Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mvDy86TD1Cmn1LzD3T82i28ZTYE.roa
File: mvDy86TD1Cmn1LzD3T82i28ZTYE.roa (raw, json)
Hash identifier: h0XEgbo7S78NT5UwmjMlP4N3M16/gl+2DbM9uzCI0tc=
Subject key identifier: 9A:F0:F2:F3:A4:C3:D4:29:A7:D4:BC:C3:DD:3F:36:8B:6F:19:4D:81
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E19
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mvDy86TD1Cmn1LzD3T82i28ZTYE.roa
Signing time: Wed 29 Sep 2021 02:43:12 +0000
ROA not before: Wed 29 Sep 2021 02:43:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3609 (0xe19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9AF0F2F3A4C3D429A7D4BCC3DD3F368B6F194D81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:60:6d:a3:0d:89:75:e5:00:f7:6b:67:0c:21:
81:3d:83:9f:46:76:3c:62:f0:11:82:9b:f4:8a:8d:
9e:df:8f:b0:d9:39:aa:b0:7d:df:82:b2:a2:fa:d9:
80:13:72:9e:1e:fc:7c:a3:0b:6e:94:e7:a0:ae:40:
ee:2b:1a:75:4d:ba:83:0c:e6:ff:c4:9f:1f:a9:11:
f2:5e:7b:47:12:9d:34:bc:73:20:b6:17:f7:d0:a7:
31:40:18:ce:d8:83:36:4d:59:68:3d:35:30:92:06:
4e:16:dd:c6:bf:0e:c2:ae:f4:99:20:6b:7d:34:b1:
1d:b4:aa:60:d1:93:bc:b2:04:c5:46:14:fa:13:50:
6b:b3:38:32:32:a7:e2:59:b3:8c:ea:be:78:85:44:
f9:08:0e:db:e6:c8:4c:5c:1d:7e:2c:9e:3d:85:ff:
f1:0a:38:5b:57:10:57:9b:6f:77:69:62:82:4d:b0:
31:20:9e:bd:cd:5e:2e:14:f6:62:54:13:fa:0c:a7:
53:24:45:57:5a:a9:c2:9e:94:d6:e5:40:69:64:fb:
83:c2:8f:00:1d:dd:a5:44:5b:77:74:9d:a8:93:a1:
77:84:93:99:f8:11:05:e0:7d:bd:de:e1:56:c5:f0:
3b:21:0d:98:3d:17:24:e7:91:cf:b0:f5:9a:8d:f6:
63:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F0:F2:F3:A4:C3:D4:29:A7:D4:BC:C3:DD:3F:36:8B:6F:19:4D:81
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mvDy86TD1Cmn1LzD3T82i28ZTYE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
21:ad:db:31:69:62:59:75:45:de:c1:34:a8:b2:2a:21:0e:28:
ec:54:49:9d:36:36:3f:4d:7c:97:8d:90:bb:d7:5b:15:f6:e4:
e4:e8:f3:39:d7:0e:9c:fb:75:2e:ca:1c:66:cf:ad:bf:e4:17:
c3:fe:a9:d4:c9:30:ef:9b:2c:b1:77:40:8e:a2:af:26:8f:1c:
64:71:56:74:4f:6d:af:6a:6f:1d:1e:75:6c:b9:79:37:b0:e5:
e7:f6:be:26:0d:b7:8e:42:91:69:d9:dd:cb:78:bd:12:bc:b6:
2a:d3:d8:80:a6:b2:eb:24:a7:2b:eb:af:52:0c:59:e7:da:ba:
52:4a:41:f2:72:cb:cc:21:3d:a6:88:85:d2:d7:d7:63:9a:1f:
24:21:a8:7a:fb:c2:3e:33:3d:98:b9:6e:21:af:be:89:4e:26:
a0:b7:9d:f6:34:21:43:ce:9a:59:1e:72:62:0f:72:e1:6c:c5:
fa:21:6a:6b:b2:be:a7:b2:fa:c9:c5:e0:c6:23:2d:c6:02:cc:
d6:28:e2:8e:a0:74:6b:3f:14:93:d3:ec:50:5b:0d:8d:8c:ad:
93:6e:20:28:6c:46:4b:f0:39:96:92:68:f3:a0:04:b5:1b:7b:
a4:bc:8c:94:84:6e:9e:0c:2b:86:da:64:29:8d:9d:ed:e6:02:
17:73:97:bd
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDlBRjBGMkYzQTRDM0Q0
MjlBN0Q0QkNDM0REM0YzNjhCNkYxOTREODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8YG2jDYl15QD3a2cMIYE9g59Gdjxi8BGCm/SKjZ7fj7DZOaqw
fd+CsqL62YATcp4e/HyjC26U56CuQO4rGnVNuoMM5v/Enx+pEfJee0cSnTS8cyC2
F/fQpzFAGM7YgzZNWWg9NTCSBk4W3ca/DsKu9Jkga300sR20qmDRk7yyBMVGFPoT
UGuzODIyp+JZs4zqvniFRPkIDtvmyExcHX4snj2F//EKOFtXEFebb3dpYoJNsDEg
nr3NXi4U9mJUE/oMp1MkRVdaqcKelNblQGlk+4PCjwAd3aVEW3d0naiToXeEk5n4
EQXgfb3e4VbF8DshDZg9FyTnkc+w9ZqN9mPrAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUmvDy86TD1Cmn1LzD3T82i28ZTYEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbXZEeTg2VEQxQ21uMUx6RDNUODJp
MjhaVFlFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+EDAN
BgkqhkiG9w0BAQsFAAOCAQEAIa3bMWliWXVF3sE0qLIqIQ4o7FRJnTY2P018l42Q
u9dbFfbk5OjzOdcOnPt1LsocZs+tv+QXw/6p1Mkw75sssXdAjqKvJo8cZHFWdE9t
r2pvHR51bLl5N7Dl5/a+Jg23jkKRadndy3i9Ery2KtPYgKay6ySnK+uvUgxZ59q6
UkpB8nLLzCE9poiF0tfXY5ofJCGoevvCPjM9mLluIa++iU4moLed9jQhQ86aWR5y
Yg9y4WzF+iFqa7K+p7L6ycXgxiMtxgLM1ijijqB0az8Uk9PsUFsNjYytk24gKGxG
S/A5lpJo86AEtRt7pLyMlIRungwrhtpkKY2d7eYCF3OXvQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org