Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/eSe7bnP3OhFX-kGmzldMcz3Tq9A.roa
File: eSe7bnP3OhFX-kGmzldMcz3Tq9A.roa (raw, json)
Hash identifier: gy7YDzEpOi7GLvaQbdTGinHjVv7rmWZ2J0C2yLUSpLE=
Subject key identifier: 79:27:BB:6E:73:F7:3A:11:57:FA:41:A6:CE:57:4C:73:3D:D3:AB:D0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C53
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eSe7bnP3OhFX-kGmzldMcz3Tq9A.roa
Signing time: Sun 07 Feb 2021 11:42:54 +0000
ROA not before: Sun 07 Feb 2021 11:42:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.229.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3155 (0xc53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:42:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7927BB6E73F73A1157FA41A6CE574C733DD3ABD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:e4:2b:4d:7f:3a:4c:64:03:bf:e5:11:66:
ba:84:cd:5a:bf:d2:79:ea:cb:1f:e7:53:49:cd:16:
74:6e:ff:ec:55:73:88:3d:f1:f3:99:0c:00:e6:de:
16:81:26:d3:2a:1e:ac:be:cd:80:13:f1:59:11:cd:
d1:8b:81:36:4f:9c:84:bc:3e:ec:93:e9:7a:e7:1c:
6a:ed:2b:f7:11:c2:60:63:65:49:19:ce:9d:86:f4:
06:af:91:0e:6a:e5:b6:ee:8a:5c:f4:2d:9e:9b:8a:
66:be:49:d7:b8:fa:4a:c9:cc:93:7f:43:23:6a:36:
69:90:6e:2c:08:84:76:e5:e9:87:60:8c:f4:8b:ff:
8a:04:63:02:28:5d:78:92:9c:74:66:44:99:65:16:
78:64:e4:5b:44:27:65:0f:5a:a6:2e:be:83:ef:e9:
b8:de:a6:8b:19:25:68:d2:ce:7c:d2:3b:ff:2c:dc:
53:e5:d2:76:d9:71:8d:68:a1:41:7a:fd:76:2d:1d:
a9:72:ec:0f:f8:f6:6d:41:3b:47:ef:2a:88:44:7a:
99:5f:f8:01:e2:b3:60:56:e2:af:19:4a:aa:86:61:
5f:b9:c4:e1:63:81:93:61:0c:6c:76:47:08:6d:be:
ae:34:af:42:ec:c9:3f:d4:b3:f4:ff:63:64:5d:38:
a3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:27:BB:6E:73:F7:3A:11:57:FA:41:A6:CE:57:4C:73:3D:D3:AB:D0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eSe7bnP3OhFX-kGmzldMcz3Tq9A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/18
Signature Algorithm: sha256WithRSAEncryption
7c:45:d3:d8:c5:99:b3:03:ca:35:6f:a8:3a:a5:f7:68:af:d8:
19:1f:d1:18:c9:e7:8f:fa:cd:2c:17:6d:7e:fe:7e:5c:0d:3f:
35:8f:2e:8c:4b:9a:02:49:34:03:f4:c4:a2:e4:9e:fa:46:c8:
64:44:72:87:e2:d2:77:d5:3e:ba:1a:ab:05:07:4c:f2:05:41:
bc:e5:55:1f:a4:5b:a2:2d:30:59:d4:c0:f2:39:dc:20:f8:29:
e9:f5:4e:1d:8a:52:61:c7:a0:df:90:a9:ac:c9:cf:0a:25:a7:
ab:34:69:83:5f:f9:89:df:0c:1b:7d:38:17:56:8c:7b:bf:62:
1b:b0:f0:29:f5:1b:11:07:11:9a:eb:76:3d:9d:e9:6d:e5:3e:
e5:27:3b:ec:7a:70:1e:78:1e:4e:da:bc:c5:30:24:33:02:57:
62:55:c8:fb:1a:75:23:8e:0f:ed:37:98:0f:5c:70:f5:4d:49:
05:54:50:4b:53:97:90:4a:19:85:a5:3c:f3:61:57:4a:30:64:
50:ae:78:d9:a6:84:90:9c:e0:48:21:db:b1:91:45:f5:12:28:
f5:18:eb:a8:90:2f:3e:ef:ce:e8:e3:63:25:15:99:27:bd:44:
f0:87:8e:eb:2a:ef:09:69:c7:ff:c6:89:48:06:c5:f8:85:27:
96:61:9a:1d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQyNTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc5MjdCQjZFNzNGNzNB
MTE1N0ZBNDFBNkNFNTc0QzczM0REM0FCRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8o+QrTX86TGQDv+URZrqEzVq/0nnqyx/nU0nNFnRu/+xVc4g9
8fOZDADm3haBJtMqHqy+zYAT8VkRzdGLgTZPnIS8PuyT6XrnHGrtK/cRwmBjZUkZ
zp2G9AavkQ5q5bbuilz0LZ6bima+Sde4+krJzJN/QyNqNmmQbiwIhHbl6YdgjPSL
/4oEYwIoXXiSnHRmRJllFnhk5FtEJ2UPWqYuvoPv6bjeposZJWjSznzSO/8s3FPl
0nbZcY1ooUF6/XYtHaly7A/49m1BO0fvKohEeplf+AHis2BW4q8ZSqqGYV+5xOFj
gZNhDGx2Rwhtvq40r0LsyT/Us/T/Y2RdOKMNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUeSe7bnP3OhFX+kGmzldMcz3Tq9AwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZVNlN2JuUDNPaEZYLWtHbXpsZE1j
ejNUcTlBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtzlADAN
BgkqhkiG9w0BAQsFAAOCAQEAfEXT2MWZswPKNW+oOqX3aK/YGR/RGMnnj/rNLBdt
fv5+XA0/NY8ujEuaAkk0A/TEouSe+kbIZERyh+LSd9U+uhqrBQdM8gVBvOVVH6Rb
oi0wWdTA8jncIPgp6fVOHYpSYceg35CprMnPCiWnqzRpg1/5id8MG304F1aMe79i
G7DwKfUbEQcRmut2PZ3pbeU+5Sc77HpwHngeTtq8xTAkMwJXYlXI+xp1I44P7TeY
D1xw9U1JBVRQS1OXkEoZhaU882FXSjBkUK542aaEkJzgSCHbsZFF9RIo9RjrqJAv
Pu/O6ONjJRWZJ71E8IeO6yrvCWnH/8aJSAbF+IUnlmGaHQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org