Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/47RxcDYbQJ9E4y_YZeoSKb9iVsk.roa
File: 47RxcDYbQJ9E4y_YZeoSKb9iVsk.roa (raw, json)
Hash identifier: a5Qe+5HR2lURcWDFDAOJ3x3PKaIRqtFRlt4WOFMOzKI=
Subject key identifier: E3:B4:71:70:36:1B:40:9F:44:E3:2F:D8:65:EA:12:29:BF:62:56:C9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E55
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/47RxcDYbQJ9E4y_YZeoSKb9iVsk.roa
Signing time: Wed 29 Sep 2021 02:43:28 +0000
ROA not before: Wed 29 Sep 2021 02:43:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.146.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3669 (0xe55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E3B47170361B409F44E32FD865EA1229BF6256C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ed:55:c9:12:06:2f:e9:dd:43:2d:96:7a:29:
1b:dc:5b:a3:84:f6:44:c0:5a:4b:5e:92:c1:79:51:
9d:99:07:66:67:90:19:d0:d6:cb:ef:3c:57:50:a7:
f7:b5:44:de:3c:4e:8d:8c:cc:86:85:03:05:ae:1c:
bd:4b:f9:a4:4e:61:0f:e9:41:bf:98:42:98:44:3b:
d1:e7:57:0e:99:4e:83:74:16:5f:e1:a4:45:41:6f:
51:b9:9b:2d:be:92:24:be:7f:75:8d:0f:12:52:0c:
cc:97:a1:6d:e9:35:2c:75:8e:3a:0c:dc:bc:c5:ea:
88:5a:ad:08:30:44:02:b8:90:b5:5c:f1:19:ac:b5:
a8:ee:c1:3a:9e:9f:1b:ad:d5:7b:9c:52:8e:e7:e5:
7e:52:cc:b9:b7:8c:6e:d6:fa:58:a3:83:84:b3:97:
02:e3:ee:db:18:af:b7:9d:d9:2d:e8:6b:03:3b:aa:
2b:42:96:ae:85:0f:76:84:d2:ad:7f:1c:18:a6:c5:
04:48:ce:c6:c5:a8:72:d0:f5:03:82:80:01:9a:05:
7e:37:c0:af:c9:99:17:35:b3:70:01:2e:82:db:4e:
21:e1:e5:8c:71:45:0e:46:7e:92:7e:6f:ec:11:74:
68:e7:c3:10:7a:9c:3f:a6:83:e7:7f:0a:00:1c:f2:
53:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B4:71:70:36:1B:40:9F:44:E3:2F:D8:65:EA:12:29:BF:62:56:C9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/47RxcDYbQJ9E4y_YZeoSKb9iVsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.0.0/18
Signature Algorithm: sha256WithRSAEncryption
10:98:ea:19:fc:44:15:3f:8f:0e:e6:46:83:40:dc:e6:e4:06:
30:cc:40:07:e5:24:cd:61:62:bc:e3:aa:65:54:97:46:59:6d:
7f:18:ee:a7:3d:e5:57:f4:45:fb:3e:55:0a:e0:0a:58:73:71:
d0:06:20:6c:bf:40:a4:60:32:a3:1b:a0:ec:0c:10:a4:5c:86:
7a:cd:8a:e1:99:c4:a5:c8:7d:93:96:f9:a8:e4:2f:0f:3f:83:
14:74:80:69:77:9f:74:14:c0:fb:72:24:07:7f:09:94:4f:a6:
75:43:3e:19:fc:ee:6f:27:ba:4b:61:84:24:58:d7:60:b3:d9:
27:74:79:d0:1b:b8:17:e4:27:73:4e:b4:8b:6d:fc:eb:6b:98:
a2:90:0f:32:7d:b6:72:84:82:18:61:b5:99:d1:e4:55:c3:9d:
d3:05:65:a4:9f:df:95:23:13:52:fc:e0:65:de:a0:52:b1:8e:
77:0c:92:be:42:e3:19:8d:a7:8c:1d:0f:24:30:dc:a1:0f:dc:
23:6b:8d:31:c8:b8:c8:3c:2a:1b:60:14:18:af:8e:86:83:fb:
d8:89:93:01:21:8e:0b:ff:45:cb:85:74:d6:2c:95:76:65:a0:
7f:20:fc:89:58:56:ce:ca:2b:b3:6e:56:64:4b:4c:e5:d0:99:
a7:1f:4c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org