Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zSGiTaxzANJDy3zJ-MutDcHxzTo.roa
File: zSGiTaxzANJDy3zJ-MutDcHxzTo.roa (raw, json)
Hash identifier: mS++yHTAaCx450/3/o5gPul8HsoBQrogBcgx0ulXDZ8=
Subject key identifier: CD:21:A2:4D:AC:73:00:D2:43:CB:7C:C9:F8:CB:AD:0D:C1:F1:CD:3A
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B80
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zSGiTaxzANJDy3zJ-MutDcHxzTo.roa
Signing time: Wed 29 Sep 2021 02:44:16 +0000
ROA not before: Wed 29 Sep 2021 02:44:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2944 (0xb80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CD21A24DAC7300D243CB7CC9F8CBAD0DC1F1CD3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6d:80:6a:4e:ce:f6:49:c0:e8:48:50:2a:2b:
ea:65:47:4f:05:07:3e:4a:66:57:47:28:ce:49:f2:
32:82:57:e6:61:04:dc:47:e4:60:3c:97:ed:7b:cd:
0e:22:c3:70:c8:5f:80:21:49:2a:b5:c3:d7:05:11:
33:4f:98:4e:08:ac:ae:a0:d2:a2:e6:95:63:9c:c9:
a0:47:b2:ac:05:47:e0:6a:70:ba:12:b2:a5:33:b5:
14:cd:ad:cc:56:b0:4f:78:90:06:68:ae:6f:20:16:
b0:23:68:6f:fc:15:ea:6b:bc:13:87:69:3b:56:ce:
66:6c:4d:2e:6a:85:f1:43:ff:f6:bc:76:d2:32:b2:
94:f8:87:2a:df:46:ec:49:92:89:86:70:3d:b4:e6:
7a:5d:f1:ff:64:49:9d:f4:fa:34:4a:ba:b1:05:fb:
b8:b6:65:b9:15:b0:5d:b3:76:a1:9c:99:e7:05:62:
7b:38:c7:90:90:42:6a:bb:9c:36:4d:d7:46:50:f6:
e7:f9:36:c1:ca:e5:62:7e:cb:98:74:68:84:8a:e3:
ce:35:4f:7f:63:aa:7a:0e:2c:7a:e8:92:98:d6:ce:
37:c6:76:e6:d3:7b:5b:fa:d2:c0:f4:d9:7a:a0:7e:
7b:bb:3f:20:a6:f5:04:74:f3:bb:01:16:5a:2d:a3:
ad:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:21:A2:4D:AC:73:00:D2:43:CB:7C:C9:F8:CB:AD:0D:C1:F1:CD:3A
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zSGiTaxzANJDy3zJ-MutDcHxzTo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4a:a9:ce:83:3d:68:a5:b8:fe:9b:8f:e7:c3:b9:32:0d:19:22:
89:59:5f:10:39:a9:4e:a1:2a:7d:3e:62:0a:ef:74:25:8f:55:
a4:1e:46:46:16:b8:fe:b9:fe:69:f8:a7:88:e8:f5:fd:07:e9:
a2:67:4a:2e:4c:74:74:d8:4b:74:e4:0c:8f:d4:2e:79:aa:09:
40:34:40:53:97:04:99:a3:10:9d:94:53:98:d7:38:4c:3b:1f:
f4:b9:e9:22:f2:01:9d:72:14:bb:a8:f4:a7:5f:f3:75:2e:0a:
c9:11:29:29:17:6f:68:2e:a4:cc:2a:b0:03:32:3a:42:9d:9c:
3f:69:f7:e5:91:41:82:85:97:c5:b9:b3:41:02:16:8f:ef:33:
70:35:7c:d6:53:6f:15:73:c5:73:3a:5c:34:c0:d6:a1:9d:4d:
a4:ff:a8:f3:50:4a:50:2d:f7:e9:0a:73:3f:1a:25:95:4d:cd:
ad:a3:8b:d7:1a:01:df:a2:71:48:73:ae:bd:25:d6:fc:83:51:
28:0a:a0:0d:4a:3a:7e:44:0d:ea:84:b6:dd:a8:32:af:d2:9d:
53:af:ec:db:8f:11:51:25:47:6e:ba:f0:ed:0d:7c:70:93:a2:
cd:89:6e:fe:67:86:78:ee:9b:ad:5a:8c:05:c0:7d:cb:17:23:
00:81:ee:6b
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICC4AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTA5Mjkw
MjQ0MTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKENEMjFBMjREQUM3MzAw
RDI0M0NCN0NDOUY4Q0JBRDBEQzFGMUNEM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9bYBqTs72ScDoSFAqK+plR08FBz5KZldHKM5J8jKCV+ZhBNxH
5GA8l+17zQ4iw3DIX4AhSSq1w9cFETNPmE4IrK6g0qLmlWOcyaBHsqwFR+BqcLoS
sqUztRTNrcxWsE94kAZorm8gFrAjaG/8FeprvBOHaTtWzmZsTS5qhfFD//a8dtIy
spT4hyrfRuxJkomGcD205npd8f9kSZ30+jRKurEF+7i2ZbkVsF2zdqGcmecFYns4
x5CQQmq7nDZN10ZQ9uf5NsHK5WJ+y5h0aISK4841T39jqnoOLHrokpjWzjfGdubT
e1v60sD02Xqgfnu7PyCm9QR087sBFloto61tAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUzSGiTaxzANJDy3zJ+MutDcHxzTowHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvelNHaVRheHpBTkpEeTN6Si1NdXRE
Y0h4elRvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIuvMA0G
CSqGSIb3DQEBCwUAA4IBAQBKqc6DPWiluP6bj+fDuTINGSKJWV8QOalOoSp9PmIK
73Qlj1WkHkZGFrj+uf5p+KeI6PX9B+miZ0ouTHR02Et05AyP1C55qglANEBTlwSZ
oxCdlFOY1zhMOx/0ueki8gGdchS7qPSnX/N1LgrJESkpF29oLqTMKrADMjpCnZw/
afflkUGChZfFubNBAhaP7zNwNXzWU28Vc8VzOlw0wNahnU2k/6jzUEpQLffpCnM/
GiWVTc2to4vXGgHfonFIc669Jdb8g1EoCqANSjp+RA3qhLbdqDKv0p1Tr+zbjxFR
JUduuvDtDXxwk6LNiW7+Z4Z47putWowFwH3LFyMAge5r
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org