Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gtTs6cQ8PFgxI-dmkz0uZr92FRY.roa
File: gtTs6cQ8PFgxI-dmkz0uZr92FRY.roa (raw, json)
Hash identifier: ay/HBW+mp2XkgaGipznwuaDOey8a3sZ2RldbpObmP9I=
Subject key identifier: 82:D4:EC:E9:C4:3C:3C:58:31:23:E7:66:93:3D:2E:66:BF:76:15:16
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A04
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gtTs6cQ8PFgxI-dmkz0uZr92FRY.roa
Signing time: Sun 07 Feb 2021 06:37:25 +0000
ROA not before: Sun 07 Feb 2021 06:37:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2564 (0xa04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:37:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=82D4ECE9C43C3C583123E766933D2E66BF761516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:93:a8:9f:37:1a:dc:23:d3:ac:ba:4f:02:
67:1c:0f:11:bd:35:bf:41:a2:3e:88:52:18:fe:08:
e4:00:e4:eb:77:e0:da:65:0e:f4:5a:76:8a:5a:c8:
89:ce:4c:9d:e8:34:27:a5:a0:5e:ef:8f:79:d9:c5:
f5:fe:bb:b9:78:c2:de:1f:53:2b:ad:18:de:00:3f:
76:ea:4c:0a:32:76:53:f5:20:d6:6a:7e:f1:c4:b2:
72:2f:c5:03:7a:cd:f0:fd:20:6b:3d:2d:cd:c1:64:
af:c5:57:1a:06:6e:ad:1f:b1:06:9e:46:39:54:14:
7e:24:1d:8b:67:29:37:7b:a4:79:10:d7:c6:b6:97:
e9:f3:10:f2:de:3f:f3:ec:50:a7:d2:3e:3e:a5:d5:
63:ea:9f:05:81:7b:18:79:ee:81:8e:7b:04:65:9e:
f1:c2:a6:d8:96:ba:93:7d:a5:4c:73:11:93:5e:1f:
d6:40:af:25:42:04:58:fa:35:6b:39:40:a4:81:b0:
91:7b:66:80:ef:92:ca:56:f5:63:be:29:bb:94:6a:
74:3a:3c:07:30:6e:c0:55:7d:c7:7e:69:47:f7:c3:
25:0c:72:3e:3f:34:4e:a7:c7:86:c0:00:2a:e2:79:
3e:e7:04:fc:35:76:5a:fb:9a:0e:b1:3c:b8:c5:2d:
e6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D4:EC:E9:C4:3C:3C:58:31:23:E7:66:93:3D:2E:66:BF:76:15:16
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gtTs6cQ8PFgxI-dmkz0uZr92FRY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:cd:d1:bf:d6:f0:38:b2:2b:f3:e2:43:36:d2:a5:ae:7d:93:
d7:33:73:72:d7:88:f7:e4:d5:1f:29:52:a8:0f:24:89:52:98:
75:04:ed:bf:34:ed:0e:dd:cf:68:92:c7:76:10:aa:1d:b3:86:
48:c4:3b:db:51:04:ca:46:39:97:01:84:63:c5:e6:5c:62:e1:
38:a1:4c:fc:43:c6:0b:f3:99:4f:5c:ae:06:73:f2:9b:75:bf:
25:9f:93:06:03:44:b6:f4:b6:9f:9a:eb:8b:10:e9:89:bd:65:
4c:64:35:ef:38:40:2a:f6:6e:ff:e3:57:de:b0:60:66:cd:8c:
17:bb:a0:ed:1e:52:85:0d:10:b7:01:fe:ef:79:38:d3:f8:6c:
c9:ed:01:99:5a:b8:c6:15:a2:11:91:b7:a3:00:b3:34:c9:cd:
61:4b:67:9a:e8:1c:46:b3:cb:cc:8e:e0:f4:d3:12:be:e7:48:
41:fe:45:54:6d:6b:45:4c:a2:24:65:ed:36:69:c5:e2:4c:46:
a5:d1:8d:46:0e:be:71:cc:34:b6:4c:37:d1:3f:6f:44:44:07:
cd:7f:47:73:1e:24:c8:c3:3f:7c:75:03:4c:ef:fa:9b:49:e5:
26:0f:9c:fe:7c:39:4a:02:8c:48:25:e9:92:b0:f4:57:4d:18:
1e:04:48:95
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjM3MjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDgyRDRFQ0U5QzQzQzND
NTgzMTIzRTc2NjkzM0QyRTY2QkY3NjE1MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyO5Oonzca3CPTrLpPAmccDxG9Nb9Boj6IUhj+COQA5Ot34Npl
DvRadopayInOTJ3oNCeloF7vj3nZxfX+u7l4wt4fUyutGN4AP3bqTAoydlP1INZq
fvHEsnIvxQN6zfD9IGs9Lc3BZK/FVxoGbq0fsQaeRjlUFH4kHYtnKTd7pHkQ18a2
l+nzEPLeP/PsUKfSPj6l1WPqnwWBexh57oGOewRlnvHCptiWupN9pUxzEZNeH9ZA
ryVCBFj6NWs5QKSBsJF7ZoDvkspW9WO+KbuUanQ6PAcwbsBVfcd+aUf3wyUMcj4/
NE6nx4bAACrieT7nBPw1dlr7mg6xPLjFLeYlAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUgtTs6cQ8PFgxI+dmkz0uZr92FRYwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZ3RUczZjUThQRmd4SS1kbWt6MHVa
cjkyRlJZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBI+DAN
BgkqhkiG9w0BAQsFAAOCAQEArs3Rv9bwOLIr8+JDNtKlrn2T1zNzcteI9+TVHylS
qA8kiVKYdQTtvzTtDt3PaJLHdhCqHbOGSMQ721EEykY5lwGEY8XmXGLhOKFM/EPG
C/OZT1yuBnPym3W/JZ+TBgNEtvS2n5rrixDpib1lTGQ17zhAKvZu/+NX3rBgZs2M
F7ug7R5ShQ0QtwH+73k40/hsye0BmVq4xhWiEZG3owCzNMnNYUtnmugcRrPLzI7g
9NMSvudIQf5FVG1rRUyiJGXtNmnF4kxGpdGNRg6+ccw0tkw30T9vREQHzX9Hcx4k
yMM/fHUDTO/6m0nlJg+c/nw5SgKMSCXpkrD0V00YHgRIlQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org