Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NIQDhOkyGiD9nmR52qOvxEd_Lx0.roa
File: NIQDhOkyGiD9nmR52qOvxEd_Lx0.roa (raw, json)
Hash identifier: SkunK5dHh4BtPXRHBfS/75LeZ6xOFDukNjbESSigNMU=
Subject key identifier: 34:84:03:84:E9:32:1A:20:FD:9E:64:79:DA:A3:AF:C4:47:7F:2F:1D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0860
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NIQDhOkyGiD9nmR52qOvxEd_Lx0.roa
Signing time: Tue 29 Sep 2020 09:51:57 +0000
ROA not before: Tue 29 Sep 2020 09:51:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2144 (0x860)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34840384E9321A20FD9E6479DAA3AFC4477F2F1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:8b:84:68:af:0e:07:fa:2e:eb:e6:26:1c:
f5:84:ab:1a:f2:95:c8:30:ef:29:c5:c0:23:bf:e3:
d9:83:7f:d4:c3:e4:e2:3a:ae:ce:80:c4:8a:10:ed:
2d:87:fc:33:a0:a4:fa:6a:3a:a2:f6:e8:4a:2e:77:
c5:71:16:fd:f9:9c:19:e9:0e:a3:42:fc:7f:d8:31:
83:a1:59:30:46:da:27:c5:4c:03:fc:5a:98:aa:df:
fd:a3:45:26:e5:d8:95:a1:39:5f:fc:ea:0d:e7:f7:
09:76:62:9d:97:4e:32:12:0e:e2:ee:8d:20:ac:d8:
3b:87:3e:8e:a7:2f:82:5c:f9:9c:18:49:7d:77:d9:
5c:2f:8d:0e:fc:17:fd:b9:9f:c1:66:79:23:e0:a5:
cd:c7:18:35:89:18:8a:f5:60:ee:2a:70:94:aa:5c:
34:66:21:df:3f:19:d2:85:15:18:91:4d:6b:7e:31:
78:0a:20:56:34:13:aa:43:05:40:c4:d3:bc:90:2e:
87:1c:9d:bd:be:9e:3a:7c:e3:49:fe:9b:24:a3:f9:
30:05:a5:91:71:41:f2:1c:1c:77:91:01:d7:de:a5:
32:78:ef:f8:77:58:d7:8e:57:8c:bb:44:c9:64:fe:
ed:56:bb:54:97:72:2f:cb:e6:0d:a6:e0:a1:a6:2a:
37:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:84:03:84:E9:32:1A:20:FD:9E:64:79:DA:A3:AF:C4:47:7F:2F:1D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NIQDhOkyGiD9nmR52qOvxEd_Lx0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b0:85:7e:3d:76:84:22:e4:6e:31:18:98:43:51:46:03:17:7e:
d0:c8:c4:01:6e:47:45:b0:38:7f:4e:93:f4:84:c2:8a:e4:9c:
e2:bb:e6:ed:1f:5d:c0:5f:f6:82:ad:d6:0f:e4:79:d3:6a:4a:
f0:f5:fa:f8:7c:6f:92:d7:48:43:8f:f7:e4:73:4b:28:bd:f4:
36:aa:b5:33:c7:04:8c:f8:95:bd:4a:c7:03:bf:c6:be:5e:78:
15:1b:4a:bb:e3:09:bc:0c:7e:1d:5c:ce:58:93:8b:48:ec:3d:
ce:65:55:98:c9:aa:33:3a:c6:51:88:12:11:bb:d2:93:14:96:
16:1e:a3:1f:84:31:d3:04:7a:8e:cc:c0:c2:cc:bd:69:a2:0e:
45:d8:cb:56:ce:2f:8a:7e:1d:fa:f3:4a:83:a2:e1:0f:9c:99:
3e:c9:dc:40:0c:ff:05:79:69:dd:a5:97:6c:3e:65:87:6b:6c:
45:bc:de:d2:fa:5f:ad:6f:c0:ad:d7:39:67:0b:45:7a:7f:86:
ad:88:76:c3:c1:64:9f:8a:fc:17:57:ab:54:5a:7a:26:b1:1a:
ea:e4:b3:c0:ba:7e:c8:40:f3:65:90:09:46:2a:fb:ea:c3:f5:
d8:94:fa:57:ce:df:ea:9c:24:08:ce:06:c7:96:a1:a6:a5:6e:
02:89:54:9d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCGAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUxNTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM0ODQwMzg0RTkzMjFB
MjBGRDlFNjQ3OURBQTNBRkM0NDc3RjJGMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmPouEaK8OB/ou6+YmHPWEqxrylcgw7ynFwCO/49mDf9TD5OI6
rs6AxIoQ7S2H/DOgpPpqOqL26Eoud8VxFv35nBnpDqNC/H/YMYOhWTBG2ifFTAP8
Wpiq3/2jRSbl2JWhOV/86g3n9wl2Yp2XTjISDuLujSCs2DuHPo6nL4Jc+ZwYSX13
2VwvjQ78F/25n8FmeSPgpc3HGDWJGIr1YO4qcJSqXDRmId8/GdKFFRiRTWt+MXgK
IFY0E6pDBUDE07yQLoccnb2+njp840n+mySj+TAFpZFxQfIcHHeRAdfepTJ47/h3
WNeOV4y7RMlk/u1Wu1SXci/L5g2m4KGmKje5AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUNIQDhOkyGiD9nmR52qOvxEd/Lx0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTklRRGhPa3lHaUQ5bm1SNTJxT3Z4
RWRfTHgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LzgDAN
BgkqhkiG9w0BAQsFAAOCAQEAsIV+PXaEIuRuMRiYQ1FGAxd+0MjEAW5HRbA4f06T
9ITCiuSc4rvm7R9dwF/2gq3WD+R502pK8PX6+HxvktdIQ4/35HNLKL30Nqq1M8cE
jPiVvUrHA7/Gvl54FRtKu+MJvAx+HVzOWJOLSOw9zmVVmMmqMzrGUYgSEbvSkxSW
Fh6jH4Qx0wR6jszAwsy9aaIORdjLVs4vin4d+vNKg6LhD5yZPsncQAz/BXlp3aWX
bD5lh2tsRbze0vpfrW/Ardc5ZwtFen+GrYh2w8Fkn4r8F1erVFp6JrEa6uSzwLp+
yEDzZZAJRir76sP12JT6V87f6pwkCM4Gx5ahpqVuAolUnQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org