2021 07:09:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 113.196.144.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3123 (0xc33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:09:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B54A9683B43D030B29A23CCCEBF73315B2985A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:11:80:a5:37:0a:ad:92:f3:3a:af:e3:54:22:
67:f0:4c:f4:d8:5a:23:9e:d1:c5:74:14:5a:aa:62:
ac:f9:ff:12:c6:27:aa:65:ea:e1:ca:6f:fd:3f:e7:
04:74:f3:65:0d:5f:9a:67:ea:ef:f6:21:16:22:a9:
c1:ae:3e:13:8a:91:6c:d9:9d:7c:f6:be:0a:e6:aa:
35:8e:99:fd:10:71:b5:e1:46:5b:37:a5:f0:cc:fb:
17:7f:b8:4d:95:27:d7:d6:e1:30:d9:15:2f:77:cf:
ed:78:b5:cb:51:9f:b6:52:02:28:9b:4d:09:f5:b6:
10:e4:60:e3:cb:f0:85:54:45:21:af:89:45:ee:b1:
e8:ef:88:a4:96:1c:9c:ce:01:36:04:f5:15:1b:01:
70:b1:9c:51:1f:c6:12:97:37:c4:3a:d3:fb:88:b6:
23:19:22:11:44:64:97:2f:f2:0f:f5:55:b2:67:a1:
9c:a5:34:af:db:f1:fb:b0:1a:7b:fc:b4:ea:e8:e4:
66:d1:10:3a:fe:ab:37:9b:81:01:a9:bb:6e:c4:e2:
74:b2:ca:3c:0f:ee:e6:9e:16:f3:ca:ac:85:2e:59:
94:83:41:86:22:b0:10:ca:21:88:0a:d3:a2:64:2b:
5d:46:93:91:fc:30:47:17:07:43:17:3a:6d:0d:c4:
79:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:54:A9:68:3B:43:D0:30:B2:9A:23:CC:CE:BF:73:31:5B:29:85:A3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/G1SpaDtD0DCymiPMzr9zMVsphaM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.144.0/21
Signature Algorithm: sha256WithRSAEncryption
39:d8:7a:11:62:ea:39:3d:9e:38:54:2b:35:26:7b:0b:86:4a:
3d:9c:1e:a1:d5:e8:97:a4:4c:ca:7e:b2:6a:32:9e:a2:69:b2:
62:51:a1:ea:54:56:5c:35:e9:f8:5d:74:11:37:aa:56:cf:53:
81:9c:69:fd:84:1b:65:23:7a:d7:45:ae:eb:ce:fd:02:b6:0b:
38:a7:6d:b9:4f:17:cb:86:ea:05:98:e4:6c:b2:35:91:ca:14:
3d:66:95:e6:82:48:89:ce:51:28:e9:04:8c:92:d4:26:fe:30:
ba:07:48:42:3d:0e:6d:43:5e:9c:fe:4e:04:22:6c:29:86:fd:
75:99:0f:a8:e0:ae:43:d4:c3:79:56:93:7f:17:2f:44:f9:b6:
55:db:c4:1f:89:dd:73:d2:03:d2:fd:98:f6:77:22:b7:89:45:
3e:5c:e0:b4:7c:05:c6:b7:23:41:54:f7:21:ee:79:c2:ff:ad:
43:b3:b3:95:16:02:04:97:d6:11:76:2a:6e:2b:d1:e8:b6:a3:
d4:49:11:20:37:83:e7:8b:73:c8:d7:87:10:ef:93:12:28:03:
ea:3d:26:53:60:46:6a:b4:89:c6:d3:e1:b3:aa:9d:30:69:b0:
02:44:0e:b6:d2:5c:2f:1f:0c:23:74:65:1a:94:f4:cb:e9:e9:
2a:fd:86:ad
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NzA5MjdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFCNTRBOTY4M0I0M0Qw
MzBCMjlBMjNDQ0NFQkY3MzMxNUIyOTg1QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQEYClNwqtkvM6r+NUImfwTPTYWiOe0cV0FFqqYqz5/xLGJ6pl
6uHKb/0/5wR082UNX5pn6u/2IRYiqcGuPhOKkWzZnXz2vgrmqjWOmf0QcbXhRls3
pfDM+xd/uE2VJ9fW4TDZFS93z+14tctRn7ZSAiibTQn1thDkYOPL8IVURSGviUXu
sejviKSWHJzOATYE9RUbAXCxnFEfxhKXN8Q60/uItiMZIhFEZJcv8g/1VbJnoZyl
NK/b8fuwGnv8tOro5GbREDr+qzebgQGpu27E4nSyyjwP7uaeFvPKrIUuWZSDQYYi
sBDKIYgK06JkK11Gk5H8MEcXB0MXOm0NxHnRAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUG1SpaDtD0DCymiPMzr9zMVsphaMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRzFTcGFEdEQwREN5bWlQTXpyOXpN
VnNwaGFNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEkDAN
BgkqhkiG9w0BAQsFAAOCAQEAOdh6EWLqOT2eOFQrNSZ7C4ZKPZweodXol6RMyn6y
ajKeommyYlGh6lRWXDXp+F10ETeqVs9TgZxp/YQbZSN610Wu6879ArYLOKdtuU8X
y4bqBZjkbLI1kcoUPWaV5oJIic5RKOkEjJLUJv4wugdIQj0ObUNenP5OBCJsKYb9
dZkPqOCuQ9TDeVaTfxcvRPm2VdvEH4ndc9ID0v2Y9ncit4lFPlzgtHwFxrcjQVT3
Ie55wv+tQ7OzlRYCBJfWEXYqbivR6Laj1EkRIDeD54tzyNeHEO+TEigD6j0mU2BG
arSJxtPhs6qdMGmwAkQOttJcLx8MI3RlGpT0y+npKv2GrQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org