Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/e9KkEKiufDmziKqSMy2XN8Q-7H4.roa
File: e9KkEKiufDmziKqSMy2XN8Q-7H4.roa (raw, json)
Hash identifier: bUybmGqLD2Pqq7Tx/fDgh0QBOlzRPckWQx5Wqgb9Mqs=
Subject key identifier: 7B:D2:A4:10:A8:AE:7C:39:B3:88:AA:92:33:2D:97:37:C4:3E:EC:7E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BD2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e9KkEKiufDmziKqSMy2XN8Q-7H4.roa
Signing time: Sun 07 Feb 2021 06:36:16 +0000
ROA not before: Sun 07 Feb 2021 06:36:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.74.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3026 (0xbd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:36:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7BD2A410A8AE7C39B388AA92332D9737C43EEC7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:84:50:39:ff:28:9a:41:50:10:78:16:a6:ca:
50:a5:74:be:b3:58:c3:2a:b1:ab:d5:14:62:f2:56:
29:5a:b1:cc:2f:8e:47:87:d0:76:75:78:39:59:55:
71:fc:2c:13:0e:6e:0c:d4:f5:43:6f:85:03:48:fb:
ab:30:83:21:30:ec:ab:57:11:68:9e:f5:06:fc:49:
ae:76:ae:71:6e:5f:4b:af:ab:ac:2d:7e:37:7e:84:
fd:66:c0:e0:9a:20:21:29:3f:9b:dd:1d:19:3c:5c:
57:bd:00:83:d0:1f:5a:43:7a:3c:ac:95:ee:0f:10:
97:9a:16:42:70:6b:85:08:de:25:71:d3:67:7f:54:
b6:b6:c7:3f:32:8b:1e:a6:62:c3:e1:da:fe:06:80:
5d:52:1f:40:33:dd:8d:6b:83:5d:f1:db:6e:bb:fa:
12:ea:a8:f8:b0:77:d9:c7:06:94:9d:78:55:70:91:
9f:1b:82:a9:ed:80:73:36:cc:59:04:2e:c7:47:1b:
52:a1:a2:9b:fe:13:1f:07:3d:00:c8:76:28:b9:3b:
c6:97:ed:e4:c2:fc:57:c6:59:bc:e6:06:ca:5c:bd:
33:24:d4:e7:2f:f6:32:85:95:79:44:cc:7f:eb:b2:
ef:3e:a6:5c:50:9c:5d:74:5c:98:70:c7:62:85:fb:
31:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D2:A4:10:A8:AE:7C:39:B3:88:AA:92:33:2D:97:37:C4:3E:EC:7E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e9KkEKiufDmziKqSMy2XN8Q-7H4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b1:ea:fb:a0:40:d2:bc:f3:1c:8a:ee:ad:14:17:3b:a1:bc:3d:
a3:f9:bc:b5:8a:10:1a:e2:85:5a:40:18:57:24:16:dd:9e:b6:
01:ba:23:56:0f:85:c9:8c:0e:b7:8e:fd:7c:ec:a0:cb:35:9d:
cd:9c:19:83:f4:0f:f1:25:37:89:50:13:f5:e8:f3:d6:99:87:
5a:2e:f3:86:0c:9a:15:c4:d6:0a:44:e4:c3:f2:10:96:be:fb:
7c:be:85:3d:5a:da:f1:0e:22:c4:6a:03:28:80:01:ef:47:21:
72:fa:0b:19:0e:54:2c:ab:56:0c:6c:0d:0d:bd:60:aa:fb:f7:
e8:4a:38:bf:8a:d1:6b:7a:7d:19:ca:7e:ee:2e:df:fa:b0:15:
7a:29:2f:eb:e9:80:6e:89:29:9b:56:f9:62:e7:1f:eb:ad:d6:
cd:2d:e4:f4:64:c0:a2:30:de:c2:5f:e3:a4:c4:6b:0c:9c:eb:
ae:69:cf:7a:8f:9a:2d:4c:a6:02:b2:06:52:99:a3:bf:bc:3c:
04:c7:87:39:91:9b:6e:08:80:63:1a:12:54:1a:80:a6:ee:2c:
8d:df:1a:6e:65:ba:39:ed:84:4e:ff:fe:ed:4b:08:a0:62:cb:
6f:6b:d3:4c:ca:c2:12:58:f3:40:6d:99:c9:29:b9:14:22:5b:
2c:1d:cd:fc
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC9IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjM2MTZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDdCRDJBNDEwQThBRTdD
MzlCMzg4QUE5MjMzMkQ5NzM3QzQzRUVDN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRhFA5/yiaQVAQeBamylCldL6zWMMqsavVFGLyVilascwvjkeH
0HZ1eDlZVXH8LBMObgzU9UNvhQNI+6swgyEw7KtXEWie9Qb8Sa52rnFuX0uvq6wt
fjd+hP1mwOCaICEpP5vdHRk8XFe9AIPQH1pDejysle4PEJeaFkJwa4UI3iVx02d/
VLa2xz8yix6mYsPh2v4GgF1SH0Az3Y1rg13x2267+hLqqPiwd9nHBpSdeFVwkZ8b
gqntgHM2zFkELsdHG1Khopv+Ex8HPQDIdii5O8aX7eTC/FfGWbzmBspcvTMk1Ocv
9jKFlXlEzH/rsu8+plxQnF10XJhwx2KF+zHFAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUe9KkEKiufDmziKqSMy2XN8Q+7H4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZTlLa0VLaXVmRG16aUtxU015MlhO
OFEtN0g0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9NKADAN
BgkqhkiG9w0BAQsFAAOCAQEAser7oEDSvPMciu6tFBc7obw9o/m8tYoQGuKFWkAY
VyQW3Z62AbojVg+FyYwOt479fOygyzWdzZwZg/QP8SU3iVAT9ejz1pmHWi7zhgya
FcTWCkTkw/IQlr77fL6FPVra8Q4ixGoDKIAB70chcvoLGQ5ULKtWDGwNDb1gqvv3
6Eo4v4rRa3p9Gcp+7i7f+rAVeikv6+mAbokpm1b5Yucf663WzS3k9GTAojDewl/j
pMRrDJzrrmnPeo+aLUymArIGUpmjv7w8BMeHOZGbbgiAYxoSVBqApu4sjd8abmW6
Oe2ETv/+7UsIoGLLb2vTTMrCEljzQG2ZySm5FCJbLB3N/A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org