Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vIcTSrrBE1uLhhuqP2CbHFY-YAg.roa
File: vIcTSrrBE1uLhhuqP2CbHFY-YAg.roa (raw, json)
Hash identifier: wAJ9EplnHs+LaCSCB+wE+NzfVPOkB4Y9oZ/h5megfko=
Subject key identifier: BC:87:13:4A:BA:C1:13:5B:8B:86:1B:AA:3F:60:9B:1C:56:3E:60:08
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08F6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vIcTSrrBE1uLhhuqP2CbHFY-YAg.roa
Signing time: Tue 29 Sep 2020 09:52:39 +0000
ROA not before: Tue 29 Sep 2020 09:52:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.228.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2294 (0x8f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BC87134ABAC1135B8B861BAA3F609B1C563E6008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:58:dc:ab:42:7d:f2:96:c2:22:be:33:d4:
68:ba:f7:71:41:98:3a:36:a3:44:a8:a8:56:50:f6:
21:9b:22:65:6d:91:ef:04:2d:8c:ab:a3:0e:ef:b9:
04:b3:ff:55:52:d8:59:44:be:e3:ae:6d:11:bf:59:
ea:c4:09:50:85:d1:d3:fb:a6:0b:03:27:49:5a:5d:
6a:e9:a1:fe:67:da:27:b7:66:ca:02:0e:76:50:99:
f5:59:db:4d:bb:3c:0f:f5:10:9c:df:ac:b2:09:e6:
a9:b7:cb:c5:8d:a9:d3:74:87:23:cd:cb:fa:1e:54:
23:16:f4:07:26:73:58:cb:02:f2:9e:1c:4c:73:59:
51:ed:5c:8e:67:97:49:b9:d2:4c:0e:44:72:0d:c5:
14:6d:0f:7d:10:6a:6e:76:ea:c8:ff:44:79:14:ca:
e0:62:43:c6:84:0b:43:22:2b:28:30:e2:bb:ad:33:
a7:10:4e:5a:9d:51:83:8e:dc:8f:d1:97:0f:3c:f5:
c8:2b:fe:b6:ee:7e:c4:c1:d3:64:ce:e9:2e:db:03:
c7:a2:4c:f6:ff:ba:b5:f3:c1:5f:12:ad:d2:3a:80:
de:88:25:ec:ff:ad:75:e5:30:67:21:49:78:67:84:
96:48:78:04:50:71:83:e5:a4:ca:de:57:61:ac:c0:
68:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:87:13:4A:BA:C1:13:5B:8B:86:1B:AA:3F:60:9B:1C:56:3E:60:08
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vIcTSrrBE1uLhhuqP2CbHFY-YAg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.228.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c3:bc:5c:81:ac:94:b2:94:95:0d:39:e0:2f:b4:1b:9b:5d:08:
5d:36:7b:07:32:7b:5e:ca:e3:1c:be:b2:9f:70:bd:18:f9:72:
66:f4:6d:35:28:57:48:df:5d:91:1f:3a:e1:28:89:a5:9c:09:
c4:a4:d3:23:a5:97:37:13:49:c1:41:c8:55:b3:ec:33:28:b5:
a6:fd:68:38:c1:87:58:73:67:97:77:9a:ca:58:5a:63:16:41:
5d:ff:52:2d:5a:61:17:5b:9e:93:b7:84:f0:a5:c5:6f:b6:62:
54:41:b8:23:2b:65:31:bc:08:07:18:5e:09:b1:f0:48:6e:2e:
1f:77:d1:f3:84:04:82:bf:fb:31:4e:fa:30:78:7c:0d:ba:b2:
07:4d:98:a1:e8:ea:52:48:df:65:84:40:f0:7f:97:31:ef:90:
07:f2:3e:cd:fb:19:af:07:7b:cb:0a:cc:34:a8:6e:84:66:c0:
a9:77:5c:e5:fe:7d:80:f7:8e:45:3b:5c:75:64:ad:9b:06:98:
df:e7:27:f6:32:29:46:c1:a4:d2:06:4f:bf:2c:54:89:1a:44:
4b:9c:88:12:f1:f8:65:95:13:5f:d7:c9:d9:09:ef:c2:c9:5c:
81:b6:9d:69:3a:dc:a2:fb:f2:61:a8:23:f9:c4:25:1b:aa:5b:
bc:e1:9d:96
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMzlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJDODcxMzRBQkFDMTEz
NUI4Qjg2MUJBQTNGNjA5QjFDNTYzRTYwMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/jFjcq0J98pbCIr4z1Gi693FBmDo2o0SoqFZQ9iGbImVtke8E
LYyrow7vuQSz/1VS2FlEvuOubRG/WerECVCF0dP7pgsDJ0laXWrpof5n2ie3ZsoC
DnZQmfVZ2027PA/1EJzfrLIJ5qm3y8WNqdN0hyPNy/oeVCMW9Acmc1jLAvKeHExz
WVHtXI5nl0m50kwORHINxRRtD30Qam526sj/RHkUyuBiQ8aEC0MiKygw4rutM6cQ
TlqdUYOO3I/Rlw889cgr/rbufsTB02TO6S7bA8eiTPb/urXzwV8SrdI6gN6IJez/
rXXlMGchSXhnhJZIeARQcYPlpMreV2GswGj/AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUvIcTSrrBE1uLhhuqP2CbHFY+YAgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdkljVFNyckJFMXVMaGh1cVAyQ2JI
RlktWUFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANzkMA0G
CSqGSIb3DQEBCwUAA4IBAQDDvFyBrJSylJUNOeAvtBubXQhdNnsHMnteyuMcvrKf
cL0Y+XJm9G01KFdI312RHzrhKImlnAnEpNMjpZc3E0nBQchVs+wzKLWm/Wg4wYdY
c2eXd5rKWFpjFkFd/1ItWmEXW56Tt4TwpcVvtmJUQbgjK2UxvAgHGF4JsfBIbi4f
d9HzhASCv/sxTvoweHwNurIHTZih6OpSSN9lhEDwf5cx75AH8j7N+xmvB3vLCsw0
qG6EZsCpd1zl/n2A945FO1x1ZK2bBpjf5yf2MilGwaTSBk+/LFSJGkRLnIgS8fhl
lRNf18nZCe/CyVyBtp1pOtyi+/JhqCP5xCUbqlu84Z2W
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org