Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZMWHBL6WOXtO85FBITNCus497HI.roa
File: ZMWHBL6WOXtO85FBITNCus497HI.roa (raw, json)
Hash identifier: BuoWGbaxy2G9sbT1STMsCFM4E0qQqPI9j9iodKfE3HI=
Subject key identifier: 64:C5:87:04:BE:96:39:7B:4E:F3:91:41:21:33:42:BA:CE:3D:EC:72
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EA4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZMWHBL6WOXtO85FBITNCus497HI.roa
Signing time: Wed 29 Sep 2021 02:43:48 +0000
ROA not before: Wed 29 Sep 2021 02:43:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3748 (0xea4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=64C58704BE96397B4EF39141213342BACE3DEC72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a9:ff:b8:00:fd:6a:19:53:51:c4:23:b6:17:
bd:ee:a8:2a:38:7e:24:0f:f0:fb:62:9f:40:45:2d:
33:57:82:eb:13:09:b2:46:21:56:be:aa:68:a6:20:
d1:4a:98:60:41:a2:10:54:f8:b7:c2:5e:38:39:e0:
12:be:19:ec:f5:ba:61:b8:a0:6d:03:5d:3f:51:76:
79:04:e9:1e:cd:96:9a:ae:5c:aa:98:62:57:d9:b1:
27:4a:71:02:67:cf:a1:86:73:fe:bb:f1:d4:4a:82:
6a:70:25:6b:40:d0:8e:7f:8b:e2:f1:83:13:08:0c:
07:85:59:6d:ca:89:44:5d:a7:16:3b:92:a0:79:75:
dc:52:bc:5a:1b:7d:af:cf:86:74:26:b2:13:b5:77:
67:bf:e5:1e:f6:c6:d8:f7:94:9a:9c:33:90:43:3a:
cf:38:9b:8e:97:d5:4f:40:66:a0:31:45:b7:f3:4b:
0f:31:bd:43:9b:94:d8:26:55:f1:91:6b:e1:a6:b9:
78:77:fb:96:53:c5:d3:f0:55:03:6f:c7:dd:6c:24:
62:77:a0:e5:f6:27:f1:5e:b4:ce:2a:99:2f:47:ec:
a6:e4:1e:3a:dc:4f:0d:d5:d7:bf:5c:c5:88:29:c6:
ee:76:7a:e5:b2:a2:35:ad:c7:ee:c7:70:49:1b:fd:
8c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C5:87:04:BE:96:39:7B:4E:F3:91:41:21:33:42:BA:CE:3D:EC:72
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZMWHBL6WOXtO85FBITNCus497HI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.176.0/20
Signature Algorithm: sha256WithRSAEncryption
8f:89:e8:56:b2:15:39:9b:ea:76:8f:70:2e:cc:4a:be:11:9c:
fa:3f:56:83:a9:50:4e:08:38:26:f1:f1:e3:8c:a5:8a:50:fe:
5b:82:29:28:32:51:7f:3d:fc:c9:cb:16:4c:f8:a7:89:91:31:
c6:a6:30:9c:e2:7d:1f:c6:8e:c9:1c:aa:d2:80:be:04:42:f3:
af:ba:6a:b3:10:67:9b:44:ca:f5:a8:b2:c3:98:0c:e1:53:0c:
d1:92:49:4f:22:71:d1:5d:08:36:db:5e:98:41:0b:21:3d:b9:
2f:ee:dd:95:2b:d5:9a:3c:17:46:22:c6:3c:a4:4b:b6:b4:8e:
58:53:09:f6:96:c3:41:1a:f3:ef:b1:82:24:98:72:47:0c:ec:
29:a2:c9:99:4c:30:19:eb:d9:e6:e3:a9:9a:30:c0:95:ce:d1:
62:0e:21:d2:47:10:df:8c:76:dc:f4:54:3d:3c:78:c5:91:ac:
f7:72:a4:66:cc:21:ca:86:9e:a4:aa:5c:7e:0c:7a:60:93:9c:
95:63:36:24:74:12:8c:e2:e9:29:0e:14:23:3d:c6:de:c9:56:
1b:b4:21:2a:ee:61:e5:f5:4e:76:64:19:ff:e8:53:49:bb:b1:
86:1c:06:53:6c:19:51:24:d7:55:fc:59:72:4d:94:8c:a8:8a:
14:f2:1a:b8
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDqQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzNDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY0QzU4NzA0QkU5NjM5
N0I0RUYzOTE0MTIxMzM0MkJBQ0UzREVDNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDyqf+4AP1qGVNRxCO2F73uqCo4fiQP8Ptin0BFLTNXgusTCbJG
IVa+qmimINFKmGBBohBU+LfCXjg54BK+Gez1umG4oG0DXT9RdnkE6R7NlpquXKqY
YlfZsSdKcQJnz6GGc/678dRKgmpwJWtA0I5/i+LxgxMIDAeFWW3KiURdpxY7kqB5
ddxSvFobfa/PhnQmshO1d2e/5R72xtj3lJqcM5BDOs84m46X1U9AZqAxRbfzSw8x
vUOblNgmVfGRa+GmuXh3+5ZTxdPwVQNvx91sJGJ3oOX2J/FetM4qmS9H7KbkHjrc
Tw3V179cxYgpxu52euWyojWtx+7HcEkb/YwTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZMWHBL6WOXtO85FBITNCus497HIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWk1XSEJMNldPWHRPODVGQklUTkN1
czQ5N0hJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHqTsDAN
BgkqhkiG9w0BAQsFAAOCAQEAj4noVrIVOZvqdo9wLsxKvhGc+j9Wg6lQTgg4JvHx
44ylilD+W4IpKDJRfz38ycsWTPiniZExxqYwnOJ9H8aOyRyq0oC+BELzr7pqsxBn
m0TK9aiyw5gM4VMM0ZJJTyJx0V0INttemEELIT25L+7dlSvVmjwXRiLGPKRLtrSO
WFMJ9pbDQRrz77GCJJhyRwzsKaLJmUwwGevZ5uOpmjDAlc7RYg4h0kcQ34x23PRU
PTx4xZGs93KkZswhyoaepKpcfgx6YJOclWM2JHQSjOLpKQ4UIz3G3slWG7QhKu5h
5fVOdmQZ/+hTSbuxhhwGU2wZUSTXVfxZck2UjKiKFPIauA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org