Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WjmQ36nzZ-i3hDFoN0yYHURE8o0.roa
File: WjmQ36nzZ-i3hDFoN0yYHURE8o0.roa (raw, json)
Hash identifier: /fXx2kjPM8+EchfWGHz2DOJU8Bv9N4+kPlFrO5Jzt5k=
Subject key identifier: 5A:39:90:DF:A9:F3:67:E8:B7:84:31:68:37:4C:98:1D:44:44:F2:8D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B79
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WjmQ36nzZ-i3hDFoN0yYHURE8o0.roa
Signing time: Sun 07 Feb 2021 06:20:46 +0000
ROA not before: Sun 07 Feb 2021 06:20:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 60.245.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2937 (0xb79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:20:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5A3990DFA9F367E8B7843168374C981D4444F28D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:81:ea:0a:31:c8:69:f4:7d:69:98:c9:33:ad:
47:32:ac:8d:ba:ef:4e:c1:ed:72:8d:ea:ca:7d:c2:
50:83:1e:bd:14:d0:8c:d4:aa:b5:4a:33:59:45:96:
c9:a5:b3:ad:a5:6f:07:23:f7:4d:44:56:16:de:ef:
cb:fd:64:c6:17:f3:42:cb:6b:eb:7e:b2:db:ea:4b:
a4:e0:81:bb:68:5e:2e:d1:d1:de:7f:bc:b2:47:5b:
10:2e:e5:b3:38:f1:0c:4b:a6:02:ff:cc:b3:1e:1a:
b7:d9:b1:27:4c:c7:81:5a:bf:50:3f:a4:c6:ac:4b:
4c:ae:d5:c4:2b:a4:92:d2:df:e9:d7:71:d2:49:6f:
bf:1f:99:27:f5:65:98:65:67:f2:2b:30:61:b5:d6:
bc:1a:f3:77:e8:71:ed:02:f5:fb:8b:1d:f0:2e:79:
db:44:ab:c5:9c:0b:59:df:08:8e:1f:8a:9c:fb:10:
a6:66:d1:18:60:9a:77:5c:01:a4:b7:ba:d4:16:ca:
ef:4f:cb:0f:34:8e:18:af:b3:2d:fd:b9:4a:58:67:
86:6c:02:93:6d:11:ed:67:7e:88:eb:69:22:39:09:
16:15:12:dc:18:68:da:09:ae:3e:a0:89:d3:4a:bc:
37:61:05:db:15:f8:48:51:31:4c:7e:a6:b4:09:6d:
b6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:39:90:DF:A9:F3:67:E8:B7:84:31:68:37:4C:98:1D:44:44:F2:8D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WjmQ36nzZ-i3hDFoN0yYHURE8o0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.96.0/19
Signature Algorithm: sha256WithRSAEncryption
c4:bd:99:26:fc:f4:70:96:ce:f8:93:fa:81:12:2e:79:1a:91:
38:08:0c:82:62:b7:17:92:fa:05:8f:72:33:33:a4:6b:65:eb:
42:97:e2:4a:61:e1:6c:12:6a:3b:17:a9:d2:08:00:08:82:c4:
2c:e9:06:88:8d:fe:3c:d3:d2:b7:51:81:c5:d0:a5:55:81:6b:
1c:5b:da:b4:e5:83:42:89:5c:bb:27:15:0c:c2:e9:8d:c3:0a:
7b:12:f9:0d:be:48:c2:c7:5d:22:4f:4e:b6:71:cd:5c:8d:0f:
e2:c5:37:37:e1:29:54:bf:99:19:8e:35:36:a0:56:4a:c9:ef:
45:33:5c:0d:40:ff:94:04:2d:ec:fe:5b:34:a4:43:54:07:36:
83:29:4a:b4:7d:d4:ac:3c:e6:72:a2:e5:9e:25:ca:fa:6d:55:
77:a8:6d:ec:d1:e7:2c:74:4c:6c:19:d8:1d:03:fb:98:12:05:
02:38:78:5b:ff:75:57:49:aa:2b:ca:76:89:d0:41:32:10:77:
f1:5c:fd:8c:d5:07:52:2c:95:a8:df:01:b5:bd:d0:bc:e6:a9:
c3:23:ff:76:cf:c6:e3:bf:7b:c2:0b:f3:b8:62:dc:38:a6:85:
b4:58:b5:bb:22:34:f2:ea:fa:55:48:32:83:f9:7c:af:59:74:
5a:62:ff:1a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjIwNDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVBMzk5MERGQTlGMzY3
RThCNzg0MzE2ODM3NEM5ODFENDQ0NEYyOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7geoKMchp9H1pmMkzrUcyrI26707B7XKN6sp9wlCDHr0U0IzU
qrVKM1lFlsmls62lbwcj901EVhbe78v9ZMYX80LLa+t+stvqS6TggbtoXi7R0d5/
vLJHWxAu5bM48QxLpgL/zLMeGrfZsSdMx4Fav1A/pMasS0yu1cQrpJLS3+nXcdJJ
b78fmSf1ZZhlZ/IrMGG11rwa83foce0C9fuLHfAuedtEq8WcC1nfCI4fipz7EKZm
0RhgmndcAaS3utQWyu9Pyw80jhivsy39uUpYZ4ZsApNtEe1nfojraSI5CRYVEtwY
aNoJrj6gidNKvDdhBdsV+EhRMUx+prQJbbbdAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUWjmQ36nzZ+i3hDFoN0yYHURE8o0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvV2ptUTM2bnpaLWkzaERGb04weVlI
VVJFOG8wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTz1YDAN
BgkqhkiG9w0BAQsFAAOCAQEAxL2ZJvz0cJbO+JP6gRIueRqROAgMgmK3F5L6BY9y
MzOka2XrQpfiSmHhbBJqOxep0ggACILELOkGiI3+PNPSt1GBxdClVYFrHFvatOWD
QolcuycVDMLpjcMKexL5Db5IwsddIk9OtnHNXI0P4sU3N+EpVL+ZGY41NqBWSsnv
RTNcDUD/lAQt7P5bNKRDVAc2gylKtH3UrDzmcqLlniXK+m1Vd6ht7NHnLHRMbBnY
HQP7mBIFAjh4W/91V0mqK8p2idBBMhB38Vz9jNUHUiyVqN8Btb3QvOapwyP/ds/G
4797wgvzuGLcOKaFtFi1uyI08ur6VUgyg/l8r1l0WmL/Gg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org