Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/v9g8sU6MSnovtljna4e2R61lnBA.roa
File: v9g8sU6MSnovtljna4e2R61lnBA.roa (raw, json)
Hash identifier: zWv2EQ1hcCdfsliE2iR3vNJw/hNNPIgfZI6tHCJdu9M=
Subject key identifier: BF:D8:3C:B1:4E:8C:4A:7A:2F:B6:58:E7:6B:87:B6:47:AD:65:9C:10
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08B7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v9g8sU6MSnovtljna4e2R61lnBA.roa
Signing time: Tue 29 Sep 2020 09:52:21 +0000
ROA not before: Tue 29 Sep 2020 09:52:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.56.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2231 (0x8b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BFD83CB14E8C4A7A2FB658E76B87B647AD659C10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:af:aa:ff:ed:64:2c:2e:38:fb:9a:a6:e7:ba:
d3:46:ac:db:61:9b:9c:a4:c5:ae:94:78:a2:a2:2e:
12:ea:98:32:a6:79:c7:b3:97:a6:61:d9:9f:dc:60:
05:93:01:32:ef:23:90:ad:b5:47:d4:d6:c2:bf:77:
2d:87:b0:2f:43:6b:0d:e4:06:a4:df:23:b9:c9:bb:
8b:8e:4b:b1:dc:58:45:24:d7:cf:77:c0:7f:e3:dc:
2b:e0:4b:23:ed:06:0d:a8:67:e9:74:75:ae:72:8c:
cb:4b:ea:76:fb:eb:e2:28:d9:5d:c6:ba:9b:6a:ce:
6d:84:e6:94:c2:3d:5d:a7:34:d1:d7:5e:3e:2f:af:
bd:ec:cf:ed:f3:c5:2c:00:d4:0c:6b:e9:c0:3c:19:
29:7e:c5:9f:8f:dc:45:72:ba:50:b8:d0:6b:43:a9:
2f:5b:60:5d:63:23:db:23:b5:f4:f3:74:4b:87:56:
5b:39:ac:e1:03:c0:cd:7a:df:3b:8d:4b:b4:81:75:
a4:ae:2d:47:dd:d3:58:7d:0f:1a:d9:d5:5b:56:df:
58:35:fd:fe:f4:22:0a:6a:e5:b8:09:e0:8d:31:5b:
df:08:4e:5f:c5:e0:ab:10:d0:cb:7c:7d:8e:7e:71:
a1:cf:21:fd:66:14:1c:23:1f:d5:82:f1:05:34:a3:
17:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D8:3C:B1:4E:8C:4A:7A:2F:B6:58:E7:6B:87:B6:47:AD:65:9C:10
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v9g8sU6MSnovtljna4e2R61lnBA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a2:e6:a5:7e:10:84:69:9e:67:fd:dc:61:35:a0:0a:34:e8:30:
f8:5f:dc:97:d9:3d:9d:ac:ae:d4:f9:6a:42:78:5b:c4:7d:88:
89:37:49:d2:3f:2c:18:ba:c0:0f:87:fb:c5:e9:d3:7b:28:1d:
63:97:8f:6f:3b:9b:2b:6d:b0:85:9a:bb:e5:4f:20:dc:80:46:
5a:63:96:b0:c9:23:b9:6f:0b:a1:b4:cc:51:48:25:c3:02:39:
82:21:fc:6a:aa:91:ac:10:25:b8:8a:ad:30:66:ad:4b:79:54:
a0:ac:be:78:16:d1:1c:98:45:3c:eb:a2:97:93:f3:2c:bf:b9:
8c:f1:c6:47:f2:0c:8c:1d:f0:71:c1:6f:89:e5:57:a6:9a:3a:
4c:c1:d3:16:e7:9a:fd:62:54:b3:0d:7f:ef:7e:99:f1:a7:3d:
f6:6c:b7:cb:f7:e5:60:b6:e9:dd:ba:78:72:04:7d:0e:55:08:
d5:90:3d:ec:7b:a7:b0:ee:45:ea:c9:03:ea:14:17:a5:97:22:
e8:b5:b3:be:d5:1b:19:b8:f8:db:ce:c9:4f:aa:51:d0:14:49:
ad:8c:3a:71:43:4b:95:3c:87:51:57:3f:02:6a:93:bf:1a:8a:
9e:bf:75:ec:1c:ac:f5:83:7d:ae:1e:11:49:01:ae:b9:d8:17:
e2:81:65:10
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCLcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMjFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJGRDgzQ0IxNEU4QzRB
N0EyRkI2NThFNzZCODdCNjQ3QUQ2NTlDMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9r6r/7WQsLjj7mqbnutNGrNthm5ykxa6UeKKiLhLqmDKmecez
l6Zh2Z/cYAWTATLvI5CttUfU1sK/dy2HsC9Daw3kBqTfI7nJu4uOS7HcWEUk1893
wH/j3CvgSyPtBg2oZ+l0da5yjMtL6nb76+Io2V3Guptqzm2E5pTCPV2nNNHXXj4v
r73sz+3zxSwA1Axr6cA8GSl+xZ+P3EVyulC40GtDqS9bYF1jI9sjtfTzdEuHVls5
rOEDwM163zuNS7SBdaSuLUfd01h9DxrZ1VtW31g1/f70Igpq5bgJ4I0xW98ITl/F
4KsQ0Mt8fY5+caHPIf1mFBwjH9WC8QU0oxepAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUv9g8sU6MSnovtljna4e2R61lnBAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdjlnOHNVNk1Tbm92dGxqbmE0ZTJS
NjFsbkJBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT04wDAN
BgkqhkiG9w0BAQsFAAOCAQEAoualfhCEaZ5n/dxhNaAKNOgw+F/cl9k9nayu1Plq
QnhbxH2IiTdJ0j8sGLrAD4f7xenTeygdY5ePbzubK22whZq75U8g3IBGWmOWsMkj
uW8LobTMUUglwwI5giH8aqqRrBAluIqtMGatS3lUoKy+eBbRHJhFPOuil5PzLL+5
jPHGR/IMjB3wccFvieVXppo6TMHTFuea/WJUsw1/736Z8ac99my3y/flYLbp3bp4
cgR9DlUI1ZA97HunsO5F6skD6hQXpZci6LWzvtUbGbj4287JT6pR0BRJrYw6cUNL
lTyHUVc/AmqTvxqKnr917Bys9YN9rh4RSQGuudgX4oFlEA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org