Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/c1h9VVYMmqUZ60z8kbpdE8BlUCw.roa
File: c1h9VVYMmqUZ60z8kbpdE8BlUCw.roa (raw, json)
Hash identifier: zzeX7PFhK/99jfSHyF3eSc0yhP/Cbus0eb0EUJ4RFuw=
Subject key identifier: 73:58:7D:55:56:0C:9A:A5:19:EB:4C:FC:91:BA:5D:13:C0:65:50:2C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CD1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c1h9VVYMmqUZ60z8kbpdE8BlUCw.roa
Signing time: Sun 07 Feb 2021 11:45:23 +0000
ROA not before: Sun 07 Feb 2021 11:45:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3281 (0xcd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=73587D55560C9AA519EB4CFC91BA5D13C065502C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9b:7d:7d:e1:2f:d7:be:a1:0d:65:a3:bc:10:
b9:3c:07:dd:b8:71:b7:ec:38:14:dd:c4:ac:14:8a:
a5:04:a3:9a:31:70:ec:be:ac:9e:ae:86:09:6a:37:
8b:c1:f5:16:ec:75:cf:6c:ba:8c:fc:db:bd:a6:98:
7a:45:0a:6f:b2:f3:8b:24:71:11:e1:57:b3:23:4b:
14:80:b8:d4:07:62:71:29:cb:f6:f1:1f:ce:ac:e6:
cb:7b:07:9e:12:9b:52:ac:fe:0d:87:ff:0b:2e:df:
c2:69:80:86:e2:93:c5:01:6c:b5:ff:b0:a9:f6:c9:
12:ce:09:dd:9e:eb:80:7f:d6:27:8f:f6:2d:50:82:
e2:1e:04:12:a7:00:6b:3f:79:5c:48:77:1c:59:66:
15:f0:a8:ab:42:e6:79:11:f9:d9:ca:b4:70:22:ba:
5d:fb:31:3f:6e:f4:63:ae:f5:3f:b7:98:c1:05:8f:
ce:60:27:2a:f9:9f:0d:20:83:03:86:a1:47:fa:2c:
13:e3:81:cf:18:dc:fa:76:66:6d:d4:f0:5f:64:0b:
e2:f8:c0:16:e1:84:d7:79:6b:53:ea:fc:a5:c4:6c:
8a:4f:c1:c5:04:a2:35:04:c5:5c:78:10:20:1e:b1:
43:34:9a:1f:23:6b:37:fd:b9:96:45:a6:cb:72:19:
84:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:58:7D:55:56:0C:9A:A5:19:EB:4C:FC:91:BA:5D:13:C0:65:50:2C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c1h9VVYMmqUZ60z8kbpdE8BlUCw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.152.0/21
Signature Algorithm: sha256WithRSAEncryption
51:1c:e6:e0:51:ac:26:f9:ed:5c:4b:67:9c:f6:ce:ac:27:82:
8d:f4:fa:dc:06:d2:d5:02:f7:6d:5c:ec:39:a2:10:af:38:d1:
6b:4b:42:db:f9:61:76:70:2e:95:2b:e3:24:de:44:c1:c2:e9:
61:80:b2:c0:1a:ec:0c:3e:da:e0:91:19:88:b8:7e:86:e0:b0:
65:5b:9b:6e:fa:22:3f:b7:13:1f:63:f2:33:38:87:da:ca:26:
e5:35:d6:e4:82:dc:68:fc:23:ad:70:8a:ff:ee:9e:db:74:4a:
56:b4:f1:32:2e:64:9b:34:ce:70:48:c4:98:e1:b5:46:84:e9:
6d:ba:8e:77:98:fa:7a:03:05:3d:d7:6f:d0:4a:f7:06:1e:14:
5c:72:8a:49:9c:32:4a:90:5d:88:b0:f3:24:b9:b1:96:d9:bf:
6d:e5:db:32:49:70:f5:eb:be:1e:db:dc:9e:f5:60:3e:26:5a:
61:0d:89:eb:3f:36:b1:0e:07:48:f7:9a:90:b5:0f:dd:15:77:
6c:8f:65:88:bb:5b:65:39:c1:c2:ce:8c:c6:b3:55:55:e2:04:
94:3e:f0:9b:dc:7b:73:6b:8a:59:73:fb:ef:ea:6c:c1:ef:09:
9a:d2:bb:b0:9f:c8:0e:bd:39:ea:1d:6d:09:bd:60:2b:54:05:
5c:f6:4c:47
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQ1MjNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDczNTg3RDU1NTYwQzlB
QTUxOUVCNENGQzkxQkE1RDEzQzA2NTUwMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwm3194S/XvqENZaO8ELk8B924cbfsOBTdxKwUiqUEo5oxcOy+
rJ6uhglqN4vB9Rbsdc9suoz8272mmHpFCm+y84skcRHhV7MjSxSAuNQHYnEpy/bx
H86s5st7B54Sm1Ks/g2H/wsu38JpgIbik8UBbLX/sKn2yRLOCd2e64B/1ieP9i1Q
guIeBBKnAGs/eVxIdxxZZhXwqKtC5nkR+dnKtHAiul37MT9u9GOu9T+3mMEFj85g
Jyr5nw0ggwOGoUf6LBPjgc8Y3Pp2Zm3U8F9kC+L4wBbhhNd5a1Pq/KXEbIpPwcUE
ojUExVx4ECAesUM0mh8jazf9uZZFpstyGYSrAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUc1h9VVYMmqUZ60z8kbpdE8BlUCwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYzFoOVZWWU1tcVVaNjB6OGticGRF
OEJsVUN3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEmDAN
BgkqhkiG9w0BAQsFAAOCAQEAURzm4FGsJvntXEtnnPbOrCeCjfT63AbS1QL3bVzs
OaIQrzjRa0tC2/lhdnAulSvjJN5EwcLpYYCywBrsDD7a4JEZiLh+huCwZVubbvoi
P7cTH2PyMziH2som5TXW5ILcaPwjrXCK/+6e23RKVrTxMi5kmzTOcEjEmOG1RoTp
bbqOd5j6egMFPddv0Er3Bh4UXHKKSZwySpBdiLDzJLmxltm/beXbMklw9eu+Htvc
nvVgPiZaYQ2J6z82sQ4HSPeakLUP3RV3bI9liLtbZTnBws6MxrNVVeIElD7wm9x7
c2uKWXP77+pswe8JmtK7sJ/IDr056h1tCb1gK1QFXPZMRw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org