Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JPu3T34dOOlIsFZCsspQrypGoCA.roa
File: JPu3T34dOOlIsFZCsspQrypGoCA.roa (raw, json)
Hash identifier: JZy9nmcYjO9W2o/bw6T/h6qIm1C4VxceiTApQwESKTc=
Subject key identifier: 24:FB:B7:4F:7E:1D:38:E9:48:B0:56:42:B2:CA:50:AF:2A:46:A0:20
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08AE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JPu3T34dOOlIsFZCsspQrypGoCA.roa
Signing time: Tue 29 Sep 2020 09:52:19 +0000
ROA not before: Tue 29 Sep 2020 09:52:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2222 (0x8ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=24FBB74F7E1D38E948B05642B2CA50AF2A46A020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:dd:b1:6e:a9:31:e4:0c:8e:50:f9:e1:9d:
83:a4:cb:f1:fc:42:12:5d:65:c2:2e:f6:0f:29:0f:
21:70:83:5c:4a:ea:14:fe:24:c8:ec:04:bf:c0:28:
8f:c8:dd:79:c4:7d:07:6e:dd:35:41:6c:9d:7c:59:
7f:93:a0:f1:cb:b1:a8:7a:e0:9b:9a:2f:b4:e0:a6:
d8:4d:05:3a:e7:23:cb:44:b0:97:d0:99:7e:59:58:
0e:a0:36:78:70:1b:25:05:3d:dc:9e:ff:96:6b:a7:
f4:f3:6c:44:c7:7a:2b:65:f4:58:fe:8e:b6:67:7c:
c4:1d:a2:f8:da:23:bf:e2:85:15:a9:f4:df:d7:aa:
a7:e6:d2:84:53:98:4b:0b:ca:9a:b9:b8:3e:d8:37:
6a:fc:25:48:b9:3a:bc:39:a3:a9:3b:c6:41:91:98:
70:8d:8a:be:c9:2e:f2:a4:3d:1e:c1:0d:23:c7:2a:
b0:22:df:63:34:51:35:c5:fd:d0:07:6c:bf:e8:3c:
f7:7f:c4:0a:f1:34:61:bb:0e:11:6d:cc:d6:66:9c:
55:bc:43:aa:07:a6:ea:25:75:11:57:44:1d:41:34:
8e:38:ed:e8:00:8a:3e:5a:5c:ad:83:3d:c6:79:d5:
9b:9f:6f:9f:78:6b:4a:ff:11:62:9f:73:bc:32:6f:
27:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FB:B7:4F:7E:1D:38:E9:48:B0:56:42:B2:CA:50:AF:2A:46:A0:20
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JPu3T34dOOlIsFZCsspQrypGoCA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.0.0/20
Signature Algorithm: sha256WithRSAEncryption
c5:2f:35:3f:1a:a3:11:59:b1:ae:1f:fb:be:16:6b:e2:64:89:
91:04:fe:d2:a0:b1:13:36:f5:89:c7:f3:c4:74:59:74:cd:ee:
66:ea:0e:8f:20:5d:89:4e:03:37:ec:6b:ef:fc:c3:78:ae:93:
ee:62:f9:2f:14:ac:5b:5f:03:eb:73:d6:0b:71:39:39:57:67:
9b:1c:00:24:f3:47:42:0a:99:48:19:ec:b6:c8:7f:73:5d:30:
da:48:87:c6:40:d9:43:c8:66:ec:d4:b1:17:de:6d:a7:9b:33:
40:df:09:36:12:f5:d1:1f:45:a0:e9:6c:39:2d:93:13:5b:a8:
a5:b5:a1:36:67:4b:a5:cf:8b:9f:e9:5e:fc:35:19:af:c2:e9:
cb:d3:8a:1a:34:d2:47:67:e8:4c:05:06:14:c5:f2:4a:4a:3e:
6b:63:4f:63:b2:9c:62:f8:7f:40:e3:6e:8b:74:04:08:d6:21:
d4:04:d4:51:53:3b:fe:fa:b7:54:ed:21:9b:5f:cb:3e:2f:3a:
3d:20:b7:56:51:52:ec:aa:a0:76:8f:55:5c:47:6e:34:88:60:
99:21:eb:74:70:ce:ec:35:a0:84:1f:81:87:22:19:38:7e:5e:
26:a0:75:45:de:7f:a8:bb:6b:a4:2d:42:77:eb:fa:ea:9c:0e:
69:82:ab:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:17:08 2025 by rpki-client