Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cB6EEJQOmJbkvbi5D8QQnN0-5Zc.roa
File: cB6EEJQOmJbkvbi5D8QQnN0-5Zc.roa (raw, json)
Hash identifier: SiGLfqHZ8mxsIhBq/YtuN4o17TH2DLrqP1IhoyY7+v4=
Subject key identifier: 70:1E:84:10:94:0E:98:96:E4:BD:B8:B9:0F:C4:10:9C:DD:3E:E5:97
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B72
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cB6EEJQOmJbkvbi5D8QQnN0-5Zc.roa
Signing time: Wed 29 Sep 2021 02:44:13 +0000
ROA not before: Wed 29 Sep 2021 02:44:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2930 (0xb72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=701E8410940E9896E4BDB8B90FC4109CDD3EE597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:f1:c3:83:82:e7:39:cb:58:c0:a6:fa:5f:
46:31:84:8b:8d:db:a6:a3:fa:64:84:bd:b8:45:30:
68:88:63:10:44:3a:df:34:6b:7d:09:0b:e5:cc:a5:
83:cd:aa:27:85:3c:02:c5:77:a7:73:eb:3d:8d:fc:
a5:1d:a1:78:d2:cf:5e:05:05:9d:58:cc:8c:86:1a:
71:db:ef:e8:f3:83:06:fa:6a:c4:fe:8d:69:56:f3:
d0:6f:cf:c3:2e:1d:5c:c5:48:e2:45:73:de:99:4c:
78:0c:d5:f6:fb:16:e0:90:06:46:7e:2f:ee:e9:56:
79:91:39:d0:31:a4:6e:c7:d9:ed:64:b3:53:32:d8:
83:3a:94:5b:08:b2:15:06:11:fb:76:16:52:e0:c5:
49:f6:50:f3:32:0f:9c:25:ab:8d:02:2c:d9:d5:65:
83:fa:b6:50:2c:d3:6f:37:1b:93:eb:a3:cb:5f:65:
cb:47:a8:21:35:c5:0a:2d:6e:35:ec:f4:f1:2a:ff:
95:c9:4f:d8:d0:f9:0b:0a:ec:ce:fb:41:77:c7:7a:
c6:46:71:31:ff:ae:94:46:6c:41:ee:21:4b:11:21:
4e:79:b3:a9:48:01:3c:30:a5:26:7b:54:7c:e2:4f:
13:3a:53:30:6c:de:9d:f8:14:bf:da:e2:96:d6:1c:
9f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1E:84:10:94:0E:98:96:E4:BD:B8:B9:0F:C4:10:9C:DD:3E:E5:97
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cB6EEJQOmJbkvbi5D8QQnN0-5Zc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:5b:61:7a:c5:72:84:bd:12:43:87:d2:cd:12:04:c6:c9:f6:
6f:4c:c7:44:5d:ac:09:bf:00:ea:29:ad:64:01:8f:f3:f8:1e:
c8:3e:db:a6:33:dc:24:bc:f2:0b:3c:2a:4f:88:a8:36:2f:14:
6e:bf:79:ad:f9:21:8c:60:94:82:9b:4f:33:79:1c:86:b3:55:
ab:4d:1c:27:ca:cb:1b:06:cd:bf:81:79:4d:fa:22:f0:37:6c:
3a:26:f4:e0:e9:77:d1:d9:7d:45:03:f0:35:3d:15:e9:7d:d3:
51:5a:9f:57:90:0b:09:56:82:2e:38:aa:2f:bd:c6:24:84:1b:
a3:66:db:de:26:5e:dc:8e:78:a4:b1:38:70:d0:97:a9:c5:9a:
60:4d:86:a5:d1:a6:dc:40:39:87:04:b5:17:a2:08:36:ff:23:
75:47:96:98:e8:b3:38:3d:f3:fa:2d:4a:31:ff:28:85:3c:32:
c9:bc:7c:b7:97:21:dc:a9:3e:9e:9b:8c:57:24:48:40:cb:c0:
7e:81:ef:2d:99:bb:c6:35:3f:01:87:21:ee:c5:5e:bd:f1:58:
37:84:59:ab:90:9c:0a:8c:92:5a:80:8e:10:7f:3e:5d:3e:24:
24:08:d9:67:ba:0a:f4:b1:f9:fe:a4:ae:3f:d2:82:91:d6:36:
e5:68:42:ab
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTA5Mjkw
MjQ0MTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcwMUU4NDEwOTQwRTk4
OTZFNEJEQjhCOTBGQzQxMDlDREQzRUU1OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCl3fHDg4LnOctYwKb6X0YxhIuN26aj+mSEvbhFMGiIYxBEOt80
a30JC+XMpYPNqieFPALFd6dz6z2N/KUdoXjSz14FBZ1YzIyGGnHb7+jzgwb6asT+
jWlW89Bvz8MuHVzFSOJFc96ZTHgM1fb7FuCQBkZ+L+7pVnmROdAxpG7H2e1ks1My
2IM6lFsIshUGEft2FlLgxUn2UPMyD5wlq40CLNnVZYP6tlAs0283G5Pro8tfZctH
qCE1xQotbjXs9PEq/5XJT9jQ+QsK7M77QXfHesZGcTH/rpRGbEHuIUsRIU55s6lI
ATwwpSZ7VHziTxM6UzBs3p34FL/a4pbWHJ8RAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUcB6EEJQOmJbkvbi5D8QQnN0+5ZcwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvY0I2RUVKUU9tSmJrdmJpNUQ4UVFu
TjAtNVpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN
BgkqhkiG9w0BAQsFAAOCAQEAXFthesVyhL0SQ4fSzRIExsn2b0zHRF2sCb8A6imt
ZAGP8/geyD7bpjPcJLzyCzwqT4ioNi8Ubr95rfkhjGCUgptPM3kchrNVq00cJ8rL
GwbNv4F5Tfoi8DdsOib04Ol30dl9RQPwNT0V6X3TUVqfV5ALCVaCLjiqL73GJIQb
o2bb3iZe3I54pLE4cNCXqcWaYE2GpdGm3EA5hwS1F6IINv8jdUeWmOizOD3z+i1K
Mf8ohTwyybx8t5ch3Kk+npuMVyRIQMvAfoHvLZm7xjU/AYch7sVevfFYN4RZq5Cc
CoySWoCOEH8+XT4kJAjZZ7oK9LH5/qSuP9KCkdY25WhCqw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org