Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XlJRUJlAqITpbnD-pLfEequchVw.roa
File: XlJRUJlAqITpbnD-pLfEequchVw.roa (raw, json)
Hash identifier: mj9SkgaUn3zCVRD72m6+MIneyhfi4vHkd9XiUElL2nw=
Subject key identifier: 5E:52:51:50:99:40:A8:84:E9:6E:70:FE:A4:B7:C4:7A:AB:9C:85:5C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E03
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XlJRUJlAqITpbnD-pLfEequchVw.roa
Signing time: Wed 29 Sep 2021 02:43:06 +0000
ROA not before: Wed 29 Sep 2021 02:43:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 42.0.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3587 (0xe03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5E5251509940A884E96E70FEA4B7C47AAB9C855C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:38:91:05:5f:5a:b7:c0:36:b7:7c:e7:3a:c3:
88:21:55:8e:85:ff:5d:9b:77:89:8d:bb:8f:8b:eb:
c0:7f:3a:76:ba:7e:4e:16:23:1f:40:8d:0e:f4:39:
ef:1d:d0:7c:09:40:f5:48:94:81:51:93:e3:46:b0:
e2:dd:53:e8:a9:b2:18:80:84:c8:ca:21:8d:3b:e8:
96:c3:cc:24:ee:20:93:7b:5c:62:36:32:56:5c:5d:
3f:cb:f8:70:b9:4f:fc:9e:59:29:ae:21:66:b8:9d:
68:e2:24:07:62:7b:24:13:a4:52:82:93:24:45:ac:
44:94:f0:ae:52:fd:51:48:64:df:eb:9b:11:4b:54:
5c:95:64:f1:fd:85:a5:9b:d6:63:30:22:1d:18:9a:
43:4c:be:06:92:d7:c6:65:03:3d:08:2d:a4:fc:1b:
62:9f:7a:54:44:34:31:85:45:49:7b:d0:3b:c7:08:
19:cf:61:08:a8:4d:06:85:36:af:ba:48:dc:a3:99:
14:13:75:0c:3d:8a:f9:78:e3:fa:b3:7e:bb:94:9c:
c7:fb:4a:b1:41:7e:d6:8e:7c:45:fb:00:5d:22:e8:
b2:eb:b5:6f:4a:85:aa:10:70:26:a6:22:59:a6:ee:
68:4f:42:5f:82:e8:61:23:c9:05:c1:7a:eb:a8:90:
1e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:52:51:50:99:40:A8:84:E9:6E:70:FE:A4:B7:C4:7A:AB:9C:85:5C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XlJRUJlAqITpbnD-pLfEequchVw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
90:b4:e0:2f:0a:9a:31:88:8d:6a:77:b0:e6:93:97:81:e2:08:
2b:d8:3d:cc:33:44:db:c3:d1:e7:b1:a8:34:84:ff:8a:79:e0:
9a:5b:fa:07:89:df:b3:78:f4:e1:dc:1d:74:bd:65:84:be:5f:
53:ec:a1:1e:be:6f:98:d1:a8:a5:d2:ce:48:7a:c5:6b:a1:ec:
cb:0f:ab:3a:5d:fc:2e:d1:05:95:84:61:ee:ca:52:0a:c0:f7:
70:9d:d5:0f:90:72:25:cd:a2:9c:4a:57:94:5e:ab:63:ea:14:
21:af:2d:6f:e7:22:ef:15:3c:60:fd:4f:c9:0c:b4:f2:d1:33:
5a:c3:92:47:76:82:26:77:13:8a:5b:1e:fb:b4:a4:4b:cf:b4:
55:71:27:59:b1:d2:bd:9e:a3:b1:d0:0f:57:91:d9:b4:0e:e8:
2a:e1:20:aa:d3:0f:5a:06:0c:c2:d0:10:2a:7e:aa:c9:1e:bc:
aa:c3:82:3c:92:af:22:66:8b:cf:86:8e:e0:34:75:41:df:ec:
70:4b:42:27:f5:3b:4b:6b:b0:99:a8:12:49:67:4a:02:df:47:
60:1c:0a:20:2f:66:a3:7e:6a:cc:82:65:61:21:07:7c:94:62:
52:e5:da:d5:34:9e:4d:da:a8:fa:e8:de:7c:58:a5:04:52:90:
14:1f:de:d8
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDgMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMDZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVFNTI1MTUwOTk0MEE4
ODRFOTZFNzBGRUE0QjdDNDdBQUI5Qzg1NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDqOJEFX1q3wDa3fOc6w4ghVY6F/12bd4mNu4+L68B/Ona6fk4W
Ix9AjQ70Oe8d0HwJQPVIlIFRk+NGsOLdU+ipshiAhMjKIY076JbDzCTuIJN7XGI2
MlZcXT/L+HC5T/yeWSmuIWa4nWjiJAdieyQTpFKCkyRFrESU8K5S/VFIZN/rmxFL
VFyVZPH9haWb1mMwIh0YmkNMvgaS18ZlAz0ILaT8G2KfelRENDGFRUl70DvHCBnP
YQioTQaFNq+6SNyjmRQTdQw9ivl44/qzfruUnMf7SrFBftaOfEX7AF0i6LLrtW9K
haoQcCamIlmm7mhPQl+C6GEjyQXBeuuokB59AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUXlJRUJlAqITpbnD+pLfEequchVwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWGxKUlVKbEFxSVRwYm5ELXBMZkVl
cXVjaFZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBioAQDAN
BgkqhkiG9w0BAQsFAAOCAQEAkLTgLwqaMYiNanew5pOXgeIIK9g9zDNE28PR57Go
NIT/inngmlv6B4nfs3j04dwddL1lhL5fU+yhHr5vmNGopdLOSHrFa6Hsyw+rOl38
LtEFlYRh7spSCsD3cJ3VD5ByJc2inEpXlF6rY+oUIa8tb+ci7xU8YP1PyQy08tEz
WsOSR3aCJncTilse+7SkS8+0VXEnWbHSvZ6jsdAPV5HZtA7oKuEgqtMPWgYMwtAQ
Kn6qyR68qsOCPJKvImaLz4aO4DR1Qd/scEtCJ/U7S2uwmagSSWdKAt9HYBwKIC9m
o35qzIJlYSEHfJRiUuXa1TSeTdqo+ujefFilBFKQFB/e2A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org