Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Uj1h6HuZ8_McBfQLkC8WDdbnZrs.roa
File: Uj1h6HuZ8_McBfQLkC8WDdbnZrs.roa (raw, json)
Hash identifier: K1FKDjK7vHUWPU+RmMSyRFfZ0jgHHzhjrUulUR95E6E=
Subject key identifier: 52:3D:61:E8:7B:99:F3:F3:1C:05:F4:0B:90:2F:16:0D:D6:E7:66:BB
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09EE
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Uj1h6HuZ8_McBfQLkC8WDdbnZrs.roa
Signing time: Sun 07 Feb 2021 06:34:14 +0000
ROA not before: Sun 07 Feb 2021 06:34:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2542 (0x9ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:34:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=523D61E87B99F3F31C05F40B902F160DD6E766BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:12:4a:9e:3c:5a:f6:6f:d0:10:78:21:1a:13:
60:24:c7:c8:a0:48:d1:6b:61:ef:d1:7a:82:c1:f1:
16:1c:78:16:19:a6:d2:a5:70:18:0a:3e:be:db:2f:
31:ac:09:00:2e:82:d1:a8:b6:28:42:de:ee:21:a5:
e1:09:1f:9e:99:5b:ac:b6:ed:c4:d4:47:52:18:4c:
19:1c:2e:48:0e:28:5f:60:2c:7b:8e:f2:8a:75:5f:
93:f0:56:31:9b:1e:a0:c5:c3:3e:8e:53:48:7f:2f:
d3:8d:b8:f5:83:b1:ca:4d:66:07:6a:84:b9:7e:81:
94:70:9b:77:34:98:7d:79:29:e2:a7:c5:9f:39:82:
fc:36:87:f7:23:1b:f0:2c:ca:39:40:5f:40:ee:7f:
8e:3f:7c:eb:8e:6f:c7:39:c6:5d:2f:fc:a6:fe:48:
06:16:63:a2:57:11:9d:f4:3a:ce:60:58:02:54:fe:
97:17:29:64:8e:95:1e:61:71:2e:b8:04:55:71:8d:
e6:c6:7a:b6:0f:ae:ea:df:88:f2:d8:04:56:ed:52:
1b:77:dd:77:63:dd:80:c2:86:43:39:19:b0:f7:41:
f6:63:f9:88:ca:32:6e:36:c2:9a:aa:6d:b6:00:c3:
46:1f:e1:bb:34:84:22:e1:67:ec:ee:01:86:1f:8f:
95:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3D:61:E8:7B:99:F3:F3:1C:05:F4:0B:90:2F:16:0D:D6:E7:66:BB
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Uj1h6HuZ8_McBfQLkC8WDdbnZrs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
07:33:56:dd:31:43:c2:21:8c:90:1a:bd:3c:6a:34:49:92:83:
7d:ef:ef:0c:2c:db:90:99:42:d6:bf:87:49:4b:00:f6:b6:0f:
0e:1c:94:56:4a:98:44:54:e8:2e:d5:14:8c:58:80:20:ca:8d:
6a:89:23:79:9c:6c:85:db:9b:07:4f:85:dd:e2:39:cf:ab:e3:
57:f0:df:85:71:d0:35:9b:d1:f9:f2:23:dd:b0:63:37:64:fc:
7c:0c:f8:d5:fa:c4:7a:ad:d5:f9:d2:2f:c5:92:d4:d2:27:7e:
5b:3d:e7:55:03:33:33:a2:99:c2:d8:ea:f0:b7:67:e9:ac:22:
c1:c0:7a:b0:2c:35:7e:30:16:ba:97:0e:5c:11:40:49:7d:10:
0f:df:8e:88:10:4e:a4:d2:ed:45:7d:14:87:e3:1a:1f:93:7c:
e3:98:20:b0:8f:66:ff:78:85:44:b4:c9:e2:14:7a:b2:08:b2:
6b:96:94:66:d4:a7:00:bb:b0:ad:1a:2d:72:84:f5:c8:f4:eb:
06:74:5d:7d:d5:d0:1b:20:98:b6:5f:28:4d:a7:4f:c6:6b:17:
e9:41:ac:d4:d9:99:6c:b6:d9:72:78:1d:38:2d:c9:62:5e:d6:
52:54:53:3f:94:0a:82:a3:a9:d0:56:a2:9f:aa:58:ae:97:83:
45:77:bf:4d
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjM0MTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDUyM0Q2MUU4N0I5OUYz
RjMxQzA1RjQwQjkwMkYxNjBERDZFNzY2QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCaEkqePFr2b9AQeCEaE2Akx8igSNFrYe/ReoLB8RYceBYZptKl
cBgKPr7bLzGsCQAugtGotihC3u4hpeEJH56ZW6y27cTUR1IYTBkcLkgOKF9gLHuO
8op1X5PwVjGbHqDFwz6OU0h/L9ONuPWDscpNZgdqhLl+gZRwm3c0mH15KeKnxZ85
gvw2h/cjG/AsyjlAX0Duf44/fOuOb8c5xl0v/Kb+SAYWY6JXEZ30Os5gWAJU/pcX
KWSOlR5hcS64BFVxjebGerYPrurfiPLYBFbtUht33Xdj3YDChkM5GbD3QfZj+YjK
Mm42wpqqbbYAw0Yf4bs0hCLhZ+zuAYYfj5VLAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUUj1h6HuZ8/McBfQLkC8WDdbnZrswHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVWoxaDZIdVo4X01jQmZRTGtDOFdE
ZGJuWnJzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIuvMA0G
CSqGSIb3DQEBCwUAA4IBAQAHM1bdMUPCIYyQGr08ajRJkoN97+8MLNuQmULWv4dJ
SwD2tg8OHJRWSphEVOgu1RSMWIAgyo1qiSN5nGyF25sHT4Xd4jnPq+NX8N+FcdA1
m9H58iPdsGM3ZPx8DPjV+sR6rdX50i/FktTSJ35bPedVAzMzopnC2Orwt2fprCLB
wHqwLDV+MBa6lw5cEUBJfRAP346IEE6k0u1FfRSH4xofk3zjmCCwj2b/eIVEtMni
FHqyCLJrlpRm1KcAu7CtGi1yhPXI9OsGdF191dAbIJi2XyhNp0/GaxfpQazU2Zls
ttlyeB04LcliXtZSVFM/lAqCo6nQVqKfqliul4NFd79N
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org