Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4ZHXtjgftPEtLUX6IH2a5_wNg7w.roa
File: 4ZHXtjgftPEtLUX6IH2a5_wNg7w.roa (raw, json)
Hash identifier: jT/TyoGN8xO+Osuiw0O9nUr1KdeQzJPGrw3rJnzKVJM=
Subject key identifier: E1:91:D7:B6:38:1F:B4:F1:2D:2D:45:FA:20:7D:9A:E7:FC:0D:83:BC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D19
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4ZHXtjgftPEtLUX6IH2a5_wNg7w.roa
Signing time: Sun 07 Feb 2021 11:48:19 +0000
ROA not before: Sun 07 Feb 2021 11:48:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3353 (0xd19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E191D7B6381FB4F12D2D45FA207D9AE7FC0D83BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6a:b0:fc:42:3c:53:79:1a:92:46:47:86:36:
32:6a:ef:60:d3:41:e4:05:49:06:8a:04:a2:f9:ef:
fe:ec:0c:0e:c3:c2:f6:42:d6:79:49:76:4f:3b:30:
c3:d5:fc:6c:51:75:d4:7b:c6:1c:01:c3:0d:ba:62:
51:7e:81:d2:92:04:bc:b8:e3:93:29:01:db:1c:56:
70:88:33:5f:ce:3e:cd:43:4b:9d:af:bc:61:e7:9a:
8a:b2:c0:52:2c:b5:54:e9:40:89:fa:c7:6d:b6:dc:
2b:b3:e3:12:39:d1:dd:a6:a4:44:b1:69:f5:00:a0:
0e:8d:a0:04:70:0f:63:f2:7a:2d:e0:90:7c:18:70:
b4:a1:73:14:24:8e:4b:b8:f8:ec:bd:0b:f0:53:f8:
60:4a:d7:02:ad:62:c0:81:2b:2c:f2:5b:0d:2f:42:
fc:cf:e2:1c:3e:a5:65:f0:ff:dc:f5:c5:54:41:99:
db:d8:aa:fb:4c:5f:78:33:3f:90:7c:c9:d8:39:f4:
20:90:7f:c1:32:e8:7e:a3:b3:8a:26:05:83:ed:d8:
4f:3f:cd:41:e4:e0:db:ca:4d:11:3a:60:d4:24:f1:
dd:b0:0a:33:15:5a:87:b2:14:6e:67:d4:71:27:68:
12:fc:f0:9c:e2:11:7f:5b:06:46:1a:54:a3:71:2c:
ca:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:91:D7:B6:38:1F:B4:F1:2D:2D:45:FA:20:7D:9A:E7:FC:0D:83:BC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4ZHXtjgftPEtLUX6IH2a5_wNg7w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3f:25:bf:84:8b:bd:71:22:7e:78:f2:ec:2e:e7:f6:d5:92:3a:
09:39:a0:34:ae:13:4d:9d:3f:e1:47:9f:5f:d0:ba:bd:ac:1b:
c7:75:78:a2:3e:27:b3:72:3e:6e:0d:6b:b5:b7:36:fb:df:10:
2d:bf:0d:18:50:17:35:89:ec:39:ac:07:7e:66:85:87:39:d8:
c0:92:a3:c5:9c:4c:42:b0:f3:2c:d9:ff:4c:60:e8:76:20:68:
b0:35:cf:86:86:fd:d6:48:b8:bb:20:2b:2a:74:9c:ea:7e:90:
58:7b:96:bb:e0:86:af:7b:21:c3:e0:66:1c:b4:cc:f4:9d:d2:
be:7a:c5:db:22:47:f1:ce:31:65:07:a0:3c:49:22:52:04:1a:
21:c4:b6:c9:01:20:f7:32:ef:bd:ee:b7:77:81:f7:18:0d:08:
1f:83:2c:2c:e6:80:95:c1:8c:ed:cb:33:67:ac:8f:26:22:80:
cc:8e:17:ad:98:02:46:17:a4:96:62:c4:89:66:bb:5b:a0:fa:
e1:c7:e5:bc:14:69:94:62:5e:a4:4f:c8:8e:eb:33:2c:d6:62:
38:06:3d:b5:75:62:f4:53:3c:e7:5e:cf:16:b1:5d:51:3d:e5:
87:b0:9b:14:2f:22:d5:22:4d:9a:da:93:ea:63:f1:84:f8:5f:
c5:51:08:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org