Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6yxpCxcUpE_rAU9lup3zWEABV68.roa
File: 6yxpCxcUpE_rAU9lup3zWEABV68.roa (raw, json)
Hash identifier: K3QpGW67BdnHDbGD2t6LHXHT/G7/wY+syyqnH5qkth0=
Subject key identifier: EB:2C:69:0B:17:14:A4:4F:EB:01:4F:65:BA:9D:F3:58:40:01:57:AF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E9A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6yxpCxcUpE_rAU9lup3zWEABV68.roa
Signing time: Wed 29 Sep 2021 02:43:47 +0000
ROA not before: Wed 29 Sep 2021 02:43:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3738 (0xe9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EB2C690B1714A44FEB014F65BA9DF358400157AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:aa:e2:eb:1e:73:21:a8:c2:3c:86:05:69:92:
c3:e9:49:89:21:30:87:9f:fb:9b:5d:cb:6a:5d:df:
95:dd:8c:87:c5:5a:1f:cb:7b:60:ba:d0:8f:99:37:
ac:68:66:a1:f4:00:a1:3b:98:a8:38:66:22:04:94:
20:35:68:4e:b7:63:a5:b2:74:5b:cd:f3:37:01:b6:
2b:1b:b8:a9:cb:a6:a7:7c:13:11:e7:8e:9b:9e:d0:
37:75:a4:8f:65:78:51:ed:81:55:28:13:98:33:48:
bd:19:40:fb:c1:c6:d6:c7:bf:9c:ff:50:2c:8c:e4:
cf:27:04:35:9e:54:51:f7:6c:a4:c1:6a:dc:a2:35:
40:4b:14:96:61:1e:70:75:10:76:b7:96:03:e2:54:
d0:05:3d:4b:d0:f9:ab:73:c8:84:6e:99:23:6f:f1:
d6:c9:c3:07:06:14:10:5a:91:91:5b:72:35:4b:bf:
2f:d4:59:9a:8d:96:05:e3:d8:29:e7:9d:87:e8:59:
05:ca:e0:81:23:76:02:1d:21:3c:70:95:03:30:ab:
dc:fc:75:6c:18:0d:22:dd:6d:9c:9b:1a:66:35:75:
67:d1:77:77:42:21:cc:c1:14:cc:a6:aa:b3:f0:b2:
8f:d8:a7:bc:ed:a6:86:26:93:bf:7f:d1:71:b4:f9:
bd:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2C:69:0B:17:14:A4:4F:EB:01:4F:65:BA:9D:F3:58:40:01:57:AF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6yxpCxcUpE_rAU9lup3zWEABV68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.0.0/20
Signature Algorithm: sha256WithRSAEncryption
ae:1b:7d:2a:a9:73:e5:9d:e8:fb:46:5a:84:85:7b:9c:55:49:
06:f9:6d:d6:3a:3c:32:18:b9:66:f6:74:c0:8a:8c:26:6c:e8:
89:51:0a:aa:3e:74:55:76:f6:01:92:3e:74:10:ee:a9:0b:27:
8e:bf:ce:45:d5:17:e2:35:21:6b:27:97:22:1a:a4:04:94:cc:
7c:31:66:2d:84:69:25:17:3c:29:10:66:91:27:0b:98:08:ef:
a1:00:b4:fa:21:66:d7:7b:67:95:0d:e3:9e:8e:cf:d7:cc:3f:
5a:5c:fd:d3:a3:41:fe:37:0f:19:0b:11:62:f3:8c:c4:f2:60:
71:f8:7b:41:b0:90:d6:57:4f:e5:06:52:42:ba:a4:22:11:bb:
67:c7:f5:e1:ed:40:b4:87:31:13:3f:85:eb:f9:a8:5e:fd:3a:
08:ad:5c:d4:b5:0f:a5:20:b2:4d:16:37:32:6f:99:76:bb:7c:
0a:41:23:80:11:9a:32:02:c0:e2:8b:32:3c:d0:d6:28:6a:fd:
2e:68:27:c2:ef:93:ab:df:84:3d:c0:0f:f2:af:1d:4f:de:f6:
35:7f:e9:48:27:f8:69:28:1f:c9:d0:47:bd:3a:cc:eb:9b:a5:
29:9e:8b:25:f3:d2:6a:a8:94:a5:b7:8d:4a:97:0e:1e:c3:26:
41:38:02:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org