Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dS2V9Ho12SyL0yeHHs0BA2_dkXc.roa
File: dS2V9Ho12SyL0yeHHs0BA2_dkXc.roa (raw, json)
Hash identifier: rE/HEPvkvRSDyObga6PFA0JdX96J7jgf39E1tADCF5Q=
Subject key identifier: 75:2D:95:F4:7A:35:D9:2C:8B:D3:27:87:1E:CD:01:03:6F:DD:91:77
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E49
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dS2V9Ho12SyL0yeHHs0BA2_dkXc.roa
Signing time: Wed 29 Sep 2021 02:43:24 +0000
ROA not before: Wed 29 Sep 2021 02:43:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 60.245.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3657 (0xe49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=752D95F47A35D92C8BD327871ECD01036FDD9177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:35:b8:ca:fa:57:9f:54:04:6e:87:e4:d8:19:
0f:21:cd:50:30:69:fa:ea:db:1b:87:f8:19:09:a6:
c6:b4:86:0f:28:51:cd:d2:8c:3c:e2:9e:9c:35:63:
b1:52:64:73:bb:9f:58:51:98:da:ba:45:c1:7f:2a:
45:a9:bb:72:6d:59:ac:55:4f:3c:63:5d:9b:8e:42:
e2:63:73:f9:c5:20:0f:54:4c:2c:65:ab:8e:ff:df:
2a:e4:9f:89:df:ec:be:e8:43:25:7e:06:c9:cd:66:
6c:1d:26:0c:99:27:b0:f2:39:c8:5e:1b:d9:5d:1e:
c5:58:6b:0c:ee:c3:34:4d:cb:bd:8a:c7:27:9e:46:
35:bf:23:10:57:b0:cb:6e:93:41:58:de:e0:01:24:
cf:c8:08:54:b1:3f:c4:09:18:c8:1f:aa:52:a9:2f:
b6:31:1c:48:f2:bf:ea:a6:e6:78:66:50:5d:6f:9d:
e0:76:84:6f:6f:c0:92:bc:3f:5d:19:fb:a8:e4:a7:
96:03:8c:b3:d6:28:a0:f3:24:ad:41:77:72:8c:0a:
fa:d6:0b:15:c0:8e:65:34:49:61:59:37:73:b9:05:
3c:a8:7a:71:a0:1b:6c:d3:d9:5f:2f:1f:e4:77:a2:
5a:c1:ac:21:1d:36:79:cd:23:7a:20:49:67:34:0b:
c5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2D:95:F4:7A:35:D9:2C:8B:D3:27:87:1E:CD:01:03:6F:DD:91:77
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dS2V9Ho12SyL0yeHHs0BA2_dkXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.120.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:0f:c5:96:55:78:8c:49:1b:c5:aa:64:d1:3a:c5:08:84:4d:
2f:99:91:d8:50:d8:d6:fd:59:78:8b:56:a4:29:ce:df:d6:a3:
d3:bc:14:38:bf:5e:ba:91:e2:f7:f3:5c:ef:d2:9d:3d:92:c9:
47:e4:2e:c5:49:32:d4:9f:8b:29:60:4b:ca:d1:42:8a:1d:84:
cc:60:f7:2c:b9:bc:54:c5:da:33:f0:1a:68:a0:3d:7b:cf:89:
55:fa:67:c3:03:2f:9d:01:bc:01:0d:5b:ea:31:bf:bc:6a:dd:
ca:68:c5:d6:13:cb:76:3b:19:8c:17:02:e5:5f:9b:13:44:72:
19:53:e2:9e:56:27:b5:77:de:d2:18:0e:8e:c9:0b:72:e5:46:
91:ab:87:ea:25:9c:50:f3:27:42:78:f0:c5:e9:43:48:a7:a0:
92:83:78:af:97:3e:90:12:73:a8:ac:ae:9c:ac:3f:89:3a:70:
48:96:66:09:90:a3:04:1b:ce:13:27:37:8a:c8:91:1a:e1:17:
7b:03:3c:5c:8f:ef:e8:15:9d:e2:58:74:32:5c:6d:96:9b:64:
c5:c8:db:93:db:96:fc:4e:6d:2d:c6:34:b1:2a:e2:38:38:89:
f6:d8:4d:d0:12:58:30:25:ce:a1:81:14:94:60:64:b6:f8:8a:
80:ab:a7:6d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMjRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDc1MkQ5NUY0N0EzNUQ5
MkM4QkQzMjc4NzFFQ0QwMTAzNkZERDkxNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCVNbjK+lefVARuh+TYGQ8hzVAwafrq2xuH+BkJpsa0hg8oUc3S
jDzinpw1Y7FSZHO7n1hRmNq6RcF/KkWpu3JtWaxVTzxjXZuOQuJjc/nFIA9UTCxl
q47/3yrkn4nf7L7oQyV+BsnNZmwdJgyZJ7DyOcheG9ldHsVYawzuwzRNy72Kxyee
RjW/IxBXsMtuk0FY3uABJM/ICFSxP8QJGMgfqlKpL7YxHEjyv+qm5nhmUF1vneB2
hG9vwJK8P10Z+6jkp5YDjLPWKKDzJK1Bd3KMCvrWCxXAjmU0SWFZN3O5BTyoenGg
G2zT2V8vH+R3olrBrCEdNnnNI3ogSWc0C8WjAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUdS2V9Ho12SyL0yeHHs0BA2/dkXcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZFMyVjlIbzEyU3lMMHllSEhzMEJB
Ml9ka1hjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzz1eDAN
BgkqhkiG9w0BAQsFAAOCAQEAKg/FllV4jEkbxapk0TrFCIRNL5mR2FDY1v1ZeItW
pCnO39aj07wUOL9eupHi9/Nc79KdPZLJR+QuxUky1J+LKWBLytFCih2EzGD3LLm8
VMXaM/AaaKA9e8+JVfpnwwMvnQG8AQ1b6jG/vGrdymjF1hPLdjsZjBcC5V+bE0Ry
GVPinlYntXfe0hgOjskLcuVGkauH6iWcUPMnQnjwxelDSKegkoN4r5c+kBJzqKyu
nKw/iTpwSJZmCZCjBBvOEyc3isiRGuEXewM8XI/v6BWd4lh0Mlxtlptkxcjbk9uW
/E5tLcY0sSriODiJ9thN0BJYMCXOoYEUlGBktviKgKunbQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org