Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/goI2k8LwHXkTDqkcZnRmaxojXH0.roa
File: goI2k8LwHXkTDqkcZnRmaxojXH0.roa (raw, json)
Hash identifier: LgVSPJBka72zPPLFn4dj8uIfa6QsMLHkNOBe+9vBgqI=
Subject key identifier: 82:82:36:93:C2:F0:1D:79:13:0E:A9:1C:66:74:66:6B:1A:23:5C:7D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B7C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/goI2k8LwHXkTDqkcZnRmaxojXH0.roa
Signing time: Sun 07 Feb 2021 06:21:33 +0000
ROA not before: Sun 07 Feb 2021 06:21:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 60.245.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2940 (0xb7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:21:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=82823693C2F01D79130EA91C6674666B1A235C7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e7:8c:b3:49:5c:8b:72:d7:48:98:11:61:79:
58:5a:dd:3c:d8:9f:bb:7b:a5:66:25:f3:0b:d7:be:
55:2c:8e:99:c1:e9:3d:b1:f0:4b:04:e4:8f:bc:09:
98:9b:f5:58:43:9d:33:eb:71:ee:88:5e:de:67:42:
26:5a:94:fa:18:f6:02:0a:2f:c7:38:b1:fc:70:06:
4a:d2:59:a9:df:bb:33:8b:c4:dd:ec:3b:ef:62:89:
54:b8:a6:f0:f3:b6:ef:1a:93:69:35:8f:49:f6:49:
d0:aa:9d:60:50:10:6e:db:b2:98:45:e9:f1:26:f4:
de:f5:22:e3:a2:76:65:5a:17:b3:64:91:c3:ff:d3:
51:0b:28:af:ad:ad:47:11:e7:ee:34:7f:5f:dc:d9:
a6:6b:2b:38:e2:dc:56:e8:b6:3f:19:61:10:51:34:
1f:14:5f:c4:19:ec:01:ff:b0:e4:7e:a5:7a:ed:56:
6f:94:75:14:e6:8d:1c:9d:a1:13:ac:97:ee:82:09:
0b:35:c9:3c:2e:60:1e:f7:07:a5:4a:9e:8e:5d:e3:
c1:5c:15:7a:42:e1:86:e8:89:56:67:95:2c:5b:cf:
b3:52:33:9e:da:ba:8c:20:37:bc:1d:29:52:e4:0a:
87:e4:b4:cb:25:a1:68:51:9d:c6:7a:49:f0:40:97:
5c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:82:36:93:C2:F0:1D:79:13:0E:A9:1C:66:74:66:6B:1A:23:5C:7D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/goI2k8LwHXkTDqkcZnRmaxojXH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.96.0/19
Signature Algorithm: sha256WithRSAEncryption
4f:8f:46:7f:44:3b:c2:ae:e2:59:5d:2a:db:3d:7a:89:30:2d:
6b:47:1a:de:9e:aa:29:e2:7d:10:8c:da:26:a1:03:e5:46:ef:
45:80:81:21:0f:b3:c0:eb:22:d2:09:00:0a:f2:c3:d4:b9:fb:
64:86:15:72:68:e7:7b:1b:c3:11:77:a3:32:ce:8f:96:70:bd:
77:6e:0f:70:c7:39:8c:8b:9d:49:7a:dd:bb:99:be:5d:be:1e:
aa:88:5f:de:8e:28:9b:92:4a:61:06:56:63:de:5f:43:4b:8b:
f0:a0:54:10:46:65:45:b0:72:44:e6:1f:67:24:e7:b0:d5:f1:
53:4e:a4:59:14:ff:a6:3e:4b:46:67:61:b2:ca:b2:3a:9d:6b:
48:0e:ef:80:f3:5c:79:8b:ff:52:c9:23:d8:81:ee:58:96:24:
f8:d0:fd:4d:b5:3a:79:0d:d6:24:28:5a:40:18:8b:cd:c7:d6:
9e:06:39:aa:76:af:d7:15:73:59:b5:e3:eb:e7:22:3e:29:52:
7b:ae:ea:ce:b4:22:b6:e6:65:ef:d7:00:5e:96:11:99:17:88:
3b:66:03:9f:af:1a:c9:54:4a:1c:dc:6b:a0:78:9e:75:1a:31:
95:54:ca:a7:cc:c8:1b:81:5d:7e:bf:4d:4c:17:3f:b4:ab:57:
cb:23:41:c7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NjIxMzNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDgyODIzNjkzQzJGMDFE
NzkxMzBFQTkxQzY2NzQ2NjZCMUEyMzVDN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC754yzSVyLctdImBFheVha3TzYn7t7pWYl8wvXvlUsjpnB6T2x
8EsE5I+8CZib9VhDnTPrce6IXt5nQiZalPoY9gIKL8c4sfxwBkrSWanfuzOLxN3s
O+9iiVS4pvDztu8ak2k1j0n2SdCqnWBQEG7bsphF6fEm9N71IuOidmVaF7NkkcP/
01ELKK+trUcR5+40f1/c2aZrKzji3Fbotj8ZYRBRNB8UX8QZ7AH/sOR+pXrtVm+U
dRTmjRydoROsl+6CCQs1yTwuYB73B6VKno5d48FcFXpC4YboiVZnlSxbz7NSM57a
uowgN7wdKVLkCofktMsloWhRncZ6SfBAl1zfAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUgoI2k8LwHXkTDqkcZnRmaxojXH0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZ29JMms4THdIWGtURHFrY1puUm1h
eG9qWEgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTz1YDAN
BgkqhkiG9w0BAQsFAAOCAQEAT49Gf0Q7wq7iWV0q2z16iTAta0ca3p6qKeJ9EIza
JqED5UbvRYCBIQ+zwOsi0gkACvLD1Ln7ZIYVcmjnexvDEXejMs6PlnC9d24PcMc5
jIudSXrdu5m+Xb4eqohf3o4om5JKYQZWY95fQ0uL8KBUEEZlRbByROYfZyTnsNXx
U06kWRT/pj5LRmdhssqyOp1rSA7vgPNceYv/Uskj2IHuWJYk+ND9TbU6eQ3WJCha
QBiLzcfWngY5qnav1xVzWbXj6+ciPilSe67qzrQituZl79cAXpYRmReIO2YDn68a
yVRKHNxroHiedRoxlVTKp8zIG4Fdfr9NTBc/tKtXyyNBxw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org