Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/q_ZR5chKxGdB8Vx8HrM0jGjSsYw.roa
File: q_ZR5chKxGdB8Vx8HrM0jGjSsYw.roa (raw, json)
Hash identifier: +ivbLCUduojAbrwA5grpflq5Bfua3t5qnjrJPwhgmzA=
Subject key identifier: AB:F6:51:E5:C8:4A:C4:67:41:F1:5C:7C:1E:B3:34:8C:68:D2:B1:8C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08D2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q_ZR5chKxGdB8Vx8HrM0jGjSsYw.roa
Signing time: Tue 29 Sep 2020 09:52:29 +0000
ROA not before: Tue 29 Sep 2020 09:52:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.229.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2258 (0x8d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ABF651E5C84AC46741F15C7C1EB3348C68D2B18C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:84:77:17:b5:28:32:d2:2c:6e:0f:43:4a:dd:
64:08:e5:85:dc:cb:f8:26:19:e5:3f:89:28:f4:b3:
8d:6b:92:7d:bd:80:57:9c:34:41:df:6f:e3:65:cf:
ae:6c:98:af:d1:e1:2a:e2:77:27:a3:c1:df:d3:b4:
ea:43:66:6a:54:16:7d:50:e8:6d:7d:ef:58:e4:9f:
b3:b0:0f:6e:fe:b7:3e:6d:cc:81:26:f0:05:7b:e1:
52:b7:bc:ba:a3:da:3d:3a:4f:7c:8f:c4:66:af:9e:
87:53:88:b5:9e:eb:2d:14:54:f8:8f:cd:36:56:49:
ab:3e:b5:60:6d:3c:d6:7a:df:06:91:82:86:44:a7:
8a:c0:41:b9:d0:78:57:fd:54:50:a1:f6:f4:dc:0d:
b7:f6:1d:db:f9:72:9a:45:8b:51:f5:ba:46:a1:a5:
d9:4b:62:0e:cd:66:19:ac:e4:f3:e7:d3:6c:81:ac:
12:bc:25:04:0a:ee:0b:f2:fd:14:c0:d8:56:f3:48:
09:d8:bc:4e:ba:92:a0:55:94:da:6a:fc:10:b5:9e:
73:6d:23:33:e1:08:04:42:dc:ed:b1:7e:3c:a4:db:
00:97:91:93:c9:00:3b:35:37:5a:b6:f5:e5:60:97:
8c:a2:2c:88:2d:7a:e4:ee:de:19:e3:cc:36:38:58:
43:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F6:51:E5:C8:4A:C4:67:41:F1:5C:7C:1E:B3:34:8C:68:D2:B1:8C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q_ZR5chKxGdB8Vx8HrM0jGjSsYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/18
Signature Algorithm: sha256WithRSAEncryption
59:56:d5:2f:90:f0:cc:7b:98:27:41:5b:b7:5e:87:cf:3e:52:
12:ab:49:94:19:7a:1f:77:79:b3:d3:d3:be:41:54:e9:25:1b:
d4:bf:ef:43:6f:cf:d0:c7:8e:b7:06:3e:b2:2e:45:d7:08:84:
af:a5:98:ba:06:09:51:cc:ed:bf:2f:87:9a:8a:27:01:d3:a4:
bd:ae:f7:99:db:9d:52:1d:07:02:f0:3a:a1:a8:0f:d8:2d:ad:
1f:a0:54:02:ee:64:15:c9:56:b8:ba:d3:2c:6d:f4:c9:22:4a:
7d:4b:87:a4:07:a9:56:2a:25:c1:4d:0b:64:86:51:d5:9e:10:
c6:f1:56:d2:e2:94:12:5d:48:35:0d:24:30:60:97:0d:77:c7:
33:95:34:d6:bc:c3:b8:f0:09:c1:4b:b5:69:85:9d:cc:b3:f5:
2a:18:c9:75:2a:df:e5:a4:14:20:f6:6b:13:99:b6:88:29:fd:
32:04:96:13:3d:e3:e3:5b:9e:c3:de:cd:10:1e:c0:3e:5a:7d:
b6:f9:77:02:c6:c4:75:38:58:04:e2:1b:32:d2:2a:b9:e7:81:
37:8c:f0:4e:9e:74:57:cf:05:f0:a1:66:f0:7e:d6:6e:07:61:
90:ff:c4:cf:04:fc:be:90:3e:2e:18:1f:11:c0:c4:07:72:bb:
a0:7c:f5:ca
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFCRjY1MUU1Qzg0QUM0
Njc0MUYxNUM3QzFFQjMzNDhDNjhEMkIxOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIhHcXtSgy0ixuD0NK3WQI5YXcy/gmGeU/iSj0s41rkn29gFec
NEHfb+Nlz65smK/R4Sridyejwd/TtOpDZmpUFn1Q6G1971jkn7OwD27+tz5tzIEm
8AV74VK3vLqj2j06T3yPxGavnodTiLWe6y0UVPiPzTZWSas+tWBtPNZ63waRgoZE
p4rAQbnQeFf9VFCh9vTcDbf2Hdv5cppFi1H1ukahpdlLYg7NZhms5PPn02yBrBK8
JQQK7gvy/RTA2FbzSAnYvE66kqBVlNpq/BC1nnNtIzPhCARC3O2xfjyk2wCXkZPJ
ADs1N1q29eVgl4yiLIgteuTu3hnjzDY4WEM5AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUq/ZR5chKxGdB8Vx8HrM0jGjSsYwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcV9aUjVjaEt4R2RCOFZ4OEhyTTBq
R2pTc1l3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtzlADAN
BgkqhkiG9w0BAQsFAAOCAQEAWVbVL5DwzHuYJ0Fbt16Hzz5SEqtJlBl6H3d5s9PT
vkFU6SUb1L/vQ2/P0MeOtwY+si5F1wiEr6WYugYJUcztvy+HmoonAdOkva73mdud
Uh0HAvA6oagP2C2tH6BUAu5kFclWuLrTLG30ySJKfUuHpAepViolwU0LZIZR1Z4Q
xvFW0uKUEl1INQ0kMGCXDXfHM5U01rzDuPAJwUu1aYWdzLP1KhjJdSrf5aQUIPZr
E5m2iCn9MgSWEz3j41uew97NEB7APlp9tvl3AsbEdThYBOIbMtIqueeBN4zwTp50
V88F8KFm8H7WbgdhkP/EzwT8vpA+LhgfEcDEB3K7oHz1yg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org