Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wqs65ha0MBVLsdnxMdKZildTuVo.roa
File: Wqs65ha0MBVLsdnxMdKZildTuVo.roa (raw, json)
Hash identifier: kh1N4kVj/39KA0zf3wVsk3t0EjkRqX+FcrnEXnvAFHc=
Subject key identifier: 5A:AB:3A:E6:16:B4:30:15:4B:B1:D9:F1:31:D2:99:8A:57:53:B9:5A
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09C8
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wqs65ha0MBVLsdnxMdKZildTuVo.roa
Signing time: Sun 07 Feb 2021 06:24:09 +0000
ROA not before: Sun 07 Feb 2021 06:24:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2504 (0x9c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:24:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5AAB3AE616B430154BB1D9F131D2998A5753B95A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:85:85:a9:aa:15:86:de:6f:bb:91:b4:5b:07:
ab:ad:b5:9c:ef:f1:9b:8c:d9:19:95:71:7a:a4:1d:
a6:fc:8e:aa:4d:b4:8a:96:f6:f8:e8:06:7a:9a:60:
2e:7e:0c:57:fb:54:59:ad:09:08:82:52:fd:78:7f:
d5:9b:b4:ac:64:cf:84:93:37:77:21:b3:a4:a2:a8:
40:24:12:35:ee:6b:cb:13:54:0e:90:c1:52:30:7d:
f5:20:f8:6d:06:a1:99:0e:54:99:50:ea:a6:fa:60:
80:14:25:26:87:d9:e6:48:e0:4f:19:16:14:e2:8b:
c4:03:43:35:1e:3a:a6:85:80:e2:ec:c1:71:f1:d6:
01:09:2e:35:5d:38:1b:4d:c6:8f:8d:75:e1:a2:01:
ee:69:de:69:93:de:65:7c:59:8e:52:69:49:18:d7:
cf:f3:37:18:f2:d4:bc:7a:74:39:cb:02:4b:f2:ca:
2a:0a:c3:4f:11:15:a5:db:bd:47:ee:18:2b:7c:d1:
37:e4:63:0d:95:81:3d:66:bc:30:f7:ff:8a:86:21:
07:a9:cf:fc:13:25:30:11:e6:7b:06:5a:8f:a0:ec:
de:23:d6:da:6c:38:64:e4:1a:56:e9:58:0c:69:d6:
98:d6:79:d8:47:87:27:f0:c2:a8:ec:0a:da:8c:6b:
22:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AB:3A:E6:16:B4:30:15:4B:B1:D9:F1:31:D2:99:8A:57:53:B9:5A
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wqs65ha0MBVLsdnxMdKZildTuVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.240.0/21
Signature Algorithm: sha256WithRSAEncryption
47:ae:64:cf:b1:e7:da:3f:5a:7b:f1:bf:b2:4e:5c:87:c1:b2:
6b:ed:fb:36:de:fd:20:6d:f0:c8:c2:58:44:0c:4d:64:0c:dc:
09:06:6f:c4:26:88:8d:18:53:4f:45:23:3b:19:58:01:8f:37:
d1:14:74:e3:b8:79:48:b9:64:25:93:08:e5:c1:0c:b2:4a:6e:
be:8a:bb:5b:00:95:c4:61:29:af:78:63:af:1a:04:5c:c3:e2:
0e:d9:86:3c:43:92:c6:db:2b:59:4b:64:36:90:0b:fa:96:35:
ad:0c:61:4c:84:4b:e8:f4:87:af:86:93:d8:d0:92:8a:46:10:
28:12:a4:56:cf:ca:f9:5b:fa:2b:77:87:fd:10:50:e1:61:ed:
93:cd:73:49:7b:ed:84:7e:16:db:12:ee:57:cf:66:af:e3:c8:
1e:69:d7:d8:1d:bb:28:d5:2f:1d:93:2a:ba:70:e7:fa:ac:58:
2d:34:28:2c:3c:68:d7:8a:a2:88:ee:92:87:e9:2d:62:43:ae:
5f:b4:0e:9f:e2:28:69:01:f7:13:06:f5:e8:03:69:bb:a3:6e:
66:2d:d0:9a:e4:06:68:53:78:51:c5:5e:e3:0e:33:5c:f0:34:
de:b5:a4:cc:58:33:cd:d0:5f:43:45:04:95:4c:ee:40:85:03:
f7:a2:9c:2c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjI0MDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVBQUIzQUU2MTZCNDMw
MTU0QkIxRDlGMTMxRDI5OThBNTc1M0I5NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxhYWpqhWG3m+7kbRbB6uttZzv8ZuM2RmVcXqkHab8jqpNtIqW
9vjoBnqaYC5+DFf7VFmtCQiCUv14f9WbtKxkz4STN3chs6SiqEAkEjXua8sTVA6Q
wVIwffUg+G0GoZkOVJlQ6qb6YIAUJSaH2eZI4E8ZFhTii8QDQzUeOqaFgOLswXHx
1gEJLjVdOBtNxo+NdeGiAe5p3mmT3mV8WY5SaUkY18/zNxjy1Lx6dDnLAkvyyioK
w08RFaXbvUfuGCt80TfkYw2VgT1mvDD3/4qGIQepz/wTJTAR5nsGWo+g7N4j1tps
OGTkGlbpWAxp1pjWedhHhyfwwqjsCtqMayLxAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUWqs65ha0MBVLsdnxMdKZildTuVowHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvV3FzNjVoYTBNQlZMc2RueE1kS1pp
bGRUdVZvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BI8DAN
BgkqhkiG9w0BAQsFAAOCAQEAR65kz7Hn2j9ae/G/sk5ch8Gya+37Nt79IG3wyMJY
RAxNZAzcCQZvxCaIjRhTT0UjOxlYAY830RR047h5SLlkJZMI5cEMskpuvoq7WwCV
xGEpr3hjrxoEXMPiDtmGPEOSxtsrWUtkNpAL+pY1rQxhTIRL6PSHr4aT2NCSikYQ
KBKkVs/K+Vv6K3eH/RBQ4WHtk81zSXvthH4W2xLuV89mr+PIHmnX2B27KNUvHZMq
unDn+qxYLTQoLDxo14qiiO6Sh+ktYkOuX7QOn+IoaQH3Ewb16ANpu6NuZi3QmuQG
aFN4UcVe4w4zXPA03rWkzFgzzdBfQ0UElUzuQIUD96KcLA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org