Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qEfvaf4iOxx71-01t3FUDcYdako.roa
File: qEfvaf4iOxx71-01t3FUDcYdako.roa (raw, json)
Hash identifier: cYkdGudIZUesCTgOMTYf0VJqSNhhtwjB/PR0yefAnCk=
Subject key identifier: A8:47:EF:69:FE:22:3B:1C:7B:D7:ED:35:B7:71:54:0D:C6:1D:6A:4A
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09F0
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qEfvaf4iOxx71-01t3FUDcYdako.roa
Signing time: Sun 07 Feb 2021 06:34:21 +0000
ROA not before: Sun 07 Feb 2021 06:34:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2544 (0x9f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:34:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A847EF69FE223B1C7BD7ED35B771540DC61D6A4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d1:aa:9f:0a:c6:04:cf:fd:66:22:5d:e5:73:
a5:05:6f:4f:b2:85:7c:86:c2:cb:eb:74:66:2e:db:
52:7c:9b:13:86:5d:54:b5:d4:c8:8d:f7:e4:b7:4d:
61:80:31:dd:1f:01:94:7a:01:4e:55:71:29:e4:42:
06:ce:58:00:eb:db:11:0d:0a:9a:2a:75:bc:8b:15:
95:31:b6:b6:d6:98:f3:16:04:38:d6:7b:0e:b5:7e:
a1:dc:c8:73:89:fd:66:01:47:90:04:7c:36:8b:3b:
88:b5:16:eb:0f:11:78:fe:f8:42:97:05:8f:fa:ed:
ad:26:53:a3:d5:0d:08:22:78:8d:d2:0b:be:42:82:
45:d6:cc:9b:cb:62:8a:d1:9e:79:81:3d:fa:03:7e:
dc:7f:bf:2e:83:8c:9c:4b:5c:49:2e:b4:93:f8:e6:
f1:a2:83:85:69:f1:45:03:62:a2:22:ba:ef:b5:13:
56:d1:01:20:2e:7a:aa:f2:e1:a3:53:55:c2:56:7a:
be:4e:6f:b8:77:d7:24:56:c1:45:40:3f:89:86:0a:
aa:9a:c2:2a:2c:91:62:1f:87:00:7e:dd:9b:2b:8e:
66:2f:fb:ce:6a:5d:4f:aa:9e:33:7f:f5:52:6f:e9:
88:7f:64:e3:5a:2a:8f:72:4f:6f:a4:5f:13:ea:15:
96:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:47:EF:69:FE:22:3B:1C:7B:D7:ED:35:B7:71:54:0D:C6:1D:6A:4A
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qEfvaf4iOxx71-01t3FUDcYdako.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
9f:23:75:45:36:1a:20:ed:cc:0b:55:d7:9b:af:9d:62:89:0b:
27:4f:0a:57:07:37:55:02:95:07:5f:66:cd:32:93:49:44:14:
da:c0:f9:65:38:2b:52:c4:33:4e:e3:14:0c:34:98:ac:0b:eb:
1b:8c:59:47:90:03:46:5c:f5:30:7c:48:e6:3c:c2:ad:1d:38:
a9:dc:ea:69:8b:5b:d8:a7:ee:bb:bb:28:5b:44:d1:4e:4b:67:
ec:6c:69:f9:87:a8:45:15:df:01:f7:5b:18:90:18:a4:ea:60:
7c:25:c6:60:53:b8:d2:39:97:ef:a3:69:69:3f:33:b0:5b:25:
a9:55:99:49:8e:47:9c:d3:39:7a:6d:e3:fc:1f:f1:0e:10:72:
6e:73:68:95:bd:df:b9:03:4d:1b:b2:d7:b5:4f:23:3d:40:6f:
bf:ae:a5:7f:1b:c8:89:47:c0:0d:a2:f4:05:15:0e:13:93:26:
7f:9b:7a:b7:dc:e5:f8:cb:2a:a7:49:9c:ee:22:ca:92:8a:fc:
c4:a9:ff:79:d5:7c:13:9d:5e:15:79:d8:87:8f:80:58:ef:31:
a5:cd:bc:9a:6e:51:a1:b9:0b:21:f1:ad:59:b6:2d:cb:cd:6c:
22:0a:b2:41:b5:3d:dc:b1:d0:94:7e:8d:f9:4d:5f:33:19:c2:
b2:09:2e:58
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjM0MjFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE4NDdFRjY5RkUyMjNC
MUM3QkQ3RUQzNUI3NzE1NDBEQzYxRDZBNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDM0aqfCsYEz/1mIl3lc6UFb0+yhXyGwsvrdGYu21J8mxOGXVS1
1MiN9+S3TWGAMd0fAZR6AU5VcSnkQgbOWADr2xENCpoqdbyLFZUxtrbWmPMWBDjW
ew61fqHcyHOJ/WYBR5AEfDaLO4i1FusPEXj++EKXBY/67a0mU6PVDQgieI3SC75C
gkXWzJvLYorRnnmBPfoDftx/vy6DjJxLXEkutJP45vGig4Vp8UUDYqIiuu+1E1bR
ASAueqry4aNTVcJWer5Ob7h31yRWwUVAP4mGCqqawioskWIfhwB+3ZsrjmYv+85q
XU+qnjN/9VJv6Yh/ZONaKo9yT2+kXxPqFZaPAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUqEfvaf4iOxx71+01t3FUDcYdakowHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcUVmdmFmNGlPeHg3MS0wMXQzRlVE
Y1lkYWtvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBI4DAN
BgkqhkiG9w0BAQsFAAOCAQEAnyN1RTYaIO3MC1XXm6+dYokLJ08KVwc3VQKVB19m
zTKTSUQU2sD5ZTgrUsQzTuMUDDSYrAvrG4xZR5ADRlz1MHxI5jzCrR04qdzqaYtb
2Kfuu7soW0TRTktn7Gxp+YeoRRXfAfdbGJAYpOpgfCXGYFO40jmX76NpaT8zsFsl
qVWZSY5HnNM5em3j/B/xDhBybnNolb3fuQNNG7LXtU8jPUBvv66lfxvIiUfADaL0
BRUOE5Mmf5t6t9zl+Msqp0mc7iLKkor8xKn/edV8E51eFXnYh4+AWO8xpc28mm5R
obkLIfGtWbYty81sIgqyQbU93LHQlH6N+U1fMxnCsgkuWA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org