Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZcKwNLT1YUm6RQpqQV6_kUh7CSQ.roa
File: ZcKwNLT1YUm6RQpqQV6_kUh7CSQ.roa (raw, json)
Hash identifier: jGQE0/anyf5dzNG+tDZ8TUDCOpJHmodtjQGlMgEYp6g=
Subject key identifier: 65:C2:B0:34:B4:F5:61:49:BA:45:0A:6A:41:5E:BF:91:48:7B:09:24
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C2F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZcKwNLT1YUm6RQpqQV6_kUh7CSQ.roa
Signing time: Sun 07 Feb 2021 07:07:02 +0000
ROA not before: Sun 07 Feb 2021 07:07:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 175.183.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3119 (0xc2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:07:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=65C2B034B4F56149BA450A6A415EBF91487B0924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:be:bd:bb:bc:f9:db:b3:34:ff:aa:d1:67:ff:
86:68:75:bc:24:9e:65:a1:4c:72:d6:da:fa:e9:83:
52:17:63:4f:c2:7a:11:f2:ea:59:2b:6e:b7:8c:d6:
40:8f:4f:a0:ab:16:04:2e:af:68:6e:a7:6b:c0:84:
a6:d4:ac:db:21:d9:4b:42:0a:3c:1e:ce:32:d1:77:
22:a6:c2:eb:f5:02:81:43:57:10:ad:f0:6a:80:17:
32:62:f4:d3:0a:8f:cd:18:e7:f1:b9:7a:8b:0e:67:
72:d6:a8:5a:8e:59:5f:80:d1:a2:34:23:ee:9f:ae:
93:41:9e:94:d6:fe:cc:a9:1f:cc:5f:6f:a8:03:9b:
d3:fb:e2:29:37:f9:9b:ac:d5:3b:fe:6d:d1:5e:51:
78:5d:79:c2:d1:b2:8f:ac:b9:f2:b4:ad:ea:c0:53:
af:41:5e:44:8c:32:5e:0c:3f:b6:cb:32:16:7c:08:
cb:3c:db:a8:ff:c3:e0:89:48:2b:0e:d1:45:14:aa:
b5:0a:38:67:c8:f8:42:81:da:9b:c6:47:1a:28:d5:
2f:46:d4:93:82:23:7f:13:73:f5:e7:e8:8c:ff:30:
95:09:f2:df:e5:68:95:fd:cb:59:4c:d5:55:16:5b:
d1:56:1e:94:8a:35:ba:cf:06:63:29:22:2a:47:b8:
75:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C2:B0:34:B4:F5:61:49:BA:45:0A:6A:41:5E:BF:91:48:7B:09:24
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZcKwNLT1YUm6RQpqQV6_kUh7CSQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.0.0/19
Signature Algorithm: sha256WithRSAEncryption
4e:14:bf:7c:cd:dc:ea:57:26:50:90:a3:c2:6a:63:77:7f:51:
b3:de:bd:87:cb:1f:10:4d:ae:34:84:ec:57:0a:88:ab:d9:2a:
46:63:c8:23:1b:d8:7f:fb:f5:4a:fe:94:4a:e2:c2:49:55:cd:
29:36:55:7d:0e:46:c4:ac:75:8f:ce:6c:e3:28:18:a0:98:38:
87:36:98:43:92:31:88:51:07:e1:c5:8c:2f:f6:d7:85:a6:c0:
98:2c:e5:d7:ab:45:e7:c7:94:d3:3d:f6:fa:d1:58:aa:4c:c8:
3a:81:94:37:b2:d8:cc:77:3d:97:ae:4a:cd:75:cc:64:52:42:
75:19:a9:81:a3:73:f7:9f:53:fd:ad:c9:24:74:8d:2b:7e:86:
1a:a1:83:41:a6:b8:07:b3:5e:45:97:d8:02:cc:d1:25:e2:f9:
34:25:a0:f7:05:2a:b5:0d:c0:47:f2:2f:79:8c:a8:39:a9:1f:
eb:02:a2:56:e5:90:4f:f4:e6:a9:39:47:84:97:5f:a7:54:9b:
65:8d:68:65:da:5b:86:a8:18:72:b5:ed:00:a1:34:ed:98:5e:
0c:9e:18:3d:b3:a1:ef:2a:10:44:89:ba:76:c0:e8:83:92:4e:
de:bc:28:e3:31:b6:53:f2:cc:51:43:fe:70:2e:87:bc:93:ff:
f5:12:69:2e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDC8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NzA3MDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY1QzJCMDM0QjRGNTYx
NDlCQTQ1MEE2QTQxNUVCRjkxNDg3QjA5MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZvr27vPnbszT/qtFn/4ZodbwknmWhTHLW2vrpg1IXY0/CehHy
6lkrbreM1kCPT6CrFgQur2hup2vAhKbUrNsh2UtCCjwezjLRdyKmwuv1AoFDVxCt
8GqAFzJi9NMKj80Y5/G5eosOZ3LWqFqOWV+A0aI0I+6frpNBnpTW/sypH8xfb6gD
m9P74ik3+Zus1Tv+bdFeUXhdecLRso+sufK0rerAU69BXkSMMl4MP7bLMhZ8CMs8
26j/w+CJSCsO0UUUqrUKOGfI+EKB2pvGRxoo1S9G1JOCI38Tc/Xn6Iz/MJUJ8t/l
aJX9y1lM1VUWW9FWHpSKNbrPBmMpIipHuHVTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZcKwNLT1YUm6RQpqQV6/kUh7CSQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWmNLd05MVDFZVW02UlFwcVFWNl9r
VWg3Q1NRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBa+3ADAN
BgkqhkiG9w0BAQsFAAOCAQEAThS/fM3c6lcmUJCjwmpjd39Rs969h8sfEE2uNITs
VwqIq9kqRmPIIxvYf/v1Sv6USuLCSVXNKTZVfQ5GxKx1j85s4ygYoJg4hzaYQ5Ix
iFEH4cWML/bXhabAmCzl16tF58eU0z32+tFYqkzIOoGUN7LYzHc9l65KzXXMZFJC
dRmpgaNz959T/a3JJHSNK36GGqGDQaa4B7NeRZfYAszRJeL5NCWg9wUqtQ3AR/Iv
eYyoOakf6wKiVuWQT/TmqTlHhJdfp1SbZY1oZdpbhqgYcrXtAKE07ZheDJ4YPbOh
7yoQRIm6dsDog5JO3rwo4zG2U/LMUUP+cC6HvJP/9RJpLg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org