Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/wOdx5xq8KSD3huxE2gYfQYRtmM4.roa
File: wOdx5xq8KSD3huxE2gYfQYRtmM4.roa (raw, json)
Hash identifier: 027qISbLKnx6xDSY7S+KHEKtyNWnQSVRd4UaBDvfg5Q=
Subject key identifier: C0:E7:71:E7:1A:BC:29:20:F7:86:EC:44:DA:06:1F:41:84:6D:98:CE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B5B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wOdx5xq8KSD3huxE2gYfQYRtmM4.roa
Signing time: Sun 07 Feb 2021 05:50:08 +0000
ROA not before: Sun 07 Feb 2021 05:50:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2907 (0xb5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 05:50:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C0E771E71ABC2920F786EC44DA061F41846D98CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cc:17:8f:b5:2f:fc:c0:29:ee:b3:aa:66:19:
7b:78:59:89:54:62:61:4b:a9:3b:f8:e6:7b:50:90:
f7:54:60:60:38:e0:5a:5d:a9:9a:a3:6a:a0:45:c2:
78:93:ed:5f:2a:8d:88:e2:b6:39:ce:a2:b3:4e:3d:
19:4b:55:2a:25:c6:21:b3:ae:4f:32:73:24:9a:70:
2f:02:87:b3:65:a8:9d:6e:f9:41:a7:e9:5a:ad:13:
d3:97:4d:5e:10:38:e9:d3:54:3a:37:04:8c:85:42:
63:11:03:79:26:e5:22:bc:95:60:75:52:c5:c5:4f:
91:20:33:36:51:d8:98:66:01:1f:3d:52:29:ad:52:
50:5d:ed:e3:a8:58:be:5c:8c:92:a8:7f:8f:cd:d6:
5a:46:70:ec:d5:7d:5d:f6:dd:be:05:f3:74:d0:35:
01:e8:a3:c5:d0:23:f3:92:9a:ae:bb:8d:9f:87:9b:
a9:8c:e5:76:bc:32:c9:da:f8:c2:9d:9a:01:75:28:
f8:ff:70:07:93:26:ef:b7:8f:e1:f8:f8:ff:2c:83:
a5:71:50:59:8d:dc:0d:f8:73:db:49:e3:36:63:49:
07:1a:ba:f8:54:d8:05:e4:ba:c6:93:2b:4c:89:41:
c6:e1:f3:3d:82:8c:84:54:c6:36:1f:73:ef:f1:c2:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E7:71:E7:1A:BC:29:20:F7:86:EC:44:DA:06:1F:41:84:6D:98:CE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wOdx5xq8KSD3huxE2gYfQYRtmM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
71:21:49:6e:44:96:80:3a:97:17:2a:9b:39:32:14:87:c2:81:
12:a4:18:00:d4:80:5b:95:d2:be:96:a9:d6:9d:16:3f:8a:9b:
54:e0:c1:93:00:64:ef:85:50:6b:24:8f:97:00:3e:d4:23:5f:
b2:1d:0e:83:4d:2d:fc:a8:da:a2:be:3b:b0:fe:73:de:a8:12:
d9:78:49:18:c2:8f:a6:10:5e:57:0f:67:7d:52:0c:5a:9d:59:
d9:0d:ca:b3:da:d0:22:11:88:92:3c:c8:f0:1a:0d:9c:e5:73:
f4:34:14:21:87:ca:bc:46:2f:e3:59:55:8d:f8:d5:d5:d3:6c:
a5:98:fe:29:57:6e:02:36:57:ee:6e:e4:7c:e1:3d:84:32:c3:
0e:1f:21:ad:0d:0e:b2:22:0c:9c:0f:af:fc:76:64:cd:a1:08:
2f:c7:34:92:f1:47:02:b1:8e:f0:a0:a1:90:e7:1f:17:21:a6:
b8:f9:9a:d0:81:ff:cf:b6:a9:61:61:64:6b:f8:f9:64:57:dc:
38:41:d1:67:92:1e:ec:2f:62:40:03:db:1f:a1:69:55:fd:66:
a3:ff:4e:3e:b3:af:91:d5:3e:2b:1e:a8:ad:c6:8b:a0:bb:99:
fc:d8:43:9e:07:69:30:3a:41:20:13:0c:9b:97:c5:32:42:c7:
75:b6:a7:cf
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTAyMDcw
NTUwMDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEMwRTc3MUU3MUFCQzI5
MjBGNzg2RUM0NERBMDYxRjQxODQ2RDk4Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAzBePtS/8wCnus6pmGXt4WYlUYmFLqTv45ntQkPdUYGA44Fpd
qZqjaqBFwniT7V8qjYjitjnOorNOPRlLVSolxiGzrk8ycySacC8Ch7NlqJ1u+UGn
6VqtE9OXTV4QOOnTVDo3BIyFQmMRA3km5SK8lWB1UsXFT5EgMzZR2JhmAR89Uimt
UlBd7eOoWL5cjJKof4/N1lpGcOzVfV323b4F83TQNQHoo8XQI/OSmq67jZ+Hm6mM
5Xa8Msna+MKdmgF1KPj/cAeTJu+3j+H4+P8sg6VxUFmN3A34c9tJ4zZjSQcauvhU
2AXkusaTK0yJQcbh8z2CjIRUxjYfc+/xwqWrAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUwOdx5xq8KSD3huxE2gYfQYRtmM4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvd09keDV4cThLU0QzaHV4RTJnWWZR
WVJ0bU00LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3szgDAN
BgkqhkiG9w0BAQsFAAOCAQEAcSFJbkSWgDqXFyqbOTIUh8KBEqQYANSAW5XSvpap
1p0WP4qbVODBkwBk74VQaySPlwA+1CNfsh0Og00t/Kjaor47sP5z3qgS2XhJGMKP
phBeVw9nfVIMWp1Z2Q3Ks9rQIhGIkjzI8BoNnOVz9DQUIYfKvEYv41lVjfjV1dNs
pZj+KVduAjZX7m7kfOE9hDLDDh8hrQ0OsiIMnA+v/HZkzaEIL8c0kvFHArGO8KCh
kOcfFyGmuPma0IH/z7apYWFka/j5ZFfcOEHRZ5Ie7C9iQAPbH6FpVf1mo/9OPrOv
kdU+Kx6orcaLoLuZ/NhDngdpMDpBIBMMm5fFMkLHdbanzw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org