Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/a2qnj2vMQbngC_GVsfzLqt2IDIY.roa
File: a2qnj2vMQbngC_GVsfzLqt2IDIY.roa (raw, json)
Hash identifier: dsxeDRNvQyoFaSZ8ZQSjUIFSOxj450B8tL/EV1AHbtQ=
Subject key identifier: 6B:6A:A7:8F:6B:CC:41:B9:E0:0B:F1:95:B1:FC:CB:AA:DD:88:0C:86
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B8E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/a2qnj2vMQbngC_GVsfzLqt2IDIY.roa
Signing time: Sun 07 Feb 2021 06:25:52 +0000
ROA not before: Sun 07 Feb 2021 06:25:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2958 (0xb8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:25:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6B6AA78F6BCC41B9E00BF195B1FCCBAADD880C86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:d0:8e:e3:17:85:b9:3e:5d:1d:2a:2c:d5:23:
cb:4f:a9:c5:35:05:2d:a8:53:81:5c:70:1d:7d:00:
c1:6f:04:f9:88:72:0f:fc:1d:ad:88:ca:82:70:18:
b0:fa:97:df:0d:21:40:77:b9:1c:71:10:7b:52:c8:
0a:16:7e:58:0d:03:6f:05:2d:8e:51:47:4f:3e:f8:
d3:aa:9e:5a:3c:1f:ac:df:26:21:47:34:1a:ec:d4:
2a:4c:eb:23:3c:95:05:cf:b8:b8:f1:65:bb:dd:c3:
c3:f3:de:ca:7e:0f:21:48:10:4a:1e:13:67:e2:de:
40:41:f8:cb:7c:2d:7a:6d:80:75:12:86:fc:68:66:
38:15:ed:c1:10:12:bb:e9:b0:d4:c8:d4:4c:1d:0b:
96:99:50:ab:ee:8f:73:b1:73:5b:81:ef:7d:d5:a9:
aa:b9:85:d7:4b:6e:fa:b5:bd:90:f2:68:1a:00:f4:
5e:c6:dc:f9:36:04:d7:2a:17:93:6f:60:59:8b:a3:
61:79:13:6d:c6:71:fa:3b:c7:20:25:73:8c:c6:60:
35:8f:6f:fa:ba:f0:89:b4:3f:6a:ba:b7:e4:ba:72:
5f:2d:f6:38:b9:16:7f:90:a0:2a:0d:17:5c:cd:32:
5c:ea:a3:20:40:a0:e6:0c:e4:4d:64:b7:ec:9a:b0:
a6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:6A:A7:8F:6B:CC:41:B9:E0:0B:F1:95:B1:FC:CB:AA:DD:88:0C:86
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/a2qnj2vMQbngC_GVsfzLqt2IDIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
83:7f:de:c8:0c:ca:ab:b3:20:67:30:f5:38:c3:85:ab:da:5e:
bf:e2:0a:f0:f7:63:30:8f:13:26:e7:a6:99:16:95:7a:38:89:
58:ca:32:ee:e2:99:d1:2c:00:8a:10:aa:ba:e2:70:d3:2d:b5:
bf:48:1c:18:61:de:8a:70:f1:f1:f1:6e:03:31:74:18:21:2b:
4e:a8:26:9a:87:8a:36:e0:00:4d:da:34:7f:8f:f6:7e:96:4b:
58:bd:7a:2c:84:17:14:14:19:f5:01:0e:a1:83:2e:ee:51:0a:
e1:96:83:5f:11:eb:66:1c:6c:db:96:ff:d7:5a:aa:4a:2c:62:
d4:05:cb:a5:03:19:f1:1d:08:2d:5d:c6:65:da:66:1a:c6:08:
2d:dd:82:6e:a9:37:00:e5:b5:f1:60:b8:a4:fd:9b:56:70:86:
46:21:4f:5f:6c:0f:ec:b0:53:2e:e0:af:41:05:28:80:3a:15:
f5:31:83:ac:ff:0e:21:09:72:09:3f:8b:9b:25:eb:93:ab:f8:
33:f2:6d:da:c9:5a:bc:e6:80:f3:ad:2d:3f:7e:10:b1:26:44:
26:41:71:15:42:e2:e2:68:f8:4f:93:cc:7a:1f:42:6e:6f:c4:
41:d0:87:59:06:5f:80:ba:cd:49:ea:a2:1b:c5:64:ac:07:ea:
8c:e9:90:83
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICC44wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjI1NTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZCNkFBNzhGNkJDQzQx
QjlFMDBCRjE5NUIxRkNDQkFBREQ4ODBDODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD80I7jF4W5Pl0dKizVI8tPqcU1BS2oU4FccB19AMFvBPmIcg/8
Ha2IyoJwGLD6l98NIUB3uRxxEHtSyAoWflgNA28FLY5RR08++NOqnlo8H6zfJiFH
NBrs1CpM6yM8lQXPuLjxZbvdw8Pz3sp+DyFIEEoeE2fi3kBB+Mt8LXptgHUShvxo
ZjgV7cEQErvpsNTI1EwdC5aZUKvuj3Oxc1uB733Vqaq5hddLbvq1vZDyaBoA9F7G
3Pk2BNcqF5NvYFmLo2F5E23Gcfo7xyAlc4zGYDWPb/q68Im0P2q6t+S6cl8t9ji5
Fn+QoCoNF1zNMlzqoyBAoOYM5E1kt+yasKbnAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUa2qnj2vMQbngC/GVsfzLqt2IDIYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYTJxbmoydk1RYm5nQ19HVnNmekxx
dDJJRElZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATtoMA0G
CSqGSIb3DQEBCwUAA4IBAQCDf97IDMqrsyBnMPU4w4Wr2l6/4grw92MwjxMm56aZ
FpV6OIlYyjLu4pnRLACKEKq64nDTLbW/SBwYYd6KcPHx8W4DMXQYIStOqCaah4o2
4ABN2jR/j/Z+lktYvXoshBcUFBn1AQ6hgy7uUQrhloNfEetmHGzblv/XWqpKLGLU
BculAxnxHQgtXcZl2mYaxggt3YJuqTcA5bXxYLik/ZtWcIZGIU9fbA/ssFMu4K9B
BSiAOhX1MYOs/w4hCXIJP4ubJeuTq/gz8m3ayVq85oDzrS0/fhCxJkQmQXEVQuLi
aPhPk8x6H0Jub8RB0IdZBl+Aus1J6qIbxWSsB+qM6ZCD
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org