Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1EvhnVlEEg0oKPtfxj0BSoWdKso.roa
File: 1EvhnVlEEg0oKPtfxj0BSoWdKso.roa (raw, json)
Hash identifier: 0BVozQbv8obluoThEQBKElDc6LFTFWUZRtG5jJ97ZdQ=
Subject key identifier: D4:4B:E1:9D:59:44:12:0D:28:28:FB:5F:C6:3D:01:4A:85:9D:2A:CA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08FE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1EvhnVlEEg0oKPtfxj0BSoWdKso.roa
Signing time: Tue 29 Sep 2020 09:52:41 +0000
ROA not before: Tue 29 Sep 2020 09:52:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2302 (0x8fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D44BE19D5944120D2828FB5FC63D014A859D2ACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:89:9f:f2:08:bb:61:b6:fe:3a:ca:70:01:5a:
4a:cd:38:9f:18:de:36:74:04:86:3d:2f:47:b7:08:
47:e4:73:c3:e6:d8:40:16:27:41:83:5b:92:fc:fc:
53:02:fd:2e:83:95:73:5e:1b:48:7c:40:fe:59:79:
d1:41:8f:05:32:31:52:23:83:f0:da:03:93:be:3e:
b4:cd:ac:db:c6:ee:57:dc:13:1a:3e:54:4d:0a:9c:
10:f7:43:be:37:8f:1c:ad:e5:49:6b:63:7f:4a:7c:
fc:52:cd:21:a5:fb:5a:96:fe:72:45:3d:9c:60:13:
ee:f1:4a:4a:55:c9:af:dc:b6:65:32:8f:46:e1:c7:
de:13:af:28:2c:e4:29:c3:54:b7:bc:87:5a:79:35:
5f:1e:14:49:9a:e2:74:7c:7b:d3:24:ba:e0:96:73:
1d:ec:1d:94:b4:81:75:5e:d3:f2:60:d6:a9:e5:4f:
cf:d2:76:38:f9:17:69:b9:45:a8:5a:46:17:b4:34:
0a:73:88:a9:97:2f:c9:29:7d:8e:c2:11:b9:a4:91:
5c:a3:60:b6:c9:55:78:55:cd:03:06:da:4b:77:df:
2e:b3:3c:9c:0b:5e:62:26:a7:a3:e7:3b:36:57:5b:
2e:c3:8b:80:e8:e6:15:b7:9f:32:54:04:29:31:2d:
26:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4B:E1:9D:59:44:12:0D:28:28:FB:5F:C6:3D:01:4A:85:9D:2A:CA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1EvhnVlEEg0oKPtfxj0BSoWdKso.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.64.0/18
Signature Algorithm: sha256WithRSAEncryption
61:67:b7:27:68:c4:36:a5:66:d9:c0:67:58:56:eb:e3:6c:77:
2b:67:24:fa:38:8d:7d:4c:f9:32:d1:65:7c:f4:e2:20:43:b6:
b2:15:5f:7d:b5:9f:95:35:98:60:b8:82:33:ad:66:5d:96:91:
dc:63:59:66:34:d9:24:08:a1:65:d7:8a:6d:63:f4:de:e5:bf:
9c:7c:25:6d:16:7b:8b:d1:12:ac:c6:50:b6:d9:c2:fd:99:7e:
10:04:37:c7:ca:ed:59:53:f9:5b:54:c4:65:b3:d3:06:f4:00:
c6:3e:35:96:49:e6:c7:a5:3d:ca:80:d8:25:22:f7:14:ac:c5:
c3:45:f9:4a:b5:fc:52:0b:1f:10:92:33:00:0e:d9:4b:fd:68:
7f:81:e0:9f:d4:71:24:91:38:f0:ce:5b:3f:7c:1d:98:bf:f1:
1b:8e:95:94:17:70:5c:d3:c6:3e:a7:ed:f5:b7:2b:37:68:8c:
49:fb:42:f2:f6:26:84:eb:d0:58:ec:22:c1:57:e1:65:36:af:
86:d0:25:94:60:22:a0:82:53:0a:68:b9:f4:df:e1:52:35:c1:
99:db:5a:53:f7:7b:10:02:7b:d0:35:26:23:a1:f1:48:d5:a8:
e8:7a:e5:eb:28:b3:a5:7d:32:c0:c4:9c:8d:13:e8:70:a7:3a:
1f:34:27:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org