Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Pzpgnk4gkL7PqfqkWursnjvEO_Y.roa
File: Pzpgnk4gkL7PqfqkWursnjvEO_Y.roa (raw, json)
Hash identifier: TxNTpceC73B4Buz7Lf7Pq2CKI4A31QUK71Gs+B1CSMI=
Subject key identifier: 3F:3A:60:9E:4E:20:90:BE:CF:A9:FA:A4:5A:EA:EC:9E:3B:C4:3B:F6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E9B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Pzpgnk4gkL7PqfqkWursnjvEO_Y.roa
Signing time: Wed 29 Sep 2021 02:43:47 +0000
ROA not before: Wed 29 Sep 2021 02:43:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.146.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3739 (0xe9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3F3A609E4E2090BECFA9FAA45AEAEC9E3BC43BF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:79:9c:8c:b6:99:1e:a8:25:88:6d:92:4e:e6:
b7:24:da:31:01:f1:9a:cb:8f:2f:2b:d5:be:27:1e:
29:f9:60:a0:28:8c:91:d7:09:c3:cb:51:b4:40:3f:
49:43:c8:65:df:85:49:78:a8:90:5c:eb:9b:2a:d3:
59:66:62:8b:23:b4:9f:3b:a5:b7:40:85:a8:04:c7:
b5:b2:5e:be:df:0c:e2:1a:f3:71:b4:cf:67:c4:3f:
19:19:13:10:ff:15:34:96:c4:b6:b3:5d:10:90:35:
ed:50:d5:4a:4b:c3:ec:1f:6e:a9:d6:32:fa:45:23:
63:10:39:65:69:1c:1a:16:09:be:e6:2a:a1:f2:eb:
0d:39:b9:4d:15:03:a7:67:17:43:c8:ee:ca:e9:95:
a1:cb:79:ce:92:24:68:b5:6d:46:f5:ac:5f:3f:83:
3a:e7:54:89:92:d5:e1:7b:bf:73:37:60:98:90:1c:
2d:96:5f:90:61:1d:bf:24:21:a1:1a:32:f5:9f:a7:
26:40:e8:67:9c:94:50:ff:1e:c5:45:1b:a0:a8:6b:
10:5a:86:9e:cb:58:da:25:7b:8d:86:ff:55:fd:ad:
b3:27:65:73:ea:8e:17:53:79:cf:fd:59:63:e8:ec:
f8:17:b1:ff:fd:b6:41:3d:36:db:86:14:24:de:7f:
c3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3A:60:9E:4E:20:90:BE:CF:A9:FA:A4:5A:EA:EC:9E:3B:C4:3B:F6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Pzpgnk4gkL7PqfqkWursnjvEO_Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.64.0/19
Signature Algorithm: sha256WithRSAEncryption
6e:60:73:5f:ff:69:54:47:3a:2d:53:96:a9:29:ea:ec:ab:f5:
62:37:71:7a:92:16:62:20:e2:6c:08:25:4f:ec:32:87:f8:1d:
17:f9:57:a1:1e:72:b4:e5:0a:ca:b5:03:5b:95:1e:c5:56:58:
08:2a:50:68:67:69:30:d1:47:98:14:5c:7b:38:71:cd:4e:b1:
1d:e1:2e:3e:7d:a5:25:53:f6:04:b4:6d:63:2e:44:94:00:cb:
c3:22:4e:c1:fc:65:42:01:ce:10:b9:20:4f:b3:ec:a5:7f:38:
b8:ba:87:41:e1:24:1c:ac:c6:19:af:d5:3c:7e:c0:b0:ce:3e:
57:c3:26:f7:62:bb:e9:3c:a5:49:bb:1e:f5:21:9a:04:96:47:
86:12:cd:b0:c1:90:8a:44:c0:49:68:61:88:7e:25:05:71:74:
a4:96:70:e0:34:ae:9b:e6:4b:49:45:4d:e7:75:31:84:2a:3d:
24:78:95:59:06:a4:e8:d5:6a:2f:3f:1c:9b:6c:b4:84:3f:b5:
54:13:e8:e3:6e:21:eb:b9:f7:54:63:97:ee:29:a4:87:ec:47:
82:d6:cb:3a:94:70:49:37:dd:ef:ba:a1:77:ec:98:92:7c:b4:
6f:db:2f:a4:87:20:4e:e3:ce:2c:9f:8c:0b:88:c4:56:3b:11:
a9:05:41:b0
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDpswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNGM0E2MDlFNEUyMDkw
QkVDRkE5RkFBNDVBRUFFQzlFM0JDNDNCRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVeZyMtpkeqCWIbZJO5rck2jEB8ZrLjy8r1b4nHin5YKAojJHX
CcPLUbRAP0lDyGXfhUl4qJBc65sq01lmYosjtJ87pbdAhagEx7WyXr7fDOIa83G0
z2fEPxkZExD/FTSWxLazXRCQNe1Q1UpLw+wfbqnWMvpFI2MQOWVpHBoWCb7mKqHy
6w05uU0VA6dnF0PI7srplaHLec6SJGi1bUb1rF8/gzrnVImS1eF7v3M3YJiQHC2W
X5BhHb8kIaEaMvWfpyZA6GeclFD/HsVFG6CoaxBahp7LWNole42G/1X9rbMnZXPq
jhdTec/9WWPo7PgXsf/9tkE9NtuGFCTef8OBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUPzpgnk4gkL7PqfqkWursnjvEO/YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUHpwZ25rNGdrTDdQcWZxa1d1cnNu
anZFT19ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXqSQDAN
BgkqhkiG9w0BAQsFAAOCAQEAbmBzX/9pVEc6LVOWqSnq7Kv1YjdxepIWYiDibAgl
T+wyh/gdF/lXoR5ytOUKyrUDW5UexVZYCCpQaGdpMNFHmBRcezhxzU6xHeEuPn2l
JVP2BLRtYy5ElADLwyJOwfxlQgHOELkgT7PspX84uLqHQeEkHKzGGa/VPH7AsM4+
V8Mm92K76TylSbse9SGaBJZHhhLNsMGQikTASWhhiH4lBXF0pJZw4DSum+ZLSUVN
53UxhCo9JHiVWQak6NVqLz8cm2y0hD+1VBPo424h67n3VGOX7imkh+xHgtbLOpRw
STfd77qhd+yYkny0b9svpIcgTuPOLJ+MC4jEVjsRqQVBsA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org