Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/90aXo_xCv9DVi4OsUFjmjpiK83Y.roa
File: 90aXo_xCv9DVi4OsUFjmjpiK83Y.roa (raw, json)
Hash identifier: As3gpetQp6zExagdYw1Ns9ZKM1nXfLpDz5EiZPnWM7A=
Subject key identifier: F7:46:97:A3:FC:42:BF:D0:D5:8B:83:AC:50:58:E6:8E:98:8A:F3:76
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D1B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/90aXo_xCv9DVi4OsUFjmjpiK83Y.roa
Signing time: Sun 07 Feb 2021 11:48:22 +0000
ROA not before: Sun 07 Feb 2021 11:48:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3355 (0xd1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F74697A3FC42BFD0D58B83AC5058E68E988AF376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:54:d4:9a:6d:0c:83:79:16:a9:ec:8c:c6:16:
9d:f4:d6:a1:68:38:57:01:07:37:eb:fe:27:04:62:
2a:51:d7:de:c5:14:23:dc:47:7f:de:35:3c:70:db:
ad:df:0e:d9:0f:6c:52:f2:fa:6a:e9:f4:1e:3b:82:
ae:57:c8:cc:0f:02:7e:1a:2f:ee:e7:3e:e2:b5:68:
93:e6:9b:f0:cf:f3:36:37:e3:7a:de:f7:47:31:d3:
13:e1:ba:ae:e9:48:4f:9b:fe:cd:92:f6:b1:65:c3:
b7:be:4e:87:89:88:20:8b:d0:c1:15:3e:95:89:1b:
a9:c2:25:bd:a9:39:b2:d5:7a:e3:4b:eb:23:28:e4:
77:23:d7:30:d1:e9:5a:55:40:67:dc:fa:52:65:aa:
c3:19:c4:ba:da:de:b4:c5:30:6e:35:0d:04:dc:75:
97:71:a6:05:0c:fd:57:1e:f3:f6:f0:c0:ae:0f:08:
11:7a:e8:58:1c:f3:fa:fa:35:54:46:57:cf:38:aa:
63:58:c6:ed:ae:40:cf:e7:9f:af:f6:af:d9:a3:f3:
9f:41:bb:21:2e:21:0d:da:83:03:2f:b4:a6:1a:89:
77:17:80:42:3b:c9:60:6d:1b:f0:fb:b6:1e:e0:9a:
3b:ad:8d:9f:ac:13:9b:84:58:35:6f:c6:21:6a:1a:
34:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:46:97:A3:FC:42:BF:D0:D5:8B:83:AC:50:58:E6:8E:98:8A:F3:76
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/90aXo_xCv9DVi4OsUFjmjpiK83Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.96.0/19
Signature Algorithm: sha256WithRSAEncryption
35:a3:20:d2:29:a8:04:8e:ec:af:e6:82:ae:03:ac:c9:66:6f:
c2:dc:74:93:97:6b:84:ac:0b:eb:61:d4:cd:37:c7:11:12:68:
51:69:1e:e8:cf:64:8a:ae:d1:c2:1b:2f:1e:83:2b:d5:e6:3f:
45:eb:05:96:d7:af:13:6f:29:d4:7e:7a:77:a0:93:15:7d:2e:
9e:4b:41:01:87:b8:b5:08:b9:94:e6:5e:e2:ef:b1:87:b1:2f:
37:74:22:fc:a6:7b:a7:87:6f:08:56:a2:ab:12:3c:a5:4e:62:
4a:e6:58:b7:b5:a8:14:82:8b:d4:c7:b8:a8:9a:21:5b:26:8a:
cd:af:d9:a5:a1:d2:c9:8a:3d:8e:22:7e:c2:31:49:fe:63:74:
1d:99:16:0b:2b:aa:0f:53:78:b3:c2:ab:22:ba:b6:93:83:f5:
bf:3f:53:1d:a5:7d:2d:59:26:88:30:93:25:87:61:0f:bb:92:
f8:f8:5b:ae:1c:f1:ac:82:c6:aa:69:08:58:6b:d0:22:77:a1:
0c:aa:ac:89:11:a8:6a:6d:2a:fb:3d:ed:e4:1d:68:50:0e:1b:
72:8f:57:c3:ef:5c:37:95:85:30:e5:c7:73:81:c8:4b:54:bb:
93:ae:21:0c:de:ef:f2:0d:60:e4:77:be:4d:48:e9:b6:43:9e:
cd:23:6a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org