Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3yeqH0uTju8iSagA1UQl3qtzmfQ.roa
File: 3yeqH0uTju8iSagA1UQl3qtzmfQ.roa (raw, json)
Hash identifier: r+BFLKhuTFm188pK7szgyfZkkU8SaX5vTuaLEzA6NG8=
Subject key identifier: DF:27:AA:1F:4B:93:8E:EF:22:49:A8:00:D5:44:25:DE:AB:73:99:F4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CE5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3yeqH0uTju8iSagA1UQl3qtzmfQ.roa
Signing time: Sun 07 Feb 2021 11:45:47 +0000
ROA not before: Sun 07 Feb 2021 11:45:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.166.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3301 (0xce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DF27AA1F4B938EEF2249A800D54425DEAB7399F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:87:8c:fb:e4:49:6d:bc:62:1c:1f:c3:ae:d5:
90:d0:4b:8c:ec:52:48:37:22:c0:51:19:ec:92:97:
fa:5b:11:43:4b:fa:a6:f7:57:e8:9b:23:61:05:b3:
e5:88:d7:5e:9f:ff:7b:4b:b9:f9:d1:c1:a6:bb:26:
d4:7c:15:65:1c:aa:be:60:97:4b:a9:c2:7b:dd:24:
54:32:b1:48:96:9e:87:2c:65:0a:c0:37:84:fc:50:
39:2c:ed:9e:cf:40:26:fd:1b:95:00:f4:4f:34:03:
7f:8c:fe:4f:a8:51:c5:7c:4b:b0:57:5e:29:c5:99:
fb:3b:bf:b6:81:0d:83:63:d6:3e:a8:20:94:7b:0f:
0d:b9:37:93:e7:84:31:f6:be:a6:4c:9d:fd:f0:d6:
7a:7d:38:8e:8a:27:63:b7:8d:23:58:3a:54:1b:c8:
87:d5:b2:c0:e1:af:a1:8e:eb:fe:a7:10:50:bf:49:
89:b8:6c:45:e3:54:a5:b0:07:35:6e:02:59:1c:24:
b6:e6:9f:b6:64:12:5a:75:5b:24:f3:65:31:34:3e:
7f:33:a7:3e:99:4a:7a:14:b1:04:e7:13:ed:ad:2d:
d7:73:fb:98:f6:fb:6e:d8:e7:95:7a:02:4b:b8:2d:
2c:92:5a:2a:c9:8a:48:34:e2:ed:36:a8:e4:42:68:
d6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:27:AA:1F:4B:93:8E:EF:22:49:A8:00:D5:44:25:DE:AB:73:99:F4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3yeqH0uTju8iSagA1UQl3qtzmfQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.166.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:17:55:d8:47:10:b5:5f:88:16:0d:a7:aa:0b:4b:c1:86:d7:
0e:29:1b:2e:c6:49:bb:a4:43:48:7f:79:9b:5a:0c:05:9b:a1:
40:99:bc:5a:75:97:11:77:d8:f2:66:fd:ae:1c:91:17:8c:ba:
87:34:7e:70:27:fc:9e:5a:d6:0c:38:e7:2d:52:4f:2b:71:fc:
80:98:7e:67:98:e4:94:d8:12:fd:15:46:50:81:2b:57:06:0b:
3b:cd:85:a9:23:fa:f7:fb:81:f7:05:f9:96:6e:fc:1a:7e:7e:
da:66:23:cd:40:2b:57:05:08:a5:52:30:03:36:b7:88:07:cc:
31:50:fc:c2:80:21:e7:2a:4e:ae:9d:d4:8a:11:8a:e1:dc:b8:
2e:d3:7b:eb:21:82:11:87:00:fa:2c:77:0c:21:2a:0b:1e:ad:
29:9e:f5:ca:39:03:31:d9:60:01:73:f0:08:9f:a6:c7:56:7d:
f5:96:1c:fd:f4:05:a1:16:96:e1:fa:dc:a6:b6:b5:f9:7a:8e:
6d:1b:58:cc:bf:fc:37:8b:60:7e:79:15:12:c5:7b:66:2e:bc:
06:7f:75:4d:e0:6e:a9:05:e8:d5:4d:d2:d8:40:7d:da:83:fd:
37:ad:2e:ec:21:da:ac:58:0c:d0:f7:85:cc:fc:13:40:f0:c3:
78:65:35:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org