Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/g58Qo8Ii15P1qudIKPYlEp8A6oY.roa
File: g58Qo8Ii15P1qudIKPYlEp8A6oY.roa (raw, json)
Hash identifier: 5MwVXWeAP5DbthyfSv/UAr2u7tFqkqArj6hNIvpRa/c=
Subject key identifier: 83:9F:10:A3:C2:22:D7:93:F5:AA:E7:48:28:F6:25:12:9F:00:EA:86
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DF4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/g58Qo8Ii15P1qudIKPYlEp8A6oY.roa
Signing time: Wed 29 Sep 2021 02:43:01 +0000
ROA not before: Wed 29 Sep 2021 02:43:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 60.245.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3572 (0xdf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=839F10A3C222D793F5AAE74828F625129F00EA86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:01:c7:5b:7a:2a:4f:db:ac:93:d3:dd:80:ef:
07:7b:2a:ac:4b:69:da:75:3b:85:4b:c0:f2:d0:65:
30:54:80:a5:13:b8:08:d6:e0:95:19:4e:7a:d0:20:
ea:ba:ec:d7:2e:1e:09:78:81:56:0d:52:50:ad:99:
eb:22:1a:50:57:91:4f:d8:00:70:48:48:0e:a4:6b:
fe:06:85:c7:d6:c7:2f:30:33:4a:fd:03:8c:9f:cc:
76:a1:98:08:e6:f5:e6:76:b2:50:61:36:0c:2e:72:
6a:59:e4:fd:f2:3d:29:e9:20:7b:ff:65:68:f2:46:
c0:5b:ad:d0:21:38:0a:1b:e3:83:ca:34:a7:93:81:
24:47:be:9b:e0:00:40:44:40:12:7a:28:60:c3:16:
19:20:46:6f:51:1c:6f:fb:5f:80:91:9c:7b:ae:19:
7b:9b:97:79:85:b1:3b:ec:fc:8c:a8:bc:d8:d5:59:
7c:21:89:ad:57:30:7c:fa:ea:37:71:bb:fa:bb:3b:
68:df:55:b7:8f:2b:5a:f0:0a:e2:dd:c8:f7:f8:0d:
d4:01:75:31:d2:cd:fc:5a:80:a5:33:31:bf:85:87:
75:91:97:cc:21:e6:ac:a9:24:00:69:ff:45:76:0a:
fc:66:23:87:17:89:ee:84:83:de:e8:bc:80:58:5e:
90:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9F:10:A3:C2:22:D7:93:F5:AA:E7:48:28:F6:25:12:9F:00:EA:86
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/g58Qo8Ii15P1qudIKPYlEp8A6oY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.96.0/19
Signature Algorithm: sha256WithRSAEncryption
9d:64:c3:fb:0a:9a:f2:bc:c0:43:7d:45:18:13:a1:bf:b0:6d:
09:e9:13:f9:e1:a9:f9:bc:6e:b4:a4:14:3a:e0:50:1a:91:aa:
c6:ac:17:ed:16:25:04:9e:21:88:63:14:5e:32:79:cd:d5:4a:
94:dd:68:bf:70:6e:21:1d:a7:da:b5:eb:35:3c:3d:56:0e:a9:
73:37:ba:34:80:d6:db:2f:0f:a8:37:db:65:21:30:07:13:41:
e8:b9:f7:bb:77:7a:5f:e0:97:8e:14:39:75:e7:1f:9f:aa:9d:
d2:ee:b6:d6:3d:23:7c:87:b7:04:13:72:57:fc:ea:69:a0:2a:
83:cb:5e:77:7d:94:85:e7:e6:e1:93:7a:02:59:f7:7c:fc:52:
56:e1:2a:eb:b0:48:47:22:fe:4e:61:21:fd:38:28:7c:90:e3:
17:df:5a:20:dd:2a:4d:0d:47:2a:59:cd:b5:14:3e:b8:cb:02:
5f:19:9f:ec:c1:b7:e9:e8:2f:bb:a8:7c:8a:24:f3:b5:6d:b1:
8f:56:77:99:4c:0a:3e:36:86:6c:fb:06:bd:aa:be:42:72:0c:
a8:b8:4b:de:e9:0b:de:9e:9a:7a:71:e9:43:3c:e5:e1:0f:df:
48:6e:d8:83:3e:63:96:70:69:77:4e:2f:d8:cf:51:cb:9e:1f:
1b:23:89:12
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDgzOUYxMEEzQzIyMkQ3
OTNGNUFBRTc0ODI4RjYyNTEyOUYwMEVBODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFAcdbeipP26yT092A7wd7KqxLadp1O4VLwPLQZTBUgKUTuAjW
4JUZTnrQIOq67NcuHgl4gVYNUlCtmesiGlBXkU/YAHBISA6ka/4GhcfWxy8wM0r9
A4yfzHahmAjm9eZ2slBhNgwucmpZ5P3yPSnpIHv/ZWjyRsBbrdAhOAob44PKNKeT
gSRHvpvgAEBEQBJ6KGDDFhkgRm9RHG/7X4CRnHuuGXubl3mFsTvs/IyovNjVWXwh
ia1XMHz66jdxu/q7O2jfVbePK1rwCuLdyPf4DdQBdTHSzfxagKUzMb+Fh3WRl8wh
5qypJABp/0V2CvxmI4cXie6Eg97ovIBYXpBpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUg58Qo8Ii15P1qudIKPYlEp8A6oYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZzU4UW84SWkxNVAxcXVkSUtQWWxF
cDhBNm9ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTz1YDAN
BgkqhkiG9w0BAQsFAAOCAQEAnWTD+wqa8rzAQ31FGBOhv7BtCekT+eGp+bxutKQU
OuBQGpGqxqwX7RYlBJ4hiGMUXjJ5zdVKlN1ov3BuIR2n2rXrNTw9Vg6pcze6NIDW
2y8PqDfbZSEwBxNB6Ln3u3d6X+CXjhQ5decfn6qd0u621j0jfIe3BBNyV/zqaaAq
g8ted32Uhefm4ZN6Aln3fPxSVuEq67BIRyL+TmEh/TgofJDjF99aIN0qTQ1HKlnN
tRQ+uMsCXxmf7MG36egvu6h8iiTztW2xj1Z3mUwKPjaGbPsGvaq+QnIMqLhL3ukL
3p6aenHpQzzl4Q/fSG7Ygz5jlnBpd04v2M9Ry54fGyOJEg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org