Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y1pn97rKloSpi3_vg_sil7FCTDw.roa
File: Y1pn97rKloSpi3_vg_sil7FCTDw.roa (raw, json)
Hash identifier: IUh3wfQ2aUSB4Q339XeJrPAEFxArmU9i547BrBM5iRc=
Subject key identifier: 63:5A:67:F7:BA:CA:96:84:A9:8B:7F:EF:83:FB:22:97:B1:42:4C:3C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DFD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y1pn97rKloSpi3_vg_sil7FCTDw.roa
Signing time: Wed 29 Sep 2021 02:43:05 +0000
ROA not before: Wed 29 Sep 2021 02:43:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3581 (0xdfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=635A67F7BACA9684A98B7FEF83FB2297B1424C3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f0:ff:c4:b5:91:6e:29:69:b0:99:f0:aa:c4:
a5:9e:ea:cb:d8:62:66:28:63:f3:4a:18:d0:62:d3:
c9:f0:2e:4f:88:0d:9b:36:ba:37:8c:d2:6b:62:06:
43:86:7e:c2:74:60:10:8f:5c:4a:35:47:f1:6f:8e:
ce:e2:e6:cc:79:9b:1a:c3:b1:00:80:5a:1e:e5:56:
21:c3:50:6c:42:f6:57:ed:64:b7:bb:e2:23:2a:9a:
f1:7f:3b:98:ae:25:1c:cb:3f:f8:8f:d7:4b:7f:3b:
62:e9:82:ab:ba:7a:81:0b:f2:bd:84:d7:b8:3d:99:
78:83:16:57:57:54:93:c1:db:49:7d:8e:77:4a:9d:
2b:44:7c:95:66:f5:bf:a8:4b:d8:6a:a4:29:d4:24:
77:bd:24:ed:17:4c:89:19:fc:21:99:69:11:dc:0a:
09:6d:9c:e5:f5:e9:af:17:b4:3c:e0:36:0c:8f:d2:
6a:97:85:da:95:8f:ff:9a:02:c5:54:29:77:0b:a4:
bc:fa:9c:3a:2c:2c:99:ca:19:8d:c7:c7:b6:79:9d:
c8:69:5f:a8:9a:36:02:60:05:86:de:e1:3b:11:53:
b8:28:2e:b8:60:d5:aa:0d:ec:2d:74:b7:3c:5f:26:
d7:02:75:00:8f:e6:f2:f7:4c:de:6e:53:20:f6:d7:
c7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:5A:67:F7:BA:CA:96:84:A9:8B:7F:EF:83:FB:22:97:B1:42:4C:3C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y1pn97rKloSpi3_vg_sil7FCTDw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
3b:24:ae:fa:ef:13:bd:f6:2e:08:48:b3:71:9d:4d:d5:76:69:
93:ad:93:45:6f:eb:ba:03:ba:e4:d9:09:95:a5:6c:35:cf:11:
7c:21:9b:c2:23:7f:fd:df:d7:21:d5:f5:6f:d9:da:19:e3:38:
66:cb:2f:ba:e1:56:d6:e2:07:e6:ef:a7:45:a7:fe:09:0c:77:
f6:c5:d3:39:fe:8e:29:d5:1f:f7:29:46:f5:31:cd:d9:31:d6:
20:c9:06:7a:6c:9c:d4:91:1c:42:eb:c5:84:90:96:1e:d2:64:
4a:fb:61:28:e0:35:6c:ea:3a:f4:e2:e3:6d:ef:92:a5:9a:df:
1c:d1:26:0b:2f:c6:92:97:d6:39:5e:0d:e8:8b:a7:26:b2:e9:
91:1e:76:c9:87:e4:68:76:89:59:c4:3b:53:75:06:12:85:57:
07:4f:f1:42:fd:ed:02:c6:1e:31:62:8a:2c:53:ef:38:f5:ca:
5e:7e:93:25:18:4c:3f:40:22:01:3f:a3:1c:fe:79:de:27:e1:
c5:bd:e5:9d:e2:f7:9d:f6:01:d9:fc:2b:8b:61:46:3e:e7:3c:
8a:bc:fc:f5:ea:7b:7a:04:7e:84:98:5c:cd:df:be:52:b6:3e:
0a:84:5f:35:9d:22:8a:60:57:a6:c8:fd:3a:98:31:24:95:3d:
9b:c4:5d:62
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDf0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDYzNUE2N0Y3QkFDQTk2
ODRBOThCN0ZFRjgzRkIyMjk3QjE0MjRDM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDK8P/EtZFuKWmwmfCqxKWe6svYYmYoY/NKGNBi08nwLk+IDZs2
ujeM0mtiBkOGfsJ0YBCPXEo1R/Fvjs7i5sx5mxrDsQCAWh7lViHDUGxC9lftZLe7
4iMqmvF/O5iuJRzLP/iP10t/O2Lpgqu6eoEL8r2E17g9mXiDFldXVJPB20l9jndK
nStEfJVm9b+oS9hqpCnUJHe9JO0XTIkZ/CGZaRHcCgltnOX16a8XtDzgNgyP0mqX
hdqVj/+aAsVUKXcLpLz6nDosLJnKGY3Hx7Z5nchpX6iaNgJgBYbe4TsRU7goLrhg
1aoN7C10tzxfJtcCdQCP5vL3TN5uUyD218cDAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUY1pn97rKloSpi3/vg/sil7FCTDwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWTFwbjk3cktsb1NwaTNfdmdfc2ls
N0ZDVER3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATtoMA0G
CSqGSIb3DQEBCwUAA4IBAQA7JK767xO99i4ISLNxnU3VdmmTrZNFb+u6A7rk2QmV
pWw1zxF8IZvCI3/939ch1fVv2doZ4zhmyy+64VbW4gfm76dFp/4JDHf2xdM5/o4p
1R/3KUb1Mc3ZMdYgyQZ6bJzUkRxC68WEkJYe0mRK+2Eo4DVs6jr04uNt75Klmt8c
0SYLL8aSl9Y5Xg3oi6cmsumRHnbJh+RodolZxDtTdQYShVcHT/FC/e0Cxh4xYoos
U+849cpefpMlGEw/QCIBP6Mc/nneJ+HFveWd4ved9gHZ/CuLYUY+5zyKvPz16nt6
BH6EmFzN375Stj4KhF81nSKKYFemyP06mDEklT2bxF1i
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org