Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RdlhathXMB2-NI7WAi3e5nS-xDk.roa
File: RdlhathXMB2-NI7WAi3e5nS-xDk.roa (raw, json)
Hash identifier: KbS/lCl1ADJc74YprVkUweBVko1Litl9/zQ58PXB1Oc=
Subject key identifier: 45:D9:61:6A:D8:57:30:1D:BE:34:8E:D6:02:2D:DE:E6:74:BE:C4:39
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EA8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RdlhathXMB2-NI7WAi3e5nS-xDk.roa
Signing time: Wed 29 Sep 2021 02:43:49 +0000
ROA not before: Wed 29 Sep 2021 02:43:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3752 (0xea8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=45D9616AD857301DBE348ED6022DDEE674BEC439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:11:c4:eb:a7:28:ca:27:84:e7:2f:f3:b1:
8a:ef:48:9c:95:4b:c1:08:64:38:c8:69:b5:f8:14:
ac:5a:33:3e:26:02:c9:9b:27:80:62:04:86:15:34:
a3:bc:58:58:e3:4f:e9:71:b3:8e:7c:3a:22:df:6d:
f4:f2:99:bf:04:0d:e0:04:f8:d1:13:0e:27:44:a3:
81:71:f0:75:a3:42:69:de:53:ba:72:6c:1d:bc:8c:
a1:ea:a6:1c:ef:10:66:e1:d8:f4:ee:06:59:76:fd:
18:92:95:07:ba:8f:0c:83:4b:a8:69:a8:96:22:0e:
36:4b:16:7e:af:81:30:0c:e3:80:07:50:35:b8:7b:
1e:bb:de:e3:db:44:4b:65:ac:cd:ea:07:00:ff:ce:
3d:a9:f2:9b:14:e6:f1:af:8d:be:e7:1f:5a:8a:6d:
28:96:2b:58:e7:0c:2a:ba:77:41:ec:94:02:ad:d8:
c1:23:0b:2f:a0:7e:ef:da:bf:43:90:7a:eb:f8:13:
69:82:e6:be:f3:5d:da:ec:6f:58:7a:d5:8e:19:e0:
94:86:f8:66:2a:16:0c:5d:d8:d4:20:05:b6:54:52:
f0:15:55:4f:b2:45:bd:b9:7c:c1:e6:c9:cc:61:18:
c6:8c:e5:46:53:d1:7b:30:c2:28:da:b1:b3:34:b2:
c7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D9:61:6A:D8:57:30:1D:BE:34:8E:D6:02:2D:DE:E6:74:BE:C4:39
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RdlhathXMB2-NI7WAi3e5nS-xDk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.64.0/18
Signature Algorithm: sha256WithRSAEncryption
63:eb:a9:7a:b6:ad:d0:e6:46:f0:62:52:48:ad:90:b9:cc:bd:
48:06:c0:f0:06:5a:f1:18:44:23:ab:a1:ac:f0:1c:54:c2:93:
ac:60:f1:6a:7a:a6:7c:e2:f7:e4:74:49:46:4b:7b:61:1f:31:
1c:bf:75:0b:ac:b3:79:de:06:b1:9c:7d:24:b8:cf:76:78:07:
de:47:63:7a:0f:15:50:a4:e5:0f:b3:99:c9:33:79:44:ad:21:
d7:12:87:fa:78:65:33:c0:3e:5b:51:de:cd:72:5e:4c:4c:ac:
3b:86:e8:56:e9:db:83:f3:99:31:4f:5c:c9:d7:71:6e:f0:80:
4b:32:a9:8c:ef:a8:14:a4:15:1e:9a:cd:e4:77:f1:f0:18:7c:
5a:5f:7b:d1:dc:b2:aa:88:53:92:38:7c:0a:24:37:9c:03:52:
b6:6f:b3:81:3c:2a:0f:c5:1b:6e:d5:74:6a:2b:f6:89:04:ae:
ea:f4:b8:43:26:20:b3:9d:eb:a8:33:bf:a0:57:68:34:b0:f3:
3b:b5:9f:62:0c:77:99:b2:1c:b9:52:5e:2d:10:15:94:6c:2b:
dd:33:66:9c:8e:73:d3:fa:55:af:fe:ad:e6:2e:ac:32:0a:1c:
94:bd:44:f3:92:09:b4:e1:5e:1b:73:e0:ce:88:12:9b:4f:98:
9e:12:89:a4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDqgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNDlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQ1RDk2MTZBRDg1NzMw
MURCRTM0OEVENjAyMkRERUU2NzRCRUM0MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC79BHE66coyieE5y/zsYrvSJyVS8EIZDjIabX4FKxaMz4mAsmb
J4BiBIYVNKO8WFjjT+lxs458OiLfbfTymb8EDeAE+NETDidEo4Fx8HWjQmneU7py
bB28jKHqphzvEGbh2PTuBll2/RiSlQe6jwyDS6hpqJYiDjZLFn6vgTAM44AHUDW4
ex673uPbREtlrM3qBwD/zj2p8psU5vGvjb7nH1qKbSiWK1jnDCq6d0HslAKt2MEj
Cy+gfu/av0OQeuv4E2mC5r7zXdrsb1h61Y4Z4JSG+GYqFgxd2NQgBbZUUvAVVU+y
Rb25fMHmycxhGMaM5UZT0XswwijasbM0sscRAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQURdlhathXMB2+NI7WAi3e5nS+xDkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUmRsaGF0aFhNQjItTkk3V0FpM2U1
blMteERrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnqTQDAN
BgkqhkiG9w0BAQsFAAOCAQEAY+uperat0OZG8GJSSK2Qucy9SAbA8AZa8RhEI6uh
rPAcVMKTrGDxanqmfOL35HRJRkt7YR8xHL91C6yzed4GsZx9JLjPdngH3kdjeg8V
UKTlD7OZyTN5RK0h1xKH+nhlM8A+W1HezXJeTEysO4boVunbg/OZMU9cyddxbvCA
SzKpjO+oFKQVHprN5Hfx8Bh8Wl970dyyqohTkjh8CiQ3nANStm+zgTwqD8UbbtV0
aiv2iQSu6vS4QyYgs53rqDO/oFdoNLDzO7WfYgx3mbIcuVJeLRAVlGwr3TNmnI5z
0/pVr/6t5i6sMgoclL1E85IJtOFeG3PgzogSm0+YnhKJpA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org