Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kEEJ-TFpbm4309KUkbxzSIcO1sg.roa
File: kEEJ-TFpbm4309KUkbxzSIcO1sg.roa (raw, json)
Hash identifier: 5JUknWk76aCmhMZH8YJ2FAdJzyv4yKt+S8ZuEvgOu3A=
Subject key identifier: 90:41:09:F9:31:69:6E:6E:37:D3:D2:94:91:BC:73:48:87:0E:D6:C8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CB5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kEEJ-TFpbm4309KUkbxzSIcO1sg.roa
Signing time: Sun 07 Feb 2021 11:44:42 +0000
ROA not before: Sun 07 Feb 2021 11:44:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 218.210.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3253 (0xcb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=904109F931696E6E37D3D29491BC7348870ED6C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0f:27:b7:aa:01:06:56:e5:2d:ff:90:33:15:
e5:61:00:57:f8:69:86:6d:f1:ae:94:c1:5e:f9:b8:
50:5c:e7:24:e6:95:99:86:fb:a1:7d:ed:c4:1c:ea:
7a:dd:53:93:04:42:15:1f:9e:c6:d9:48:b5:3a:69:
d9:b2:df:3f:11:9d:74:d5:22:c2:29:e3:31:f0:ae:
bd:36:69:73:18:8d:c4:27:c7:91:f3:7d:4d:33:0b:
b1:45:7e:ad:c8:4c:0c:1d:ae:07:b1:b0:c6:d8:69:
89:dc:8d:89:fe:c7:68:63:12:67:92:29:50:90:5f:
a8:b1:3b:53:76:b5:66:85:c9:00:9b:ef:49:46:a9:
6d:5a:cb:e6:6c:be:a3:16:af:ee:b0:bb:f9:28:b7:
78:fc:35:c0:b6:09:50:e4:dc:49:1a:7e:d5:86:15:
90:e7:f1:79:f5:4c:82:d2:1f:0b:9c:83:e7:7a:21:
c3:61:c8:43:53:ca:81:7f:9f:f2:04:c2:30:83:be:
6d:82:89:2d:5f:25:3d:37:9b:34:68:ba:89:f8:88:
c9:ef:cb:56:16:e1:fd:5c:a8:d8:f3:0c:ac:a9:62:
f3:dd:be:88:b6:de:fa:87:e9:8f:69:a8:c9:6c:6b:
00:b5:02:86:7c:fb:2d:dd:47:af:8a:21:7b:4b:cb:
a1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:41:09:F9:31:69:6E:6E:37:D3:D2:94:91:BC:73:48:87:0E:D6:C8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kEEJ-TFpbm4309KUkbxzSIcO1sg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.32.0/20
Signature Algorithm: sha256WithRSAEncryption
85:7c:56:66:86:3f:47:54:3c:44:91:7a:32:fe:55:28:16:3b:
e6:e9:68:a3:b6:b4:f6:e8:e3:c4:48:aa:82:aa:b3:3f:1e:79:
c4:c5:df:65:68:8b:9a:25:78:73:2b:9f:76:86:16:2c:a6:63:
23:53:71:a2:5c:8a:7f:c7:24:76:09:ba:8b:f7:ea:37:b3:f0:
25:f5:ef:d7:ea:5a:d7:b7:6d:67:fd:0d:5e:92:7a:4d:79:c7:
82:48:12:20:ac:96:5c:a8:67:19:13:97:4b:02:a6:31:78:0b:
40:62:54:ee:2f:36:33:c2:ab:06:7f:66:d9:29:74:25:41:e4:
8d:ce:18:06:b4:6e:94:cd:b1:3e:13:55:03:e0:30:97:e2:66:
40:87:e7:95:af:d5:3c:fe:80:1e:50:5c:99:d4:a6:21:b8:0e:
fa:ba:fd:50:e5:3a:0f:db:6b:f6:34:90:40:fe:33:55:12:d3:
db:0b:61:1d:31:41:9f:1f:2a:48:50:95:f3:a4:b6:30:ff:fc:
66:12:cf:d0:39:3f:53:9f:14:64:0e:7d:bd:10:5d:66:65:fb:
0b:53:33:92:fb:19:64:21:cc:e7:9b:cb:d2:6a:16:e7:68:cf:
04:ac:ea:f6:27:b7:44:ea:58:aa:39:44:02:7b:51:28:b5:f1:
80:8c:10:8c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcx
MTQ0NDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDkwNDEwOUY5MzE2OTZF
NkUzN0QzRDI5NDkxQkM3MzQ4ODcwRUQ2QzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMDye3qgEGVuUt/5AzFeVhAFf4aYZt8a6UwV75uFBc5yTmlZmG
+6F97cQc6nrdU5MEQhUfnsbZSLU6admy3z8RnXTVIsIp4zHwrr02aXMYjcQnx5Hz
fU0zC7FFfq3ITAwdrgexsMbYaYncjYn+x2hjEmeSKVCQX6ixO1N2tWaFyQCb70lG
qW1ay+ZsvqMWr+6wu/kot3j8NcC2CVDk3EkaftWGFZDn8Xn1TILSHwucg+d6IcNh
yENTyoF/n/IEwjCDvm2CiS1fJT03mzRouon4iMnvy1YW4f1cqNjzDKypYvPdvoi2
3vqH6Y9pqMlsawC1AoZ8+y3dR6+KIXtLy6H7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUkEEJ+TFpbm4309KUkbxzSIcO1sgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMva0VFSi1URnBibTQzMDlLVWtieHpT
SWNPMXNnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNrSIDAN
BgkqhkiG9w0BAQsFAAOCAQEAhXxWZoY/R1Q8RJF6Mv5VKBY75uloo7a09ujjxEiq
gqqzPx55xMXfZWiLmiV4cyufdoYWLKZjI1NxolyKf8ckdgm6i/fqN7PwJfXv1+pa
17dtZ/0NXpJ6TXnHgkgSIKyWXKhnGROXSwKmMXgLQGJU7i82M8KrBn9m2Sl0JUHk
jc4YBrRulM2xPhNVA+Awl+JmQIfnla/VPP6AHlBcmdSmIbgO+rr9UOU6D9tr9jSQ
QP4zVRLT2wthHTFBnx8qSFCV86S2MP/8ZhLP0Dk/U58UZA59vRBdZmX7C1MzkvsZ
ZCHM55vL0moW52jPBKzq9ie3ROpYqjlEAntRKLXxgIwQjA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org