Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XX9LnNHGF4Mb26LDVzX9jXW243o.roa
File: XX9LnNHGF4Mb26LDVzX9jXW243o.roa (raw, json)
Hash identifier: vlK/qSLQL1M1y1YDeN1hcxuXYDzZqw6OeIwPnXCLbwc=
Subject key identifier: 5D:7F:4B:9C:D1:C6:17:83:1B:DB:A2:C3:57:35:FD:8D:75:B6:E3:7A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D33
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XX9LnNHGF4Mb26LDVzX9jXW243o.roa
Signing time: Sun 07 Feb 2021 12:47:40 +0000
ROA not before: Sun 07 Feb 2021 12:47:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 175.180.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3379 (0xd33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 12:47:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D7F4B9CD1C617831BDBA2C35735FD8D75B6E37A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d3:72:d5:05:a2:ef:97:8d:ea:fd:70:c8:8b:
e0:00:19:2c:10:4f:50:3d:96:21:72:8a:85:a0:ee:
cc:a6:7d:0a:f9:7d:fe:e3:c3:5c:19:59:6b:48:92:
e2:29:df:de:2a:43:8d:9b:10:11:75:2c:0d:ab:05:
92:07:52:62:0b:8f:ce:62:08:a2:a9:a6:86:51:d4:
bc:85:5e:a5:82:2c:fa:39:76:85:95:0d:b7:ad:36:
77:8c:c7:a4:64:d1:5f:ed:72:a0:ee:72:6a:02:e2:
37:b8:01:2d:c4:8b:89:72:9c:de:5b:16:cc:25:ba:
d5:77:46:92:db:7e:ec:f4:00:0f:97:54:6a:bd:f2:
b1:f6:57:22:04:ed:86:99:09:32:c1:b4:ed:8d:e8:
73:99:2f:db:2a:8f:77:20:12:f8:f7:98:44:8f:e0:
f7:dd:12:a8:81:42:f8:6b:49:ee:a8:10:1f:a0:b9:
94:93:61:a1:d1:c9:61:7c:b6:aa:89:7f:76:1f:f6:
39:28:e5:6e:e2:3a:ea:a7:37:c0:c5:df:ab:52:e3:
79:96:2c:43:b8:35:11:78:a1:71:4c:2c:05:05:a5:
ec:0a:7c:f5:42:82:9a:06:7c:48:1d:dd:fa:7e:11:
85:ee:7b:4a:82:99:e9:92:76:49:19:5f:2a:d9:19:
c5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7F:4B:9C:D1:C6:17:83:1B:DB:A2:C3:57:35:FD:8D:75:B6:E3:7A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XX9LnNHGF4Mb26LDVzX9jXW243o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.180.0.0/16
Signature Algorithm: sha256WithRSAEncryption
45:d9:09:53:f5:a1:c3:e9:f2:08:ca:e7:42:91:93:81:36:84:
c4:7a:84:73:52:4f:e9:0a:18:6c:87:a0:b1:84:64:c4:de:3d:
cf:49:d1:b5:31:eb:9e:94:6e:05:d6:f9:55:5d:4a:f6:2e:2c:
e5:30:1e:dd:b8:29:5d:3f:f9:b6:fd:f6:18:a5:ce:45:03:5c:
a2:d5:30:92:5f:4c:cb:cf:f6:0a:fe:b2:51:ad:7e:df:40:68:
0e:0f:a9:30:f3:b9:69:1a:00:0d:8d:a7:b7:a8:9e:d2:ca:13:
52:47:b2:68:17:c5:12:23:2f:a0:de:d9:6e:2a:53:37:f6:4e:
92:59:75:b0:27:6e:92:25:a4:4c:57:2d:bb:64:f4:b8:8e:ac:
5d:04:99:be:da:4c:6f:d3:58:21:9a:83:f3:37:60:f4:74:4f:
cc:18:a5:9f:7b:70:13:14:80:75:3b:b2:fd:bd:cf:3b:7c:af:
69:8d:5e:58:ad:32:4f:62:27:f0:48:38:87:e0:f9:dd:84:73:
58:93:00:87:d1:d3:8c:48:e4:04:cc:d1:5e:a9:50:ac:99:b6:
7b:38:24:1c:71:d6:21:c2:35:b9:19:86:15:89:e6:62:df:61:
a7:08:cf:86:e3:c8:8d:14:d2:c3:c0:be:33:6f:77:a2:f7:11:
e7:8f:83:1b
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDTMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MjQ3NDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVEN0Y0QjlDRDFDNjE3
ODMxQkRCQTJDMzU3MzVGRDhENzVCNkUzN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDh03LVBaLvl43q/XDIi+AAGSwQT1A9liFyioWg7symfQr5ff7j
w1wZWWtIkuIp394qQ42bEBF1LA2rBZIHUmILj85iCKKppoZR1LyFXqWCLPo5doWV
DbetNneMx6Rk0V/tcqDucmoC4je4AS3Ei4lynN5bFswlutV3RpLbfuz0AA+XVGq9
8rH2VyIE7YaZCTLBtO2N6HOZL9sqj3cgEvj3mESP4PfdEqiBQvhrSe6oEB+guZST
YaHRyWF8tqqJf3Yf9jko5W7iOuqnN8DF36tS43mWLEO4NRF4oXFMLAUFpewKfPVC
gpoGfEgd3fp+EYXue0qCmemSdkkZXyrZGcXdAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUXX9LnNHGF4Mb26LDVzX9jXW243owHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWFg5TG5OSEdGNE1iMjZMRFZ6WDlq
WFcyNDNvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAK+0MA0G
CSqGSIb3DQEBCwUAA4IBAQBF2QlT9aHD6fIIyudCkZOBNoTEeoRzUk/pChhsh6Cx
hGTE3j3PSdG1MeuelG4F1vlVXUr2LizlMB7duCldP/m2/fYYpc5FA1yi1TCSX0zL
z/YK/rJRrX7fQGgOD6kw87lpGgANjae3qJ7SyhNSR7JoF8USIy+g3tluKlM39k6S
WXWwJ26SJaRMVy27ZPS4jqxdBJm+2kxv01ghmoPzN2D0dE/MGKWfe3ATFIB1O7L9
vc87fK9pjV5YrTJPYifwSDiH4PndhHNYkwCH0dOMSOQEzNFeqVCsmbZ7OCQccdYh
wjW5GYYVieZi32GnCM+G48iNFNLDwL4zb3ei9xHnj4Mb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org