Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tHy9SHobvkV3AqdRmIlKALlDsws.roa
File: tHy9SHobvkV3AqdRmIlKALlDsws.roa (raw, json)
Hash identifier: tL7htxMRRZIat5nhHaebnwWt5260CxfoFZVVE0xc5Yo=
Subject key identifier: B4:7C:BD:48:7A:1B:BE:45:77:02:A7:51:98:89:4A:00:B9:43:B3:0B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DEA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tHy9SHobvkV3AqdRmIlKALlDsws.roa
Signing time: Wed 29 Sep 2021 02:42:59 +0000
ROA not before: Wed 29 Sep 2021 02:42:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 61.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3562 (0xdea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:42:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B47CBD487A1BBE457702A75198894A00B943B30B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:6a:6d:d9:09:af:8a:fd:42:30:f1:63:c9:
17:38:f8:43:bf:42:ab:29:3b:8e:87:50:59:94:3d:
70:ef:c4:17:7b:34:88:64:96:37:a3:45:0e:51:62:
88:6e:a1:45:c0:02:a6:3b:72:2c:be:ac:78:5a:87:
85:21:91:82:c3:d7:b2:7d:86:a8:f3:2c:8d:b6:8a:
b8:5d:5f:9e:e0:a4:b6:7b:92:a4:00:9a:f0:5c:f3:
2c:35:86:9c:06:04:8e:5e:77:13:f4:e0:73:f7:c6:
6d:d3:28:a2:b6:44:97:b1:82:c7:3f:b9:2a:8a:52:
e4:a7:65:7e:50:aa:d7:60:af:89:d8:32:a6:85:9e:
32:9b:4d:b8:b8:36:b3:71:f1:bb:22:79:b5:3d:5d:
41:01:11:5c:24:e1:f1:8c:ef:55:b3:73:a3:1c:f7:
13:ef:37:11:09:18:bd:89:6e:55:70:a8:5b:15:47:
ed:28:4a:8f:9f:ac:f3:92:13:71:7c:60:5e:d7:08:
4c:6f:68:09:0b:b7:65:80:c4:5f:6b:b5:3a:74:b9:
15:63:74:28:7d:80:95:f7:d7:c0:64:1e:41:b1:35:
1b:31:9e:9b:28:c4:10:31:e2:c3:91:28:f0:37:2b:
46:18:c1:12:43:a1:d5:ed:6d:d8:00:65:ff:84:9e:
1d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7C:BD:48:7A:1B:BE:45:77:02:A7:51:98:89:4A:00:B9:43:B3:0B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tHy9SHobvkV3AqdRmIlKALlDsws.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
17:98:c3:5a:52:4d:01:07:b2:73:29:f7:f3:90:1a:10:27:f6:
2c:c4:63:41:99:b9:fb:4e:dd:84:dd:89:83:45:45:db:16:cb:
8e:32:99:59:cf:d8:f0:1e:4d:66:6c:cd:3e:ec:d0:2b:0a:bf:
21:7f:b6:04:43:77:b7:28:83:7d:98:9f:25:b5:e8:e9:3a:f1:
78:dc:3a:b9:9a:81:ef:5a:d9:a3:ff:4f:73:ee:51:1b:a8:d8:
bf:c2:9d:56:9c:b6:6b:b3:dc:b8:cb:83:1e:3c:14:ed:27:a4:
a4:22:5c:dd:fc:02:a7:43:45:bc:ea:f6:a4:47:3c:ec:78:fd:
ef:80:43:fc:ba:e1:50:2a:7f:17:7d:0f:2f:16:e6:bb:f2:80:
30:01:03:94:8b:03:e6:17:58:1f:2a:04:b7:32:b7:bb:3d:ff:
96:43:e7:cf:52:55:b9:52:b2:62:85:65:29:b0:ea:ed:37:52:
8c:5d:47:8f:5e:6d:d6:aa:41:c0:11:36:87:eb:c2:00:fa:09:
79:ee:41:b8:9a:63:ea:e0:54:a7:70:bc:f4:3a:56:83:31:c3:
3d:cf:81:20:9b:b4:cd:81:26:e2:e4:35:f8:32:3f:20:33:91:
7b:3b:1c:f3:f1:f4:a9:a2:f7:5d:6f:1d:54:91:eb:e9:ad:32:
e4:1b:6f:cc
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQyNTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEI0N0NCRDQ4N0ExQkJF
NDU3NzAyQTc1MTk4ODk0QTAwQjk0M0IzMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpempt2Qmviv1CMPFjyRc4+EO/QqspO46HUFmUPXDvxBd7NIhk
ljejRQ5RYohuoUXAAqY7ciy+rHhah4UhkYLD17J9hqjzLI22irhdX57gpLZ7kqQA
mvBc8yw1hpwGBI5edxP04HP3xm3TKKK2RJexgsc/uSqKUuSnZX5Qqtdgr4nYMqaF
njKbTbi4NrNx8bsiebU9XUEBEVwk4fGM71Wzc6Mc9xPvNxEJGL2JblVwqFsVR+0o
So+frPOSE3F8YF7XCExvaAkLt2WAxF9rtTp0uRVjdCh9gJX318BkHkGxNRsxnpso
xBAx4sORKPA3K0YYwRJDodXtbdgAZf+Enh2BAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUtHy9SHobvkV3AqdRmIlKALlDswswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEh5OVNIb2J2a1YzQXFkUm1JbEtB
TGxEc3dzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD1CMA0G
CSqGSIb3DQEBCwUAA4IBAQAXmMNaUk0BB7JzKffzkBoQJ/YsxGNBmbn7Tt2E3YmD
RUXbFsuOMplZz9jwHk1mbM0+7NArCr8hf7YEQ3e3KIN9mJ8ltejpOvF43Dq5moHv
Wtmj/09z7lEbqNi/wp1WnLZrs9y4y4MePBTtJ6SkIlzd/AKnQ0W86vakRzzseP3v
gEP8uuFQKn8XfQ8vFua78oAwAQOUiwPmF1gfKgS3Mre7Pf+WQ+fPUlW5UrJihWUp
sOrtN1KMXUePXm3WqkHAETaH68IA+gl57kG4mmPq4FSncLz0OlaDMcM9z4Egm7TN
gSbi5DX4Mj8gM5F7Oxzz8fSpovddbx1UkevprTLkG2/M
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org