Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/drQ6KqrohcZT6B5C1nJ6KHDFt3Y.roa
File: drQ6KqrohcZT6B5C1nJ6KHDFt3Y.roa (raw, json)
Hash identifier: Acm6L20f+VJoz68f8jWokaOUsAItGyuVxAq/q/6xBMQ=
Subject key identifier: 76:B4:3A:2A:AA:E8:85:C6:53:E8:1E:42:D6:72:7A:28:70:C5:B7:76
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C4F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/drQ6KqrohcZT6B5C1nJ6KHDFt3Y.roa
Signing time: Sun 07 Feb 2021 11:42:49 +0000
ROA not before: Sun 07 Feb 2021 11:42:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3151 (0xc4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:42:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=76B43A2AAAE885C653E81E42D6727A2870C5B776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4a:8c:ea:c6:84:35:9d:dc:be:01:e3:66:cc:
b2:16:1a:a6:80:c7:74:00:99:ab:eb:00:de:ca:91:
8c:2a:00:04:a5:71:30:eb:02:01:e9:48:cf:73:04:
0f:c9:16:5a:04:f9:4c:af:c4:9b:6f:fd:9a:9c:b5:
ed:3d:df:fd:9e:70:06:5d:59:04:a3:23:9d:12:8f:
0a:bd:e6:42:60:ee:77:d6:d5:e6:3e:9f:50:15:11:
58:2e:fc:74:a0:3b:c8:36:46:da:87:aa:62:57:3d:
d7:7e:84:e6:f0:90:67:d8:92:58:d0:ba:5a:80:99:
8e:b6:be:c9:87:a9:8f:18:f4:99:1b:d7:65:b6:cc:
25:be:db:5c:09:73:0f:a0:04:23:8b:0c:3f:6a:ec:
ff:d2:a1:c7:fc:df:7d:bb:87:4a:07:dc:25:b5:d5:
3e:6d:5e:80:03:b3:35:0a:17:e8:f9:47:4f:dc:8e:
05:f2:f9:96:a6:b3:5e:e5:b0:bc:8e:0b:d0:88:51:
92:98:93:f3:fe:ae:ce:7c:d3:fb:12:d9:f0:b8:91:
29:bd:75:04:02:b9:0f:42:5e:bc:4e:ae:6e:3c:ca:
2c:9e:db:76:61:d9:50:f1:b0:1e:7c:9f:ea:65:54:
8c:57:f7:32:cd:41:a5:c8:7d:6b:58:96:c5:8b:4c:
85:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B4:3A:2A:AA:E8:85:C6:53:E8:1E:42:D6:72:7A:28:70:C5:B7:76
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/drQ6KqrohcZT6B5C1nJ6KHDFt3Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.0.0/18
Signature Algorithm: sha256WithRSAEncryption
8a:f9:6d:ca:a1:8f:e1:14:27:de:ef:f7:ad:09:39:ca:e0:3d:
91:c9:78:2c:fe:2c:86:49:77:c8:7f:d6:16:aa:f7:25:12:76:
37:43:bc:15:89:ff:31:b5:7d:98:20:20:9f:94:49:d0:00:a0:
b8:18:0f:63:78:da:12:c2:0b:25:4d:51:e1:43:a2:ef:4e:4a:
99:63:10:67:d0:9e:45:dd:c7:95:cc:6d:2b:f5:e9:d5:7c:a0:
80:8b:1c:ee:f7:fd:0f:e2:36:7a:b2:26:98:96:fc:6c:8d:2f:
84:53:36:e6:4e:60:e4:e2:da:f5:ad:e1:51:05:61:43:9a:6b:
2c:0c:12:7d:4c:2b:f0:5f:52:1b:85:4f:f5:e6:82:94:0b:2f:
63:a4:a9:00:de:e8:53:07:f7:a8:d3:48:20:78:39:5c:b0:be:
e4:3f:fa:8b:10:44:cf:8e:d2:37:54:e1:28:ec:dd:b8:57:5d:
3d:c8:6c:83:83:ca:94:b1:2e:44:6a:82:2c:d2:12:00:1b:fa:
5a:87:9f:56:d5:e9:d4:0c:83:c1:ee:9e:57:9e:a3:f3:e2:17:
bb:b5:5b:a9:95:37:74:0a:73:f7:89:2a:0e:57:6a:62:93:bc:
94:a2:cd:f4:69:2c:40:e5:9a:ec:fc:1e:cb:8c:f9:40:d7:ee:
96:64:ac:8d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQyNDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc2QjQzQTJBQUFFODg1
QzY1M0U4MUU0MkQ2NzI3QTI4NzBDNUI3NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCZSozqxoQ1ndy+AeNmzLIWGqaAx3QAmavrAN7KkYwqAASlcTDr
AgHpSM9zBA/JFloE+UyvxJtv/Zqcte093/2ecAZdWQSjI50Sjwq95kJg7nfW1eY+
n1AVEVgu/HSgO8g2RtqHqmJXPdd+hObwkGfYkljQulqAmY62vsmHqY8Y9Jkb12W2
zCW+21wJcw+gBCOLDD9q7P/Socf83327h0oH3CW11T5tXoADszUKF+j5R0/cjgXy
+Zams17lsLyOC9CIUZKYk/P+rs580/sS2fC4kSm9dQQCuQ9CXrxOrm48yiye23Zh
2VDxsB58n+plVIxX9zLNQaXIfWtYlsWLTIW1AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUdrQ6KqrohcZT6B5C1nJ6KHDFt3YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZHJRNktxcm9oY1pUNkI1QzFuSjZL
SERGdDNZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnqSADAN
BgkqhkiG9w0BAQsFAAOCAQEAivltyqGP4RQn3u/3rQk5yuA9kcl4LP4shkl3yH/W
Fqr3JRJ2N0O8FYn/MbV9mCAgn5RJ0ACguBgPY3jaEsILJU1R4UOi705KmWMQZ9Ce
Rd3HlcxtK/Xp1XyggIsc7vf9D+I2erImmJb8bI0vhFM25k5g5OLa9a3hUQVhQ5pr
LAwSfUwr8F9SG4VP9eaClAsvY6SpAN7oUwf3qNNIIHg5XLC+5D/6ixBEz47SN1Th
KOzduFddPchsg4PKlLEuRGqCLNISABv6WoefVtXp1AyDwe6eV56j8+IXu7VbqZU3
dApz94kqDldqYpO8lKLN9GksQOWa7Pwey4z5QNfulmSsjQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org