Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/v1mHWLPE-T5aadv7JSHXlbWyxRk.roa
File: v1mHWLPE-T5aadv7JSHXlbWyxRk.roa (raw, json)
Hash identifier: r9k/VlWtomkWXP9dZtg4jzhIkipQZZdCwJrCKcG6EzU=
Subject key identifier: BF:59:87:58:B3:C4:F9:3E:5A:69:DB:FB:25:21:D7:95:B5:B2:C5:19
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 089A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v1mHWLPE-T5aadv7JSHXlbWyxRk.roa
Signing time: Tue 29 Sep 2020 09:52:12 +0000
ROA not before: Tue 29 Sep 2020 09:52:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 2401:8000::/26 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2202 (0x89a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BF598758B3C4F93E5A69DBFB2521D795B5B2C519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a3:f5:84:f1:9d:56:5a:7a:3f:25:3f:c5:23:
9c:ea:03:38:05:5f:2c:60:60:f0:45:d8:cf:9c:92:
4a:d3:aa:78:d7:9e:c9:b3:5d:5a:3b:96:a8:d0:d6:
c8:f8:fb:db:63:40:44:c3:70:21:d6:54:2a:65:40:
89:c2:9b:28:b2:fb:63:a0:bd:14:01:77:46:f1:e0:
8d:3f:ad:a0:71:17:fa:64:57:60:a7:32:51:e0:b0:
4f:04:07:dd:1d:b2:77:0f:39:7b:08:72:51:0e:4c:
e5:9f:c1:5a:df:8d:e4:d7:a0:18:f1:c9:96:d0:7d:
68:2d:d4:1d:7f:dc:9c:3c:44:0e:4d:e6:c1:b8:68:
7f:68:48:5c:b3:a2:60:6b:dc:6e:17:7e:13:2c:da:
5e:23:62:34:4f:cb:a6:34:0f:87:ee:c3:f8:cd:62:
ef:d2:71:ec:96:f7:96:4c:3e:6a:c0:1c:a6:b1:8b:
c0:c3:e0:6c:4c:65:7f:58:da:9e:6e:eb:42:8f:e3:
4e:ff:98:4a:b8:32:76:ad:4c:92:f5:36:84:bb:a2:
74:c4:fa:dd:f2:ab:a7:e2:d3:c5:f2:03:ee:55:a3:
a9:d2:77:41:7b:cd:43:b2:ef:6f:13:63:57:5c:2d:
a1:e4:04:24:90:41:d8:77:32:7c:0a:77:f2:a9:28:
b7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:59:87:58:B3:C4:F9:3E:5A:69:DB:FB:25:21:D7:95:B5:B2:C5:19
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v1mHWLPE-T5aadv7JSHXlbWyxRk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:8000::/26
Signature Algorithm: sha256WithRSAEncryption
54:a8:6e:b6:db:ed:af:e5:57:69:df:7a:78:5a:2c:a0:28:70:
11:56:26:26:b3:5d:10:db:38:ed:d1:a6:0c:99:28:db:b2:2f:
9b:85:da:9d:44:39:db:4e:8f:f2:f3:e2:1f:1f:1d:89:2b:21:
ca:60:8a:b7:97:47:0e:c3:36:c7:7c:4d:ff:09:69:ef:9a:c1:
69:ab:1d:4e:0d:a9:29:0c:74:da:e1:ef:41:ea:f9:83:67:66:
95:ed:60:1c:5f:e6:6e:7f:a9:53:69:42:5c:24:39:7b:8a:e7:
5c:9f:b2:05:0c:99:9e:10:d5:33:f3:59:bd:97:a3:cd:12:b1:
fa:ae:35:4c:bd:4b:1c:5a:d6:65:6d:e1:fa:4c:34:bb:9a:97:
88:c2:9b:31:6f:69:33:d4:88:e1:01:7b:29:7c:9e:8f:d4:0a:
68:a8:eb:79:4e:fc:db:27:c3:21:df:8b:8b:95:df:75:b4:ba:
29:a0:d3:d1:fe:0e:e7:b6:cb:90:82:65:fd:cd:c5:1c:ee:91:
ba:8a:15:61:79:1b:11:57:0f:db:bd:45:47:75:6a:9f:a2:8b:
21:c3:e4:e2:ce:1a:75:d9:08:54:66:69:6a:0f:f9:03:39:54:
42:5d:51:83:a5:43:43:e7:25:f6:36:66:f3:e4:d0:aa:b1:de:
89:e9:36:cb
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJGNTk4NzU4QjNDNEY5
M0U1QTY5REJGQjI1MjFENzk1QjVCMkM1MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCo/WE8Z1WWno/JT/FI5zqAzgFXyxgYPBF2M+ckkrTqnjXnsmz
XVo7lqjQ1sj4+9tjQETDcCHWVCplQInCmyiy+2OgvRQBd0bx4I0/raBxF/pkV2Cn
MlHgsE8EB90dsncPOXsIclEOTOWfwVrfjeTXoBjxyZbQfWgt1B1/3Jw8RA5N5sG4
aH9oSFyzomBr3G4XfhMs2l4jYjRPy6Y0D4fuw/jNYu/SceyW95ZMPmrAHKaxi8DD
4GxMZX9Y2p5u60KP407/mEq4MnatTJL1NoS7onTE+t3yq6fi08XyA+5Vo6nSd0F7
zUOy728TY1dcLaHkBCSQQdh3MnwKd/KpKLeLAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUv1mHWLPE+T5aadv7JSHXlbWyxRkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdjFtSFdMUEUtVDVhYWR2N0pTSFhs
Yld5eFJrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiQBgAAw
DQYJKoZIhvcNAQELBQADggEBAFSobrbb7a/lV2nfenhaLKAocBFWJiazXRDbOO3R
pgyZKNuyL5uF2p1EOdtOj/Lz4h8fHYkrIcpgireXRw7DNsd8Tf8Jae+awWmrHU4N
qSkMdNrh70Hq+YNnZpXtYBxf5m5/qVNpQlwkOXuK51yfsgUMmZ4Q1TPzWb2Xo80S
sfquNUy9Sxxa1mVt4fpMNLual4jCmzFvaTPUiOEBeyl8no/UCmio63lO/NsnwyHf
i4uV33W0uimg09H+Due2y5CCZf3NxRzukbqKFWF5GxFXD9u9RUd1ap+iiyHD5OLO
GnXZCFRmaWoP+QM5VEJdUYOlQ0PnJfY2ZvPk0Kqx3onpNss=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org