Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/O2kLsu1Xo8vaYa3MbllpE5OSdT4.roa
File: O2kLsu1Xo8vaYa3MbllpE5OSdT4.roa (raw, json)
Hash identifier: D1ELDf4/JgbP2wa3Zmwz7FTyFNcJto71QLKghWSuY4A=
Subject key identifier: 3B:69:0B:B2:ED:57:A3:CB:DA:61:AD:CC:6E:59:69:13:93:92:75:3E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 089B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/O2kLsu1Xo8vaYa3MbllpE5OSdT4.roa
Signing time: Tue 29 Sep 2020 09:52:12 +0000
ROA not before: Tue 29 Sep 2020 09:52:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2203 (0x89b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B690BB2ED57A3CBDA61ADCC6E5969139392753E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:04:78:5d:fd:03:4b:ae:f1:63:42:14:22:c3:
9c:be:06:f4:00:24:72:95:21:3f:56:82:13:56:e0:
c4:f3:00:6f:be:d0:e3:54:fd:d2:76:c8:f1:5b:7f:
9d:e7:e1:a6:d5:76:23:f5:38:60:87:4f:f6:db:1f:
8b:68:1a:17:b1:a2:89:cf:d8:35:e1:b6:11:37:2b:
32:eb:14:92:35:a0:e1:ea:2b:61:62:95:39:e5:fb:
d9:58:8b:54:2b:36:c8:2a:1b:b0:dc:8c:32:8d:db:
67:01:e9:ce:83:6c:ca:a2:dd:08:cd:9b:72:71:e4:
69:77:da:ed:2d:a3:07:57:c9:d3:9a:d1:48:6e:6f:
8b:28:8e:6b:50:94:94:62:3a:c6:b2:cd:fa:b1:f3:
f9:5e:ce:47:0d:c6:fb:f6:fc:1e:54:d8:ce:91:8b:
a3:e0:dc:80:6b:02:db:68:0d:98:78:f5:4d:dc:ef:
a7:7a:04:87:a8:ae:4d:af:64:e2:0b:f5:36:af:e9:
02:8e:e1:84:86:a8:f3:ab:14:4b:9a:ec:5d:08:9b:
86:57:b2:4b:9f:a5:4e:cd:bd:3a:6a:93:42:b4:ea:
52:f6:97:58:60:ff:0a:17:20:7b:98:b6:18:3c:72:
59:a4:c2:20:d0:fb:c1:d8:65:22:05:d8:7b:5f:b9:
df:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:69:0B:B2:ED:57:A3:CB:DA:61:AD:CC:6E:59:69:13:93:92:75:3E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/O2kLsu1Xo8vaYa3MbllpE5OSdT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.64.0/18
Signature Algorithm: sha256WithRSAEncryption
ac:c0:0b:07:a4:56:41:ad:f6:f5:ff:dc:7c:22:a9:f9:da:fc:
60:80:9a:3c:60:f0:ce:c7:d6:5a:e9:90:76:fc:f2:40:e6:0b:
8c:c4:1a:35:d9:bb:f6:9f:ac:d5:9a:14:47:ea:6b:4c:57:ca:
26:f3:52:dd:c2:da:9f:8c:e5:2e:c7:cf:2f:0a:8f:eb:d2:05:
bd:a4:7d:b6:d4:93:27:69:22:9c:38:f0:61:35:98:aa:d9:ba:
36:18:22:3b:72:41:b1:6f:70:50:38:61:0e:0f:54:ea:59:af:
5c:9f:6c:b8:cd:9e:33:c9:68:c3:20:4a:9f:f4:82:40:73:6b:
ef:54:95:85:5e:7a:ec:8e:d0:cb:0d:e3:09:f9:4c:58:e9:fe:
c8:8d:c6:cc:a2:67:f0:72:35:92:81:c5:31:b0:6f:93:1a:cf:
2c:56:9a:03:a6:51:ab:a0:2b:fb:e0:f2:46:6c:6c:36:b1:e7:
ce:a6:fb:fc:70:e8:c5:a3:e7:ce:cd:3d:ce:e2:f5:ad:43:dc:
07:fd:36:db:db:f2:9f:03:e7:36:42:74:6a:61:59:4b:b2:0e:
a5:a3:d8:48:2c:e9:0b:5a:a1:13:93:b0:e2:67:69:e2:c4:37:
de:29:f8:ab:ed:3e:2a:87:50:58:21:75:58:e1:81:25:b3:e4:
d4:af:a3:40
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNCNjkwQkIyRUQ1N0Ez
Q0JEQTYxQURDQzZFNTk2OTEzOTM5Mjc1M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCUBHhd/QNLrvFjQhQiw5y+BvQAJHKVIT9WghNW4MTzAG++0ONU
/dJ2yPFbf53n4abVdiP1OGCHT/bbH4toGhexoonP2DXhthE3KzLrFJI1oOHqK2Fi
lTnl+9lYi1QrNsgqG7DcjDKN22cB6c6DbMqi3QjNm3Jx5Gl32u0towdXydOa0Uhu
b4sojmtQlJRiOsayzfqx8/lezkcNxvv2/B5U2M6Ri6Pg3IBrAttoDZh49U3c76d6
BIeork2vZOIL9Tav6QKO4YSGqPOrFEua7F0Im4ZXskufpU7NvTpqk0K06lL2l1hg
/woXIHuYthg8clmkwiDQ+8HYZSIF2Htfud8bAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUO2kLsu1Xo8vaYa3MbllpE5OSdT4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTzJrTHN1MVhvOHZhWWEzTWJsbHBF
NU9TZFQ0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnqTQDAN
BgkqhkiG9w0BAQsFAAOCAQEArMALB6RWQa329f/cfCKp+dr8YICaPGDwzsfWWumQ
dvzyQOYLjMQaNdm79p+s1ZoUR+prTFfKJvNS3cLan4zlLsfPLwqP69IFvaR9ttST
J2kinDjwYTWYqtm6NhgiO3JBsW9wUDhhDg9U6lmvXJ9suM2eM8lowyBKn/SCQHNr
71SVhV567I7Qyw3jCflMWOn+yI3GzKJn8HI1koHFMbBvkxrPLFaaA6ZRq6Ar++Dy
RmxsNrHnzqb7/HDoxaPnzs09zuL1rUPcB/0229vynwPnNkJ0amFZS7IOpaPYSCzp
C1qhE5Ow4mdp4sQ33in4q+0+KodQWCF1WOGBJbPk1K+jQA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org