Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/i9d1qV7oHxSxS6xqS9HwK1zbzYU.roa
File: i9d1qV7oHxSxS6xqS9HwK1zbzYU.roa (raw, json)
Hash identifier: o+5uhBJuxNMsfMpsDfx4UXuMcEy8Aq6ak3hOvBm5cbM=
Subject key identifier: 8B:D7:75:A9:5E:E8:1F:14:B1:4B:AC:6A:4B:D1:F0:2B:5C:DB:CD:85
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0866
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i9d1qV7oHxSxS6xqS9HwK1zbzYU.roa
Signing time: Tue 29 Sep 2020 09:52:00 +0000
ROA not before: Tue 29 Sep 2020 09:52:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 122.146.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2150 (0x866)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8BD775A95EE81F14B14BAC6A4BD1F02B5CDBCD85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e3:8f:39:07:d6:16:3b:55:5d:bc:6a:41:38:
ee:81:55:f6:ee:fa:fc:be:38:bd:f0:8f:bc:74:7a:
d0:79:47:80:72:a6:c1:93:dc:62:3b:16:0f:6b:e6:
fa:f8:10:3e:a2:ec:80:e8:33:20:91:07:2b:1b:2e:
c0:1e:7d:cc:86:87:43:d1:94:b7:4b:ac:13:c8:3c:
01:da:05:11:83:32:4d:92:26:c4:6e:c0:53:50:93:
64:e6:d4:a7:59:d7:9c:37:b5:3e:e1:0e:ab:d8:8b:
9f:db:98:40:21:6c:f4:e0:c4:76:53:db:bb:48:97:
59:b2:21:fe:1a:5c:9b:40:f9:9d:56:30:26:22:3e:
9e:d2:51:66:84:24:29:34:ad:f8:38:4c:29:23:67:
3c:da:fc:4e:37:05:93:8b:fc:1a:60:91:2a:43:d4:
a9:d4:e4:cf:36:10:3d:c9:8f:95:fa:aa:df:31:48:
1c:4e:73:0d:ee:aa:12:e1:45:19:bc:cf:56:2c:fc:
9c:78:37:5d:d9:0a:39:10:26:51:0a:5d:1e:7e:ca:
3b:cf:5c:d8:52:6f:11:97:f2:1d:d5:33:f5:4f:63:
cb:fa:c2:1f:b4:98:d0:12:bc:d6:1b:58:3c:79:36:
1a:95:df:9d:18:a5:1c:9d:9b:51:a9:06:35:05:b0:
2f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D7:75:A9:5E:E8:1F:14:B1:4B:AC:6A:4B:D1:F0:2B:5C:DB:CD:85
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i9d1qV7oHxSxS6xqS9HwK1zbzYU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.0.0/15
Signature Algorithm: sha256WithRSAEncryption
6a:51:50:f1:1c:2e:ff:4a:29:9b:6c:69:5c:ac:78:76:4f:e6:
69:a9:bc:ea:76:1f:30:5a:a9:32:c4:99:94:75:bc:22:ae:23:
bd:82:3b:e7:18:ce:82:ea:9e:4a:c8:40:8f:b3:e9:dd:a4:65:
92:d8:20:da:1a:57:60:9e:c5:98:dd:8f:5b:3d:96:8a:7d:93:
28:bb:33:28:fa:a9:11:6d:50:02:c5:22:c3:cf:7f:5c:40:91:
97:83:0b:3a:08:6e:bb:b9:4d:29:cc:08:8a:a8:fc:8f:9a:ec:
57:7d:3f:c6:1f:f2:33:21:08:a6:e6:a5:26:1e:c1:57:1a:bb:
da:fe:93:10:3f:8b:6e:75:6a:2f:e0:44:42:cc:f5:d6:29:69:
b3:b0:41:24:e3:11:42:0f:6a:6e:79:42:af:a6:1e:c6:cc:83:
68:07:8d:01:aa:f0:1c:22:c9:65:63:01:25:89:65:26:7c:c2:
2b:63:86:e4:fa:55:5f:d8:26:da:20:67:06:ce:65:09:cf:e8:
7e:f0:eb:f9:21:b6:16:3d:fd:d7:00:48:b4:d7:6c:0b:f6:f1:
59:2c:2b:62:f2:63:6c:d8:f5:70:34:20:f9:71:bb:e4:bb:9c:
9c:51:92:ea:c9:58:8c:b2:d4:05:a8:5b:18:82:4d:49:7a:c0:
b0:0a:52:80
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhCRDc3NUE5NUVFODFG
MTRCMTRCQUM2QTRCRDFGMDJCNUNEQkNEODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCy4485B9YWO1VdvGpBOO6BVfbu+vy+OL3wj7x0etB5R4BypsGT
3GI7Fg9r5vr4ED6i7IDoMyCRBysbLsAefcyGh0PRlLdLrBPIPAHaBRGDMk2SJsRu
wFNQk2Tm1KdZ15w3tT7hDqvYi5/bmEAhbPTgxHZT27tIl1myIf4aXJtA+Z1WMCYi
Pp7SUWaEJCk0rfg4TCkjZzza/E43BZOL/BpgkSpD1KnU5M82ED3Jj5X6qt8xSBxO
cw3uqhLhRRm8z1Ys/Jx4N13ZCjkQJlEKXR5+yjvPXNhSbxGX8h3VM/VPY8v6wh+0
mNASvNYbWDx5NhqV350YpRydm1GpBjUFsC+zAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUi9d1qV7oHxSxS6xqS9HwK1zbzYUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaTlkMXFWN29IeFN4UzZ4cVM5SHdL
MXpiellVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXqSMA0G
CSqGSIb3DQEBCwUAA4IBAQBqUVDxHC7/SimbbGlcrHh2T+Zpqbzqdh8wWqkyxJmU
dbwiriO9gjvnGM6C6p5KyECPs+ndpGWS2CDaGldgnsWY3Y9bPZaKfZMouzMo+qkR
bVACxSLDz39cQJGXgws6CG67uU0pzAiKqPyPmuxXfT/GH/IzIQim5qUmHsFXGrva
/pMQP4tudWov4ERCzPXWKWmzsEEk4xFCD2pueUKvph7GzINoB40BqvAcIsllYwEl
iWUmfMIrY4bk+lVf2CbaIGcGzmUJz+h+8Ov5IbYWPf3XAEi012wL9vFZLCti8mNs
2PVwNCD5cbvku5ycUZLqyViMstQFqFsYgk1JesCwClKA
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org