Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/umvf3WjVPd_wYDSJ25FW9Z1GXCM.roa
File: umvf3WjVPd_wYDSJ25FW9Z1GXCM.roa (raw, json)
Hash identifier: ptTaezJMA+KoqKRi4hXdmSfZpUgysAFcP4ixEKsCybE=
Subject key identifier: BA:6B:DF:DD:68:D5:3D:DF:F0:60:34:89:DB:91:56:F5:9D:46:5C:23
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08DB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/umvf3WjVPd_wYDSJ25FW9Z1GXCM.roa
Signing time: Tue 29 Sep 2020 09:52:32 +0000
ROA not before: Tue 29 Sep 2020 09:52:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 175.182.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2267 (0x8db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BA6BDFDD68D53DDFF0603489DB9156F59D465C23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:56:6e:da:dd:24:19:89:d4:ef:4f:79:ef:80:
b3:71:1b:e5:10:cf:f1:63:4f:9f:fc:90:4a:fc:00:
58:b4:34:ac:fa:27:a4:32:8c:82:50:c0:af:9c:3e:
fa:f1:21:a4:10:75:3a:0a:ca:83:ba:c9:33:0e:cd:
57:ce:46:06:84:d3:81:cd:69:40:f4:02:e3:5c:e6:
86:df:30:04:e1:3f:3d:1a:ed:41:32:e1:66:32:81:
08:b6:78:ff:51:77:bc:35:cf:3e:28:59:a9:d5:cd:
4e:f9:5f:e8:5c:56:d6:2f:31:d5:e6:25:74:a5:f2:
61:09:d4:d8:a4:fc:95:a3:3b:35:f1:cd:fa:ae:b9:
a8:c9:11:14:98:76:0a:d1:df:42:25:f4:e7:61:d5:
67:00:a9:5f:1c:a5:fd:f0:1e:f5:f4:a2:ec:09:1b:
a7:90:cb:e2:c6:85:ab:9b:17:d6:78:7f:12:7d:75:
21:db:d2:68:36:7c:1b:a0:06:7b:75:cf:a7:bf:9d:
01:25:40:e2:e8:8d:9e:30:48:d9:2e:f5:10:49:a6:
b5:24:4c:fc:60:36:17:2c:3c:4f:4b:95:f8:66:0c:
a8:b5:7b:98:fd:64:d4:f8:0d:73:1b:e3:8b:f7:24:
c4:8f:89:a1:2c:a8:ac:c5:3e:7d:44:7a:dc:26:f1:
99:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6B:DF:DD:68:D5:3D:DF:F0:60:34:89:DB:91:56:F5:9D:46:5C:23
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/umvf3WjVPd_wYDSJ25FW9Z1GXCM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ab:74:5d:78:61:13:32:26:cb:a3:94:2a:6f:57:e6:06:97:dd:
3d:c4:2c:d0:80:02:be:ef:4e:48:c8:d4:68:97:94:fd:00:b0:
a0:ef:9f:56:a7:04:2a:39:70:60:f8:ad:d4:7f:13:41:fe:22:
1b:a6:bd:8b:e8:34:a4:ed:15:88:ad:54:b5:cf:96:09:b9:ad:
43:91:9a:b0:c7:96:2a:32:3f:0c:90:76:18:a6:03:6a:e6:83:
5f:3e:05:2d:bb:f5:b2:13:f0:fb:2d:67:13:63:3b:a4:81:0e:
1e:d0:c3:63:c1:00:d1:0f:f5:8f:a7:e4:ec:ef:33:27:a2:94:
b8:a4:85:09:81:35:9e:25:5e:6a:38:5e:33:10:f1:50:4a:af:
99:1e:a4:9f:29:18:56:6b:f8:5b:b7:7d:0b:a8:3e:eb:62:47:
94:04:15:36:11:b6:0b:c7:4e:e4:b3:03:fe:c6:c7:7f:6c:65:
e2:ec:f9:c1:e4:ea:d9:9d:5d:3a:e0:a7:6a:4d:95:85:7c:02:
67:e7:69:ea:ea:d2:7d:3b:83:ae:9a:2a:89:1d:0a:da:94:6c:
a5:fd:fc:e3:aa:41:c4:e5:45:c8:f2:cf:2e:1f:4a:dd:b3:ab:
7b:e1:8c:5a:97:07:44:13:da:ca:6f:5b:c6:d9:ad:64:0f:a6:
77:05:76:0e
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMzJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJBNkJERkRENjhENTNE
REZGMDYwMzQ4OURCOTE1NkY1OUQ0NjVDMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCiVm7a3SQZidTvT3nvgLNxG+UQz/FjT5/8kEr8AFi0NKz6J6Qy
jIJQwK+cPvrxIaQQdToKyoO6yTMOzVfORgaE04HNaUD0AuNc5obfMAThPz0a7UEy
4WYygQi2eP9Rd7w1zz4oWanVzU75X+hcVtYvMdXmJXSl8mEJ1Nik/JWjOzXxzfqu
uajJERSYdgrR30Il9Odh1WcAqV8cpf3wHvX0ouwJG6eQy+LGhaubF9Z4fxJ9dSHb
0mg2fBugBnt1z6e/nQElQOLojZ4wSNku9RBJprUkTPxgNhcsPE9LlfhmDKi1e5j9
ZNT4DXMb44v3JMSPiaEsqKzFPn1Eetwm8ZnNAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUumvf3WjVPd/wYDSJ25FW9Z1GXCMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdW12ZjNXalZQZF93WURTSjI1Rlc5
WjFHWENNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAK+2MA0G
CSqGSIb3DQEBCwUAA4IBAQCrdF14YRMyJsujlCpvV+YGl909xCzQgAK+705IyNRo
l5T9ALCg759WpwQqOXBg+K3UfxNB/iIbpr2L6DSk7RWIrVS1z5YJua1DkZqwx5Yq
Mj8MkHYYpgNq5oNfPgUtu/WyE/D7LWcTYzukgQ4e0MNjwQDRD/WPp+Ts7zMnopS4
pIUJgTWeJV5qOF4zEPFQSq+ZHqSfKRhWa/hbt30LqD7rYkeUBBU2EbYLx07kswP+
xsd/bGXi7PnB5OrZnV064KdqTZWFfAJn52nq6tJ9O4OumiqJHQralGyl/fzjqkHE
5UXI8s8uH0rds6t74YxalwdEE9rKb1vG2a1kD6Z3BXYO
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org