Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/151hSOlY1A0DRCAkuKJ5a0PHveo.roa
File: 151hSOlY1A0DRCAkuKJ5a0PHveo.roa (raw, json)
Hash identifier: kJeT2g9N4HqacIfHnIz5W52RjSCuS2rrdN3G3tqQbDs=
Subject key identifier: D7:9D:61:48:E9:58:D4:0D:03:44:20:24:B8:A2:79:6B:43:C7:BD:EA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CEF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/151hSOlY1A0DRCAkuKJ5a0PHveo.roa
Signing time: Sun 07 Feb 2021 11:46:00 +0000
ROA not before: Sun 07 Feb 2021 11:46:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3311 (0xcef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:46:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D79D6148E958D40D03442024B8A2796B43C7BDEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e8:f5:01:d9:ee:dc:61:7a:5c:0d:c4:e9:a4:
cc:1c:2d:4f:9c:43:1c:34:80:e9:5b:f3:55:83:ca:
ce:ff:5f:24:72:a2:d1:9f:85:70:c4:60:98:9a:6e:
a3:45:0a:57:a4:fa:a5:23:7a:11:11:45:5e:e0:63:
7f:51:e0:be:4f:f7:b4:8d:e9:22:01:b0:79:70:d3:
7d:5b:dc:33:55:6a:a2:86:f5:4d:dc:7d:00:22:24:
b1:00:a7:0b:eb:c9:ab:42:eb:4c:e9:a0:c1:a0:00:
82:e7:61:8f:ae:d3:77:b9:85:89:f8:15:6f:a9:32:
07:ec:aa:79:a0:91:0d:5e:c1:94:b6:da:56:2a:7c:
e7:86:71:08:29:c9:3b:80:ff:f7:fd:08:78:29:38:
9d:62:c3:77:d8:76:52:28:fe:24:86:a5:14:16:bb:
68:ae:50:4f:bd:88:09:18:f2:cc:32:15:e9:f1:b1:
4c:13:e7:f0:f2:08:ab:a4:25:e3:0e:da:fb:93:e8:
9f:ab:5c:97:d5:6f:bd:8f:5b:48:65:2d:37:2f:72:
8b:e2:58:f8:4f:96:d9:9e:77:dc:ba:44:e0:b2:61:
0b:c6:de:21:ac:83:0e:99:2d:8c:32:a7:ae:53:8e:
d6:32:5a:8d:e6:68:66:70:c6:ee:38:b4:09:a8:47:
0e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9D:61:48:E9:58:D4:0D:03:44:20:24:B8:A2:79:6B:43:C7:BD:EA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/151hSOlY1A0DRCAkuKJ5a0PHveo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.32.0/19
Signature Algorithm: sha256WithRSAEncryption
59:5e:4c:5d:8c:12:a2:0c:55:71:96:0f:69:23:08:74:c3:37:
8b:4e:ff:ce:21:df:b8:d4:ec:c0:d7:1a:31:ce:c9:18:d2:0f:
37:d2:6f:02:f6:9f:e5:23:84:39:ba:be:ee:01:41:89:0a:71:
05:23:06:89:12:dd:a1:92:a2:6b:90:39:47:6e:28:c3:aa:d3:
bf:13:53:b8:bf:67:de:3d:a9:12:22:30:ff:f2:83:08:c0:44:
42:96:b7:62:0b:60:27:f3:b6:bf:80:5e:9e:2c:e4:0b:85:b1:
4a:3f:af:4f:df:b9:28:86:c7:b4:25:90:62:0c:27:d9:45:18:
e1:13:4d:a4:84:23:a3:0c:c9:9b:7a:05:4a:19:01:77:52:3c:
c7:e9:1e:e9:a8:17:40:b3:22:06:52:39:e9:2e:e4:ba:61:0e:
99:ce:7d:40:15:4b:60:e8:b8:01:c2:bd:70:20:b1:6c:1a:35:
c5:00:90:4c:24:2b:f4:e1:b7:21:3f:08:cd:9b:83:99:39:ad:
32:ae:a2:c1:0b:ac:53:d5:34:0e:03:eb:c6:63:e2:9e:50:8d:
86:a0:fa:40:ce:a4:4a:28:ce:b5:3e:03:f4:10:4e:3f:0d:50:
65:3e:a8:b7:fc:89:09:6d:37:ab:b5:29:fc:74:c0:49:d8:a9:
7a:76:4d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org