Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jquI9cCuANx09raz7irnHBQZOnE.roa
File: jquI9cCuANx09raz7irnHBQZOnE.roa (raw, json)
Hash identifier: REzo97oIfZHg3vDh0+Ach/kLyBAW6qjpvSglRrvEn6Q=
Subject key identifier: 8E:AB:88:F5:C0:AE:00:DC:74:F6:B6:B3:EE:2A:E7:1C:14:19:3A:71
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DEB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jquI9cCuANx09raz7irnHBQZOnE.roa
Signing time: Wed 29 Sep 2021 02:42:59 +0000
ROA not before: Wed 29 Sep 2021 02:42:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3563 (0xdeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:42:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8EAB88F5C0AE00DC74F6B6B3EE2AE71C14193A71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:18:1c:94:85:5b:8c:a5:46:6a:80:1d:e3:62:
fa:5f:e1:03:dd:f0:09:14:0c:78:43:b0:59:77:43:
de:c9:89:9d:75:13:59:32:9d:c2:f6:45:3a:a2:2e:
02:f4:69:e2:68:a1:5e:c1:ef:81:59:9a:30:56:f4:
a1:e0:12:22:32:61:26:95:5e:4b:aa:b2:21:b7:7d:
6d:b1:75:43:55:2e:73:e0:5d:92:aa:28:a5:fe:13:
88:9a:47:b0:8e:83:49:f3:97:0a:b2:68:9a:dc:86:
56:33:56:83:bb:19:82:87:75:42:9d:c7:aa:70:e8:
ac:17:47:f1:39:57:de:dd:f4:f9:7b:84:2e:ad:58:
bf:39:16:73:bc:66:6b:d5:f4:60:09:b2:78:f3:f5:
57:74:50:e6:a8:0c:ce:eb:c0:be:5a:92:60:a0:f8:
d4:a9:7b:f2:6f:2d:02:85:75:1a:d4:5f:f2:d0:8f:
8c:a4:55:13:4f:07:af:75:61:a4:4f:c5:11:39:a1:
3e:1e:eb:9f:6a:f8:2f:96:ca:50:d1:10:94:57:44:
a5:e5:6d:16:bd:55:46:e2:52:24:1e:3f:11:7c:c5:
11:09:04:3c:db:e2:98:f2:16:34:4e:4d:4d:de:96:
96:0a:5e:3f:fa:47:38:d0:1d:b6:5c:d0:d3:2e:cf:
9d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AB:88:F5:C0:AE:00:DC:74:F6:B6:B3:EE:2A:E7:1C:14:19:3A:71
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jquI9cCuANx09raz7irnHBQZOnE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
08:df:8d:d7:e0:c1:2e:c5:67:e7:14:cc:0f:75:ce:e1:b5:1b:
d9:40:6f:84:7a:7e:d1:0f:fd:80:01:a3:ed:8c:36:f0:0e:bf:
76:a7:fb:9c:80:c7:57:38:26:84:db:ba:85:ca:73:e2:84:47:
23:c0:66:32:3b:26:47:9a:4f:22:cf:85:d2:1e:b2:db:86:9f:
3d:16:49:aa:2d:6d:0c:ae:ec:a1:bc:b5:63:07:3a:b9:80:ef:
b8:54:9a:76:62:c6:b2:cd:57:dd:0c:c5:5e:bb:78:39:34:dc:
69:06:e7:f6:60:78:70:8c:b3:15:e5:36:0a:fc:c0:54:3d:a3:
4c:91:19:79:23:fd:f0:ea:c2:ba:15:5b:fc:57:9f:25:25:13:
de:cf:66:e0:03:b2:b1:26:72:64:f4:da:7c:28:6a:e9:c5:e0:
95:1c:6b:a8:65:d2:75:67:15:c7:5e:03:28:65:6b:34:95:a1:
b6:0d:9d:ad:4c:74:54:dc:d1:e8:5d:00:bd:b3:02:f3:5a:da:
e1:97:9f:fb:be:45:8f:d4:8b:84:a6:d3:c2:99:95:fa:c1:ed:
6d:fe:90:dd:a4:d4:9e:63:1a:2c:8b:24:f2:58:34:1a:30:b1:
01:00:5b:d9:95:4e:be:4f:db:e4:b5:c1:95:3f:b4:3c:09:1e:
80:23:54:0f
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDeswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQyNTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhFQUI4OEY1QzBBRTAw
REM3NEY2QjZCM0VFMkFFNzFDMTQxOTNBNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMGByUhVuMpUZqgB3jYvpf4QPd8AkUDHhDsFl3Q97JiZ11E1ky
ncL2RTqiLgL0aeJooV7B74FZmjBW9KHgEiIyYSaVXkuqsiG3fW2xdUNVLnPgXZKq
KKX+E4iaR7COg0nzlwqyaJrchlYzVoO7GYKHdUKdx6pw6KwXR/E5V97d9Pl7hC6t
WL85FnO8ZmvV9GAJsnjz9Vd0UOaoDM7rwL5akmCg+NSpe/JvLQKFdRrUX/LQj4yk
VRNPB691YaRPxRE5oT4e659q+C+WylDREJRXRKXlbRa9VUbiUiQePxF8xREJBDzb
4pjyFjROTU3elpYKXj/6RzjQHbZc0NMuz50DAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUjquI9cCuANx09raz7irnHBQZOnEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvanF1STljQ3VBTngwOXJhejdpcm5I
QlFaT25FLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD07MA0G
CSqGSIb3DQEBCwUAA4IBAQAI343X4MEuxWfnFMwPdc7htRvZQG+Een7RD/2AAaPt
jDbwDr92p/ucgMdXOCaE27qFynPihEcjwGYyOyZHmk8iz4XSHrLbhp89FkmqLW0M
ruyhvLVjBzq5gO+4VJp2YsayzVfdDMVeu3g5NNxpBuf2YHhwjLMV5TYK/MBUPaNM
kRl5I/3w6sK6FVv8V58lJRPez2bgA7KxJnJk9Np8KGrpxeCVHGuoZdJ1ZxXHXgMo
ZWs0laG2DZ2tTHRU3NHoXQC9swLzWtrhl5/7vkWP1IuEptPCmZX6we1t/pDdpNSe
YxosiyTyWDQaMLEBAFvZlU6+T9vktcGVP7Q8CR6AI1QP
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org