Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hRVhLcIflayllCZb6necxzLyHZU.roa
File: hRVhLcIflayllCZb6necxzLyHZU.roa (raw, json)
Hash identifier: JqGzzZ30T2eZj4ZWSxN4JBqRouiFoIUwF9ukX/HWzMk=
Subject key identifier: 85:15:61:2D:C2:1F:95:AC:A5:94:26:5B:EA:77:9C:C7:32:F2:1D:95
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08CC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hRVhLcIflayllCZb6necxzLyHZU.roa
Signing time: Tue 29 Sep 2020 09:52:28 +0000
ROA not before: Tue 29 Sep 2020 09:52:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.204.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2252 (0x8cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8515612DC21F95ACA594265BEA779CC732F21D95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:11:d5:7d:de:f3:3d:9c:91:c9:5f:c3:ac:ac:
63:fa:2d:fa:8b:7e:cb:e5:6a:2e:b8:70:ec:02:ae:
01:37:c8:4c:56:c6:52:53:b7:95:7b:27:04:96:fb:
97:9c:86:2d:b3:f0:90:0f:ba:81:a2:0c:68:ae:67:
01:c3:ad:81:88:b5:c1:0d:8e:46:d6:48:3a:5c:64:
ad:01:24:99:5d:59:28:2f:b2:11:7e:53:72:3b:7a:
e8:a9:4b:d1:ac:4b:86:d7:18:63:d8:b9:d3:cf:2c:
7b:75:e9:ea:93:c6:e6:50:d1:bb:89:a9:c2:28:68:
db:7c:08:d9:1e:01:f8:eb:fc:89:f0:4d:5c:0f:af:
88:0b:00:11:36:ec:1f:78:30:4f:f1:0b:da:a8:d4:
11:38:a9:87:e1:a9:36:a1:ec:b1:8e:b6:9e:67:97:
4b:5c:03:ee:ae:2d:1c:d5:3c:62:1b:0e:51:2e:0e:
33:47:e0:e6:82:24:71:1f:36:76:ca:56:a2:4a:4b:
f5:12:6c:fe:53:6d:a1:37:4c:34:c5:39:ad:3d:43:
19:00:34:ee:e7:b8:01:8e:45:4f:e0:56:ee:e8:77:
60:4e:e4:7a:0f:42:73:36:e4:d4:30:0f:43:20:50:
8d:de:00:d9:f0:07:5a:19:96:57:ab:53:8d:54:c1:
90:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:15:61:2D:C2:1F:95:AC:A5:94:26:5B:EA:77:9C:C7:32:F2:1D:95
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hRVhLcIflayllCZb6necxzLyHZU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
24:60:07:31:15:d8:eb:27:63:ea:63:6f:ca:71:ca:30:94:52:
d9:fe:ee:25:19:5b:24:24:90:3d:4d:0b:8f:0a:2b:96:21:53:
ec:d9:64:ed:e1:6a:3f:22:2a:a1:7f:46:77:11:7a:36:e1:25:
5e:af:10:12:48:db:6a:09:ef:e7:63:09:ee:49:5a:78:62:f4:
26:47:b8:38:8f:73:7d:26:a2:18:3a:90:08:6b:3f:e6:b5:df:
bf:8a:ed:aa:b7:fe:b4:37:50:bd:cf:ec:ac:fa:bf:65:a6:d3:
4b:b1:f1:81:6d:84:c5:bf:4e:e3:23:18:fb:2e:5a:79:31:20:
64:2e:d6:54:e3:f2:a5:9b:b4:d1:69:b7:7b:ca:0d:06:7d:f5:
61:ae:ec:a3:06:09:e4:86:04:a1:66:12:22:7e:5d:ab:13:48:
8e:8c:9b:45:2d:37:06:0b:da:cc:8d:93:5e:5e:61:73:32:11:
73:f7:bf:07:7d:74:7d:6f:c7:a9:7b:6b:cd:18:c5:5f:9f:38:
29:44:88:b0:1e:04:f4:e4:d0:9c:02:77:8a:b9:b1:98:39:69:
9a:94:22:6f:7e:13:61:5f:29:4b:b2:7c:ce:82:c8:0c:28:71:
74:51:ad:6f:b7:ef:34:75:de:60:ee:2a:e3:fa:15:7d:b3:36:
f2:0c:cc:fc
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMjhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg1MTU2MTJEQzIxRjk1
QUNBNTk0MjY1QkVBNzc5Q0M3MzJGMjFEOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBEdV93vM9nJHJX8OsrGP6LfqLfsvlai64cOwCrgE3yExWxlJT
t5V7JwSW+5echi2z8JAPuoGiDGiuZwHDrYGItcENjkbWSDpcZK0BJJldWSgvshF+
U3I7euipS9GsS4bXGGPYudPPLHt16eqTxuZQ0buJqcIoaNt8CNkeAfjr/InwTVwP
r4gLABE27B94ME/xC9qo1BE4qYfhqTah7LGOtp5nl0tcA+6uLRzVPGIbDlEuDjNH
4OaCJHEfNnbKVqJKS/USbP5TbaE3TDTFOa09QxkANO7nuAGORU/gVu7od2BO5HoP
QnM25NQwD0MgUI3eANnwB1oZllerU41UwZBbAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUhRVhLcIflayllCZb6necxzLyHZUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaFJWaExjSWZsYXlsbENaYjZuZWN4
ekx5SFpVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXvMMA0G
CSqGSIb3DQEBCwUAA4IBAQAkYAcxFdjrJ2PqY2/KccowlFLZ/u4lGVskJJA9TQuP
CiuWIVPs2WTt4Wo/Iiqhf0Z3EXo24SVerxASSNtqCe/nYwnuSVp4YvQmR7g4j3N9
JqIYOpAIaz/mtd+/iu2qt/60N1C9z+ys+r9lptNLsfGBbYTFv07jIxj7Llp5MSBk
LtZU4/Klm7TRabd7yg0GffVhruyjBgnkhgShZhIifl2rE0iOjJtFLTcGC9rMjZNe
XmFzMhFz978HfXR9b8epe2vNGMVfnzgpRIiwHgT05NCcAneKubGYOWmalCJvfhNh
XylLsnzOgsgMKHF0Ua1vt+80dd5g7irj+hV9szbyDMz8
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org