Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/HaxwN9bV5af45O2EH1cUSJQg7q0.roa
File: HaxwN9bV5af45O2EH1cUSJQg7q0.roa (raw, json)
Hash identifier: FUqlqGUT5kAyIkRIpdJjM+7BSl9fpZY7MNsQ6LbTDKg=
Subject key identifier: 1D:AC:70:37:D6:D5:E5:A7:F8:E4:ED:84:1F:57:14:48:94:20:EE:AD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DF3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HaxwN9bV5af45O2EH1cUSJQg7q0.roa
Signing time: Wed 29 Sep 2021 02:43:01 +0000
ROA not before: Wed 29 Sep 2021 02:43:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 210.64.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3571 (0xdf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1DAC7037D6D5E5A7F8E4ED841F5714489420EEAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:31:77:28:29:37:c7:08:05:19:0e:3d:3c:2c:
3f:cb:d0:f4:5c:84:cf:dd:17:8c:85:51:4c:16:d6:
fb:ae:b4:5f:30:1b:f1:c1:86:a4:e9:37:ae:cf:8b:
8c:37:2d:55:2d:5b:8f:a9:88:bc:86:4a:53:c0:6f:
40:b9:fa:c2:a3:a6:75:80:6c:34:11:60:dd:35:65:
d7:c4:90:24:ac:f8:be:d5:70:96:03:4e:12:88:2f:
cd:ba:e6:c1:ed:32:c0:2f:5d:d5:4b:55:4d:4e:e5:
a7:81:8c:05:b4:2d:7e:bd:41:03:d5:85:ee:49:b7:
33:c7:33:d9:7c:1f:75:1f:5d:75:85:74:13:26:0b:
56:28:13:15:df:7b:a6:c5:85:ff:f1:87:b8:bc:26:
8f:51:5c:7e:f9:ee:67:84:b4:a8:3d:4c:4d:8d:4f:
ea:2b:7b:8d:20:fb:35:be:da:6c:54:1f:0e:a6:cb:
59:78:d4:14:01:0f:99:24:77:a7:cc:26:f2:34:c1:
00:23:c9:22:67:d7:57:72:14:35:d5:0b:ed:4b:22:
ba:de:ef:80:44:df:1d:ba:eb:99:6a:f8:c9:e4:8e:
04:6b:45:b1:ea:a8:1c:bd:23:12:54:5a:00:4a:41:
5a:ac:ec:e8:d4:8a:33:ae:77:f4:a8:0b:cc:bb:ec:
e5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AC:70:37:D6:D5:E5:A7:F8:E4:ED:84:1F:57:14:48:94:20:EE:AD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HaxwN9bV5af45O2EH1cUSJQg7q0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bd:93:3c:5c:cd:6f:70:dc:10:02:21:2b:62:1d:01:93:28:7e:
f8:c7:af:15:90:b2:5c:1c:8c:ef:8e:ca:74:08:ab:c8:b5:cf:
40:4d:26:f8:e3:5e:5c:1d:bc:9c:f7:99:37:82:d9:d7:6a:16:
e1:62:21:64:af:aa:2b:23:8a:39:82:c7:0f:40:40:46:7c:e1:
08:13:de:cf:4d:c5:a3:d1:c7:25:d2:ca:c4:ca:c6:3e:f4:a5:
a4:09:a5:27:93:ed:4a:05:56:e0:1f:7c:12:02:8b:46:9b:de:
7d:cd:7b:7a:56:f1:c6:78:c0:3c:f8:84:49:33:05:35:f9:5b:
3b:1d:c9:98:ee:18:48:c9:4b:2d:ff:9d:ea:ec:3e:e9:7c:2d:
3a:dd:aa:cd:88:ed:18:8c:23:3a:7f:0e:17:a1:e4:43:9a:6c:
c0:e3:cb:24:4b:c6:fb:d3:97:1e:f1:ea:82:98:1d:ad:6e:ac:
ea:54:da:2a:38:70:c4:90:77:5e:12:19:10:50:56:d7:7b:b1:
02:70:a5:83:be:ab:b4:63:47:95:35:a7:68:d5:c0:3a:d3:2b:
84:83:84:16:fb:af:fd:91:64:a2:59:73:ed:3a:4d:54:d1:83:
91:e8:88:c5:b6:b1:b8:0a:f0:b7:a6:c4:7f:fe:68:02:d2:b2:
42:3c:ed:d0
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDFEQUM3MDM3RDZENUU1
QTdGOEU0RUQ4NDFGNTcxNDQ4OTQyMEVFQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZMXcoKTfHCAUZDj08LD/L0PRchM/dF4yFUUwW1vuutF8wG/HB
hqTpN67Pi4w3LVUtW4+piLyGSlPAb0C5+sKjpnWAbDQRYN01ZdfEkCSs+L7VcJYD
ThKIL8265sHtMsAvXdVLVU1O5aeBjAW0LX69QQPVhe5JtzPHM9l8H3UfXXWFdBMm
C1YoExXfe6bFhf/xh7i8Jo9RXH757meEtKg9TE2NT+ore40g+zW+2mxUHw6my1l4
1BQBD5kkd6fMJvI0wQAjySJn11dyFDXVC+1LIrre74BE3x2665lq+MnkjgRrRbHq
qBy9IxJUWgBKQVqs7OjUijOud/SoC8y77OW1AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUHaxwN9bV5af45O2EH1cUSJQg7q0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSGF4d045YlY1YWY0NU8yRUgxY1VT
SlFnN3EwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJAMA0G
CSqGSIb3DQEBCwUAA4IBAQC9kzxczW9w3BACIStiHQGTKH74x68VkLJcHIzvjsp0
CKvItc9ATSb4415cHbyc95k3gtnXahbhYiFkr6orI4o5gscPQEBGfOEIE97PTcWj
0ccl0srEysY+9KWkCaUnk+1KBVbgH3wSAotGm959zXt6VvHGeMA8+IRJMwU1+Vs7
HcmY7hhIyUst/53q7D7pfC063arNiO0YjCM6fw4XoeRDmmzA48skS8b705ce8eqC
mB2tbqzqVNoqOHDEkHdeEhkQUFbXe7ECcKWDvqu0Y0eVNado1cA60yuEg4QW+6/9
kWSiWXPtOk1U0YOR6IjFtrG4CvC3psR//mgC0rJCPO3Q
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org