Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7jk0k2gzssz5j16jIi_C6lGI-jk.roa
File: 7jk0k2gzssz5j16jIi_C6lGI-jk.roa (raw, json)
Hash identifier: +pUYk/K+HBjeQpazjgyLCZknbpiCIJbc3vpyn+tO+nE=
Subject key identifier: EE:39:34:93:68:33:B2:CC:F9:8F:5E:A3:22:2F:C2:EA:51:88:FA:39
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CD7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7jk0k2gzssz5j16jIi_C6lGI-jk.roa
Signing time: Sun 07 Feb 2021 11:45:30 +0000
ROA not before: Sun 07 Feb 2021 11:45:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3287 (0xcd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EE3934936833B2CCF98F5EA3222FC2EA5188FA39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:02:6c:5b:ae:e1:20:6a:d3:42:62:8b:eb:77:
57:d8:09:f6:61:24:76:aa:b4:ea:4f:df:e5:02:ca:
2c:0a:6d:87:89:37:eb:9f:de:cb:c4:d4:43:0e:42:
06:b4:4e:5f:5a:27:dc:e8:b6:95:c5:03:f9:95:50:
31:50:38:b0:0c:85:34:d0:68:f8:36:cd:7e:2d:2c:
ef:82:8e:19:b0:c7:e9:ad:3d:65:77:0f:a4:18:30:
23:68:2b:5a:02:6b:04:85:f3:4f:cb:1a:5f:a2:b4:
d1:be:39:d4:c2:76:96:bc:50:fb:08:4d:f4:7b:df:
62:e1:e6:ee:94:87:9a:f0:bb:c7:26:48:9b:29:5b:
58:5e:1b:63:f8:33:14:6d:7f:89:1e:df:66:00:04:
31:f5:23:ec:d5:02:e6:bb:f4:65:47:19:23:ee:c3:
5c:c0:0a:89:52:bc:44:15:67:30:de:70:82:33:03:
6d:de:1d:07:94:1b:31:e0:dd:35:1e:95:23:e8:87:
f9:44:7e:79:10:1d:9e:c8:05:e5:3f:d9:c9:ba:cb:
bd:18:a6:c3:f5:31:ee:ce:47:c9:2d:9b:d1:bf:97:
d0:96:d9:e0:15:be:31:55:ad:bd:8d:a7:fa:43:c6:
2e:53:1c:c8:eb:25:75:a8:36:e0:0c:39:a0:7e:5e:
0b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:39:34:93:68:33:B2:CC:F9:8F:5E:A3:22:2F:C2:EA:51:88:FA:39
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7jk0k2gzssz5j16jIi_C6lGI-jk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.64.0/19
Signature Algorithm: sha256WithRSAEncryption
84:3d:06:40:d9:89:5c:77:65:87:f7:7c:cc:02:60:c4:5e:3c:
46:80:0b:11:23:52:fe:e4:f3:6d:cc:0b:a1:93:0b:04:b6:eb:
ac:55:1f:29:a1:b6:88:fd:8c:d4:69:f6:48:95:8b:cf:ee:f7:
63:2d:97:ad:52:6c:98:79:56:73:a2:68:82:08:a9:19:e1:74:
23:51:1d:13:d7:7a:3b:89:e3:5d:40:0e:e7:6d:12:d9:4f:e2:
0d:47:69:54:23:6d:bb:0f:5a:98:88:a6:72:23:30:3d:b6:e8:
6d:9b:b3:a7:9b:ff:15:a3:fa:8a:95:f8:92:80:85:d3:c1:06:
19:5e:17:81:1c:55:b8:ad:e7:3f:d3:6f:99:db:1b:78:4b:fd:
b1:1e:d0:e4:ae:d6:13:93:a8:d3:5a:b3:d3:3a:dc:61:46:ab:
4f:92:bf:36:3c:e3:33:5f:d6:d4:cb:4e:99:79:d5:11:36:2b:
d0:24:bd:44:5c:10:f6:e5:5e:36:48:e8:e3:b3:34:aa:f1:da:
10:cf:2d:a0:d6:30:4a:78:66:c0:03:0f:64:a2:d7:2c:e4:d8:
43:2a:cd:ef:5d:61:0c:dc:ff:df:ae:04:aa:c1:c9:cb:25:7e:
78:1a:2e:7a:38:e0:e8:cb:ef:86:a5:67:12:50:ff:f3:5b:e0:
a5:94:43:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org