Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/a9gq-QY2XvixRwBLtOPV0SI8_u8.roa
File: a9gq-QY2XvixRwBLtOPV0SI8_u8.roa (raw, json)
Hash identifier: LYUjdclc6oEUSP5USGOcivkcywVEYQ3VcCf/GIzTU/A=
Subject key identifier: 6B:D8:2A:F9:06:36:5E:F8:B1:47:00:4B:B4:E3:D5:D1:22:3C:FE:EF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E51
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/a9gq-QY2XvixRwBLtOPV0SI8_u8.roa
Signing time: Wed 29 Sep 2021 02:43:27 +0000
ROA not before: Wed 29 Sep 2021 02:43:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 2001:cd8::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3665 (0xe51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6BD82AF906365EF8B147004BB4E3D5D1223CFEEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6a:50:3f:4e:ab:8a:bd:58:e6:6c:3b:23:59:
76:c1:b7:3a:61:ba:c9:62:b2:90:0d:02:68:35:6c:
84:dc:76:e6:c9:4f:fe:dc:00:27:78:ca:9b:a5:8a:
17:f9:84:a9:6f:05:a7:d5:fe:1f:46:5d:06:90:3d:
1d:5f:79:f2:12:1a:32:da:84:e0:1f:dd:4b:b5:1b:
47:27:e2:df:0c:36:8e:46:a1:ed:ba:74:96:9d:90:
aa:6e:e8:f7:91:fd:29:75:0c:c6:ce:fd:ba:5e:b7:
56:30:15:84:a3:6f:5a:e7:5a:40:d8:69:3c:b1:e6:
7e:e9:bf:5a:c0:e1:26:c3:6e:d0:a6:a6:e1:8a:83:
1c:e7:2e:eb:07:9e:df:d0:98:1b:c6:03:ee:64:21:
31:70:69:3b:a8:3a:6b:6b:1c:77:c2:62:92:38:fd:
64:e9:fc:4c:15:5a:be:c5:45:1f:5d:ef:21:59:7b:
c8:ea:b0:1e:43:a1:2e:47:29:26:a8:28:2a:3e:95:
47:db:ad:3e:ea:96:b0:d9:bc:e7:2a:56:71:7e:6f:
f1:89:d6:cc:22:1a:7e:18:40:d2:dc:04:26:27:0f:
68:d2:41:0b:41:78:7a:c8:15:12:e3:29:53:46:78:
a4:4d:8c:6f:4c:42:9e:34:d2:d6:39:c9:fa:f3:82:
52:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D8:2A:F9:06:36:5E:F8:B1:47:00:4B:B4:E3:D5:D1:22:3C:FE:EF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/a9gq-QY2XvixRwBLtOPV0SI8_u8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:cd8::/32
Signature Algorithm: sha256WithRSAEncryption
be:b7:8c:85:fc:fc:e1:cb:6f:94:e0:7e:5c:96:fa:5d:1e:e4:
1d:eb:97:77:2c:00:27:06:8d:26:96:50:67:66:a0:2c:02:0f:
02:84:13:01:ec:73:96:6d:8e:ae:26:67:33:02:25:fa:14:34:
6d:7b:7f:4b:ba:3d:0b:d1:5d:86:89:90:8a:b2:fd:04:b6:51:
51:5f:a8:40:56:0b:dc:d5:b6:6d:9b:7f:9c:50:ef:da:37:4f:
8f:00:d8:f6:c7:ba:03:6f:d5:51:f2:45:47:5d:21:d1:f1:f1:
ba:bb:01:95:dd:5b:99:8a:cf:9e:55:c1:4e:eb:be:1d:fd:d0:
f1:1c:6a:94:29:61:e3:9f:55:84:44:f6:2a:ae:aa:73:4a:6b:
ba:41:7c:83:7b:ab:ff:d9:25:3a:a2:67:d3:9a:9b:fe:33:2e:
85:df:e5:59:04:cc:b3:d5:a6:2f:80:11:dd:a6:8b:e3:93:49:
43:14:bf:f1:b7:52:5e:7b:44:30:80:73:ba:cf:3a:3e:78:5d:
46:9d:f5:fa:05:99:76:48:51:bd:f1:99:d1:10:84:e7:0f:bd:
c4:d2:6c:fc:49:c9:10:30:d3:8c:47:e3:21:b2:54:e1:56:2b:
63:3d:4a:b3:8e:32:0d:14:76:05:f4:d9:22:e2:5d:ff:32:a6:
59:ea:5c:2a
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDlEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMjdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDZCRDgyQUY5MDYzNjVF
RjhCMTQ3MDA0QkI0RTNENUQxMjIzQ0ZFRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqalA/TquKvVjmbDsjWXbBtzphuslispANAmg1bITcdubJT/7c
ACd4ypulihf5hKlvBafV/h9GXQaQPR1fefISGjLahOAf3Uu1G0cn4t8MNo5Goe26
dJadkKpu6PeR/Sl1DMbO/bpet1YwFYSjb1rnWkDYaTyx5n7pv1rA4SbDbtCmpuGK
gxznLusHnt/QmBvGA+5kITFwaTuoOmtrHHfCYpI4/WTp/EwVWr7FRR9d7yFZe8jq
sB5DoS5HKSaoKCo+lUfbrT7qlrDZvOcqVnF+b/GJ1swiGn4YQNLcBCYnD2jSQQtB
eHrIFRLjKVNGeKRNjG9MQp400tY5yfrzglL/AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUa9gq+QY2XvixRwBLtOPV0SI8/u8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYTlncS1RWTJYdml4UndCTHRPUFYw
U0k4X3U4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACABDNgw
DQYJKoZIhvcNAQELBQADggEBAL63jIX8/OHLb5TgflyW+l0e5B3rl3csACcGjSaW
UGdmoCwCDwKEEwHsc5Ztjq4mZzMCJfoUNG17f0u6PQvRXYaJkIqy/QS2UVFfqEBW
C9zVtm2bf5xQ79o3T48A2PbHugNv1VHyRUddIdHx8bq7AZXdW5mKz55VwU7rvh39
0PEcapQpYeOfVYRE9iquqnNKa7pBfIN7q//ZJTqiZ9Oam/4zLoXf5VkEzLPVpi+A
Ed2mi+OTSUMUv/G3Ul57RDCAc7rPOj54XUad9foFmXZIUb3xmdEQhOcPvcTSbPxJ
yRAw04xH4yGyVOFWK2M9SrOOMg0UdgX02SLiXf8yplnqXCo=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org