Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0-KdiRvm5jovAw7AfLTp7vRlif0.roa
File: 0-KdiRvm5jovAw7AfLTp7vRlif0.roa (raw, json)
Hash identifier: nhMYg4iFM53km8giY475jYZpX8Qks6wuohcvFrybpiM=
Subject key identifier: D3:E2:9D:89:1B:E6:E6:3A:2F:03:0E:C0:7C:B4:E9:EE:F4:65:89:FD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CD9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0-KdiRvm5jovAw7AfLTp7vRlif0.roa
Signing time: Sun 07 Feb 2021 11:45:32 +0000
ROA not before: Sun 07 Feb 2021 11:45:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3289 (0xcd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D3E29D891BE6E63A2F030EC07CB4E9EEF46589FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:46:3e:1f:69:2a:58:df:c1:6d:26:6c:9f:39:
50:63:31:3a:12:6a:23:1d:7d:e2:a8:6b:3d:56:8f:
7c:00:5e:d6:f5:5b:12:58:1e:46:df:1b:e4:93:e7:
63:c4:45:42:55:2a:90:f2:7a:31:fe:f9:40:70:27:
8f:7f:0c:32:4d:d2:a4:0d:1e:41:a5:75:06:e1:cc:
e5:22:c1:ce:90:12:b1:28:00:d0:50:7a:b2:70:9a:
b5:34:4e:d9:b2:4e:33:b7:e3:93:89:fe:6d:7f:33:
13:97:52:54:47:7a:8b:c5:fa:83:45:d9:ec:78:ce:
e3:d6:97:fc:73:a2:e7:0c:75:57:c7:c3:81:01:fe:
47:ab:f9:ae:57:05:9c:5a:d5:8e:a2:b4:5b:01:dd:
18:b3:11:76:bf:d0:a0:a6:10:e9:65:37:12:95:53:
47:81:92:36:72:76:d2:9a:a1:77:56:64:bd:a3:67:
2c:81:db:2b:96:d4:42:6d:15:42:f5:5c:c4:9b:1a:
ec:16:eb:e6:23:ba:c4:e9:3d:cf:42:48:af:ff:4c:
4d:a6:cc:26:71:e5:5e:27:54:3d:9d:ac:b8:f4:df:
82:fa:be:10:e9:8e:da:14:1b:af:e6:52:d3:e2:42:
23:25:09:1b:ea:eb:ac:a1:0f:a2:a7:63:3d:1b:a9:
07:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E2:9D:89:1B:E6:E6:3A:2F:03:0E:C0:7C:B4:E9:EE:F4:65:89:FD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0-KdiRvm5jovAw7AfLTp7vRlif0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.112.0/20
Signature Algorithm: sha256WithRSAEncryption
5d:9a:78:f7:33:d7:ea:8f:6b:a7:7f:3e:2b:7b:e4:3a:21:c4:
07:df:5e:f9:9e:d4:4d:5b:74:f1:45:5f:be:20:ea:b7:1e:40:
d0:79:a8:07:f2:57:0c:4a:df:64:7b:34:05:9b:77:c8:0d:23:
4a:15:af:f6:fc:5d:3e:51:26:c4:48:fa:47:c9:ac:71:38:34:
94:11:5f:27:1f:fc:84:84:74:aa:2c:72:56:dd:08:16:29:dc:
7e:bc:fe:8a:5d:51:0b:2c:57:bd:79:0e:4a:8a:1b:28:1e:e7:
d6:7e:99:b2:8c:48:46:c5:47:7f:c3:10:0d:d3:7e:02:81:5b:
d0:d5:b4:fe:3a:a7:a9:4d:8c:43:3a:1d:5f:91:d2:f5:87:9c:
0c:b4:eb:56:70:28:8a:77:ec:8f:16:af:95:de:73:31:3e:2b:
92:71:2b:fa:ab:46:18:f1:fa:0c:60:28:d4:f2:67:fb:f2:0f:
be:4f:25:13:57:05:64:2f:f5:5c:40:b5:55:75:98:38:95:fe:
02:48:4a:c6:d9:a7:28:33:36:eb:e3:b7:02:fc:2c:87:27:0d:
6b:bd:8f:c4:8e:8b:82:d4:a1:ba:71:e5:f8:22:a9:4b:ce:62:
d5:ae:ce:bd:f5:55:3f:59:ab:53:62:dc:c3:45:2a:6e:e9:7c:
bf:14:00:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org