Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qqDO9m2iEAfzqcRPeCADvzAi_BE.roa
File: qqDO9m2iEAfzqcRPeCADvzAi_BE.roa (raw, json)
Hash identifier: 3Bf4WGCPhPkHb6e8AmvDkvMRixbyq5fDzdRvE83kdZU=
Subject key identifier: AA:A0:CE:F6:6D:A2:10:07:F3:A9:C4:4F:78:20:03:BF:30:22:FC:11
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09F8
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qqDO9m2iEAfzqcRPeCADvzAi_BE.roa
Signing time: Sun 07 Feb 2021 06:35:37 +0000
ROA not before: Sun 07 Feb 2021 06:35:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2552 (0x9f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:35:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AAA0CEF66DA21007F3A9C44F782003BF3022FC11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ea:54:9d:04:38:51:19:77:8b:84:4f:3a:c0:
73:72:b1:94:95:40:56:47:30:26:32:e5:45:91:4e:
77:d5:b7:65:76:d4:24:0d:64:aa:c5:2e:bc:9c:48:
6e:0d:74:9b:42:29:ca:6e:8a:cc:c6:5d:5c:e3:b7:
40:86:6e:85:c3:b0:30:25:6f:b0:1e:09:c2:90:62:
be:a6:44:ed:67:29:8d:a8:cf:88:a4:be:aa:75:df:
68:4e:76:bb:e7:a4:e8:83:16:e8:32:89:46:ef:93:
0a:42:5d:fb:06:12:23:28:6e:f9:71:88:2e:bd:13:
56:df:a4:93:a0:a8:1a:e6:af:25:61:69:d3:90:9f:
c3:e0:45:f0:d7:c1:57:3e:37:a9:e2:00:bb:85:6f:
88:04:22:bb:09:b0:17:67:d7:8f:19:31:a7:9f:df:
57:d1:fa:ac:81:f8:06:97:9a:c1:fa:5d:ae:9a:87:
f3:7e:7a:9d:e3:08:be:a4:cf:e3:8f:5d:31:cc:b1:
77:a0:31:ee:7f:e4:78:e2:fe:f6:99:a2:83:87:c7:
76:e4:bb:70:eb:cb:d3:af:e9:f8:6e:37:5a:dc:85:
2a:7a:f5:fd:9d:41:75:53:27:f7:a7:c4:06:2f:1c:
e6:36:87:99:91:97:62:e4:9e:14:93:e8:b3:02:a0:
9b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A0:CE:F6:6D:A2:10:07:F3:A9:C4:4F:78:20:03:BF:30:22:FC:11
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qqDO9m2iEAfzqcRPeCADvzAi_BE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.16.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:54:26:5f:58:c6:0e:2c:15:90:15:2a:bd:79:34:82:e3:98:
7d:d1:5e:e7:5d:69:a8:06:e5:59:09:19:b9:b8:d4:82:a8:1b:
09:c5:c7:ac:a9:69:02:9f:1e:ef:72:8a:e5:f3:cb:2f:da:50:
f8:a5:51:11:71:de:ba:b4:de:37:3d:f8:e6:23:6d:06:c5:6b:
6a:d8:2e:db:68:a7:27:3a:a3:05:a5:21:5c:ab:6c:5b:76:d3:
88:70:5c:70:3f:f1:6d:f4:94:fe:ca:26:e5:5b:5c:88:5f:2f:
6c:8a:3a:90:88:c9:f7:a0:00:8f:da:00:e7:d0:91:dd:44:b9:
53:36:90:3c:1e:c0:ab:c3:e6:b6:1a:e1:4c:99:90:6d:bf:49:
44:35:80:d8:ad:89:3e:cb:98:1b:c1:e3:cc:cd:65:5b:67:13:
1a:3d:51:89:94:7a:fb:aa:f5:29:41:d5:bb:e3:24:4a:76:b4:
7a:71:d5:cd:55:bb:59:79:9f:d7:21:e5:f7:90:c5:50:77:3e:
93:7b:39:1e:10:ad:56:d5:6d:55:a3:42:c3:5b:10:76:da:7b:
47:24:25:b2:07:3e:d4:75:4b:79:33:ce:da:ef:6c:e0:d1:2d:
86:ef:d9:81:a9:92:69:d5:c5:54:61:38:aa:79:19:c8:a3:ad:
14:65:d3:33
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjM1MzdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFBQTBDRUY2NkRBMjEw
MDdGM0E5QzQ0Rjc4MjAwM0JGMzAyMkZDMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs6lSdBDhRGXeLhE86wHNysZSVQFZHMCYy5UWRTnfVt2V21CQN
ZKrFLrycSG4NdJtCKcpuiszGXVzjt0CGboXDsDAlb7AeCcKQYr6mRO1nKY2oz4ik
vqp132hOdrvnpOiDFugyiUbvkwpCXfsGEiMobvlxiC69E1bfpJOgqBrmryVhadOQ
n8PgRfDXwVc+N6niALuFb4gEIrsJsBdn148ZMaef31fR+qyB+AaXmsH6Xa6ah/N+
ep3jCL6kz+OPXTHMsXegMe5/5Hji/vaZooOHx3bku3Dry9Ov6fhuN1rchSp69f2d
QXVTJ/enxAYvHOY2h5mRl2LknhST6LMCoJu7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUqqDO9m2iEAfzqcRPeCADvzAi/BEwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcXFETzltMmlFQWZ6cWNSUGVDQUR2
ekFpX0JFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBIEDAN
BgkqhkiG9w0BAQsFAAOCAQEAbVQmX1jGDiwVkBUqvXk0guOYfdFe511pqAblWQkZ
ubjUgqgbCcXHrKlpAp8e73KK5fPLL9pQ+KVREXHeurTeNz345iNtBsVratgu22in
JzqjBaUhXKtsW3bTiHBccD/xbfSU/som5VtciF8vbIo6kIjJ96AAj9oA59CR3US5
UzaQPB7Aq8PmthrhTJmQbb9JRDWA2K2JPsuYG8HjzM1lW2cTGj1RiZR6+6r1KUHV
u+MkSna0enHVzVW7WXmf1yHl95DFUHc+k3s5HhCtVtVtVaNCw1sQdtp7RyQlsgc+
1HVLeTPO2u9s4NEthu/ZgamSadXFVGE4qnkZyKOtFGXTMw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org