Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/d-KBUvSufutPRlnrkJ5HdnIEOa4.roa
File: d-KBUvSufutPRlnrkJ5HdnIEOa4.roa (raw, json)
Hash identifier: WAyDsccman/OL4zJySWDhDZxZqt7Y9mparTjG4I7+Rc=
Subject key identifier: 77:E2:81:52:F4:AE:7E:EB:4F:46:59:EB:90:9E:47:76:72:04:39:AE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CF9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/d-KBUvSufutPRlnrkJ5HdnIEOa4.roa
Signing time: Sun 07 Feb 2021 11:47:39 +0000
ROA not before: Sun 07 Feb 2021 11:47:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 220.229.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3321 (0xcf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:47:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=77E28152F4AE7EEB4F4659EB909E4776720439AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8f:25:ad:39:28:1c:da:d9:05:7c:6b:04:e9:
ca:88:4d:ef:b1:b7:c5:bf:bc:a4:e9:37:78:21:32:
9a:90:14:6d:fe:57:21:d4:87:82:8d:e1:71:bb:0e:
c6:6d:a1:62:47:94:c4:b1:71:f0:f2:33:69:e1:42:
9a:19:59:89:d6:ea:e5:8a:10:f7:c4:e1:65:f8:63:
03:06:f0:87:4e:28:dc:b3:a0:0c:27:3e:05:5a:9d:
86:26:8b:18:18:e0:0b:3e:aa:90:79:ba:fd:52:d9:
4c:0f:50:06:36:1d:63:12:18:62:72:81:06:08:f6:
b3:21:75:49:52:1a:51:20:1e:bf:f8:ef:e2:c4:5a:
f4:aa:0a:84:bc:b2:2c:df:e1:27:02:e4:04:d0:ab:
4c:1a:ea:a1:a1:a6:c8:c3:09:fe:05:15:21:b9:cb:
3b:90:d2:65:08:c1:b3:c4:98:c4:61:cf:32:7c:82:
cd:53:42:48:3d:1d:5f:e2:c7:b2:83:73:84:16:29:
4f:0d:1e:7b:56:f4:a0:90:da:4c:85:94:6f:e9:28:
cd:fe:30:99:bb:a6:a1:8f:00:11:d8:37:c4:71:9a:
40:7a:18:78:07:ec:da:2d:54:89:a9:b4:c8:b2:0d:
7c:55:78:00:63:1f:33:31:69:26:1a:3c:84:60:bd:
87:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E2:81:52:F4:AE:7E:EB:4F:46:59:EB:90:9E:47:76:72:04:39:AE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/d-KBUvSufutPRlnrkJ5HdnIEOa4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.68.0/22
Signature Algorithm: sha256WithRSAEncryption
71:18:2d:e4:46:50:6f:52:63:18:ae:e5:e0:aa:b5:4c:2d:f2:
99:91:cf:bf:6b:0e:be:2f:4a:56:4d:10:13:52:e4:34:6c:19:
74:55:49:40:22:e2:c8:42:89:b2:47:26:7f:0e:7d:54:27:95:
f0:b6:0f:8a:ff:94:68:9d:48:51:eb:fb:60:1b:62:70:be:7c:
17:3a:31:62:27:24:16:bc:d0:b2:fa:fb:1b:d6:b2:72:1d:4a:
52:44:ae:77:32:b8:0a:6c:da:e6:3c:c2:81:fb:5d:04:a1:e4:
70:fe:82:f7:70:14:d5:b6:e6:26:ad:ae:ae:8f:04:7d:28:2b:
80:74:e1:b6:93:1a:ad:7f:61:2d:07:49:ca:26:ad:a3:5f:52:
fe:79:82:1f:5c:16:44:86:e9:09:05:a8:a8:56:ec:77:94:f7:
a5:5f:56:5e:26:38:a6:94:a2:2c:47:ba:f4:e4:44:27:e5:e3:
d9:04:92:be:fc:05:9a:9d:6e:df:76:59:62:13:17:1d:52:44:
9b:86:00:df:37:9f:c9:36:75:e6:d8:b0:a7:0f:77:03:83:94:
94:11:9f:ff:45:47:de:65:ad:2e:07:37:6d:26:95:01:31:d8:
db:d6:9b:5a:fe:c9:cd:8a:db:ee:87:6d:ef:4e:0f:91:80:bb:
3f:78:99:87
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQ3MzlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc3RTI4MTUyRjRBRTdF
RUI0RjQ2NTlFQjkwOUU0Nzc2NzIwNDM5QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrjyWtOSgc2tkFfGsE6cqITe+xt8W/vKTpN3ghMpqQFG3+VyHU
h4KN4XG7DsZtoWJHlMSxcfDyM2nhQpoZWYnW6uWKEPfE4WX4YwMG8IdOKNyzoAwn
PgVanYYmixgY4As+qpB5uv1S2UwPUAY2HWMSGGJygQYI9rMhdUlSGlEgHr/47+LE
WvSqCoS8sizf4ScC5ATQq0wa6qGhpsjDCf4FFSG5yzuQ0mUIwbPEmMRhzzJ8gs1T
Qkg9HV/ix7KDc4QWKU8NHntW9KCQ2kyFlG/pKM3+MJm7pqGPABHYN8RxmkB6GHgH
7NotVImptMiyDXxVeABjHzMxaSYaPIRgvYfjAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUd+KBUvSufutPRlnrkJ5HdnIEOa4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZC1LQlV2U3VmdXRQUmxucmtKNUhk
bklFT2E0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtzlRDAN
BgkqhkiG9w0BAQsFAAOCAQEAcRgt5EZQb1JjGK7l4Kq1TC3ymZHPv2sOvi9KVk0Q
E1LkNGwZdFVJQCLiyEKJskcmfw59VCeV8LYPiv+UaJ1IUev7YBticL58FzoxYick
FrzQsvr7G9aych1KUkSudzK4Cmza5jzCgftdBKHkcP6C93AU1bbmJq2uro8EfSgr
gHThtpMarX9hLQdJyiato19S/nmCH1wWRIbpCQWoqFbsd5T3pV9WXiY4ppSiLEe6
9OREJ+Xj2QSSvvwFmp1u33ZZYhMXHVJEm4YA3zefyTZ15tiwpw93A4OUlBGf/0VH
3mWtLgc3bSaVATHY29abWv7JzYrb7odt704PkYC7P3iZhw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org