Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/N3mEmPa-0m8XBFPFh5JLwiyCHGw.roa
File: N3mEmPa-0m8XBFPFh5JLwiyCHGw.roa (raw, json)
Hash identifier: 9Rr68wM9hFGlJ6Rr2UXZOkC9twMu0N22k1rmTQPJInk=
Subject key identifier: 37:79:84:98:F6:BE:D2:6F:17:04:53:C5:87:92:4B:C2:2C:82:1C:6C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B9A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/N3mEmPa-0m8XBFPFh5JLwiyCHGw.roa
Signing time: Sun 07 Feb 2021 06:26:36 +0000
ROA not before: Sun 07 Feb 2021 06:26:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 42.0.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2970 (0xb9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:26:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=37798498F6BED26F170453C587924BC22C821C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d4:24:84:6f:27:47:ab:15:8f:b2:e4:1a:b7:
76:ca:8f:f2:ed:4f:b6:76:29:32:0b:d6:8e:c6:57:
09:55:9d:c6:69:fb:c8:58:2e:e8:de:c4:7e:43:ac:
a0:9a:aa:58:41:63:8f:53:67:33:e1:46:8d:8a:a2:
2a:c3:c6:06:d4:16:5b:37:05:a8:9c:74:c3:40:3c:
1a:f5:c1:52:12:0e:30:78:90:34:9a:dd:82:ae:27:
bb:d3:24:13:a0:10:d8:4f:4f:e0:b1:c3:eb:de:74:
20:ba:02:de:a7:96:74:c1:27:3c:36:eb:76:9c:59:
9d:56:52:df:de:e5:53:e5:86:27:a7:a9:13:2a:16:
4a:69:8c:14:3f:a4:82:4a:36:d6:73:17:8f:e8:93:
77:b5:31:46:78:ab:ef:c1:35:19:29:93:83:48:48:
72:65:67:65:20:ba:ea:ab:0f:cf:7c:48:4d:3c:a4:
35:ab:65:6b:eb:1e:71:93:3b:d5:f7:ca:15:05:c5:
74:78:de:ae:d8:f8:22:94:d8:6b:26:4e:2e:d8:84:
d6:2e:64:e4:8e:11:6c:80:a6:c1:ec:9a:5a:ba:1a:
d4:c4:97:d7:b9:2f:da:52:80:28:7c:56:08:25:c2:
22:ff:5a:3c:de:32:42:4b:83:11:7e:99:10:5c:33:
68:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:79:84:98:F6:BE:D2:6F:17:04:53:C5:87:92:4B:C2:2C:82:1C:6C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/N3mEmPa-0m8XBFPFh5JLwiyCHGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
87:c5:07:8e:cd:86:5e:bb:b5:f1:75:11:16:42:ff:60:28:4f:
0c:a1:2b:c9:91:8b:36:48:3d:83:11:3e:d4:ee:c9:77:35:9c:
49:f6:fb:cb:12:ce:cb:f0:77:29:46:f1:56:33:93:e1:20:09:
7c:d3:da:c3:d2:49:b4:ee:fe:30:bc:9c:c2:5a:35:46:69:e6:
1a:89:30:23:74:f5:d9:51:5b:f6:12:ea:94:30:fe:3f:d1:4f:
69:55:97:6f:1b:b4:e1:91:b2:02:53:ae:38:13:c7:66:5a:cf:
43:0c:04:6a:d1:ae:e4:cf:94:1f:fb:19:3e:1e:0b:4b:83:75:
c8:c3:00:33:b7:d1:aa:2d:8f:4a:ac:a4:28:6c:1c:47:bf:88:
4d:de:7f:ff:29:33:cf:e9:19:1f:51:22:65:ad:e4:61:9a:ca:
e2:33:c6:4a:83:3f:c9:7f:97:e5:4b:6a:2e:86:58:68:72:c4:
c5:10:8c:c9:4f:fa:f8:80:f0:e9:e2:78:de:22:d7:6c:b0:6e:
89:45:72:c6:1a:f6:5d:50:58:4f:59:93:7a:0c:c8:18:36:4a:
b5:83:45:b4:d5:d3:b1:99:d9:ff:a9:36:0d:b0:d1:71:23:8a:
85:31:36:59:d1:ad:bb:00:0e:0f:9d:79:ab:24:dc:6c:53:55:
68:f2:16:e2
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC5owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjI2MzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM3Nzk4NDk4RjZCRUQy
NkYxNzA0NTNDNTg3OTI0QkMyMkM4MjFDNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+1CSEbydHqxWPsuQat3bKj/LtT7Z2KTIL1o7GVwlVncZp+8hY
LujexH5DrKCaqlhBY49TZzPhRo2KoirDxgbUFls3BaicdMNAPBr1wVISDjB4kDSa
3YKuJ7vTJBOgENhPT+Cxw+vedCC6At6nlnTBJzw263acWZ1WUt/e5VPlhienqRMq
FkppjBQ/pIJKNtZzF4/ok3e1MUZ4q+/BNRkpk4NISHJlZ2UguuqrD898SE08pDWr
ZWvrHnGTO9X3yhUFxXR43q7Y+CKU2GsmTi7YhNYuZOSOEWyApsHsmlq6GtTEl9e5
L9pSgCh8VgglwiL/WjzeMkJLgxF+mRBcM2ilAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUN3mEmPa+0m8XBFPFh5JLwiyCHGwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTjNtRW1QYS0wbThYQkZQRmg1Skx3
aXlDSEd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBioAQDAN
BgkqhkiG9w0BAQsFAAOCAQEAh8UHjs2GXru18XURFkL/YChPDKEryZGLNkg9gxE+
1O7JdzWcSfb7yxLOy/B3KUbxVjOT4SAJfNPaw9JJtO7+MLycwlo1RmnmGokwI3T1
2VFb9hLqlDD+P9FPaVWXbxu04ZGyAlOuOBPHZlrPQwwEatGu5M+UH/sZPh4LS4N1
yMMAM7fRqi2PSqykKGwcR7+ITd5//ykzz+kZH1EiZa3kYZrK4jPGSoM/yX+X5Utq
LoZYaHLExRCMyU/6+IDw6eJ43iLXbLBuiUVyxhr2XVBYT1mTegzIGDZKtYNFtNXT
sZnZ/6k2DbDRcSOKhTE2WdGtuwAOD515qyTcbFNVaPIW4g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org