Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9nYfH6mCv5iy-zxIgrOYFBII4m8.roa
File: 9nYfH6mCv5iy-zxIgrOYFBII4m8.roa (raw, json)
Hash identifier: QltMHywAUCjyJy5ZFotXT9uBkIZW9gUfGNBKpl14cnk=
Subject key identifier: F6:76:1F:1F:A9:82:BF:98:B2:FB:3C:48:82:B3:98:14:12:08:E2:6F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EBD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9nYfH6mCv5iy-zxIgrOYFBII4m8.roa
Signing time: Wed 29 Sep 2021 02:43:55 +0000
ROA not before: Wed 29 Sep 2021 02:43:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 122.147.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3773 (0xebd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F6761F1FA982BF98B2FB3C4882B398141208E26F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f4:57:3e:f1:79:83:1a:1b:0c:c0:a3:59:a5:
c7:96:37:e2:7d:b7:0d:65:a5:91:d2:6b:c0:aa:d5:
34:84:c3:f3:33:87:57:b4:bc:78:0a:e9:72:1c:c6:
3f:a8:67:7d:41:b3:88:2a:2b:ac:7d:de:44:46:a9:
d2:43:41:d0:dd:f8:72:a8:d1:e1:6f:70:77:9e:dc:
45:b9:8c:ee:48:a2:63:11:72:28:2f:94:45:77:29:
0c:d9:09:8d:4e:11:b1:31:23:26:3b:5d:4b:27:92:
c4:41:b1:26:cd:64:cb:35:8c:a9:6a:d2:3e:9f:0e:
cf:66:18:36:4e:04:7a:5c:f4:08:e8:3c:b1:4b:d6:
f1:80:c4:4f:ae:f1:11:bf:7b:03:30:36:3a:b5:69:
4b:70:ac:5d:bf:24:f2:4b:c9:23:55:f7:85:5d:29:
12:7d:2a:f8:bf:c6:0f:45:24:f0:a6:d6:9c:7c:a7:
5e:6f:fd:2a:f1:a4:37:0c:6f:12:0d:d8:6d:f3:4a:
56:06:ec:65:6f:64:23:a2:e5:19:e3:34:77:9b:7f:
a0:4f:64:93:4d:00:57:ef:1d:5d:df:67:59:2d:97:
f8:ff:ee:1b:e6:dc:6e:3d:d7:63:bb:89:90:68:7d:
1d:d8:81:58:96:d9:f6:75:8b:48:c1:08:53:21:15:
17:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:76:1F:1F:A9:82:BF:98:B2:FB:3C:48:82:B3:98:14:12:08:E2:6F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9nYfH6mCv5iy-zxIgrOYFBII4m8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
48:69:b0:0a:d8:6b:d3:7e:d2:4f:8d:11:b4:c5:08:10:ca:d8:
cb:3f:cc:8e:64:79:79:d8:79:35:50:59:c4:fb:a0:73:2d:04:
73:02:f4:1e:77:27:5e:27:e8:91:42:5f:fb:aa:c8:4f:3d:2a:
e7:7f:7f:4e:bf:8e:74:47:05:48:a8:89:d9:b1:2c:65:68:81:
77:21:e1:95:68:3d:d5:3f:97:89:a8:46:e3:8f:a6:27:4c:37:
1d:ff:23:81:c9:ff:4f:54:08:40:59:ee:62:7b:1b:4d:84:05:
19:4b:4e:e1:9b:c7:9b:46:39:5d:9e:45:f6:98:bc:5e:14:b5:
d8:39:48:f4:48:f2:fa:8f:48:a7:2a:ab:bf:09:e7:94:c6:ed:
78:d5:6c:0e:ef:26:29:e8:c1:2a:4a:de:02:c7:44:74:2c:a2:
2c:fd:b4:e0:45:54:51:b3:8c:2d:1a:57:1f:b8:d5:e6:72:1f:
4c:dc:cd:a7:47:58:b4:9b:48:ba:89:96:5c:e8:71:7f:6e:c2:
cb:24:2b:36:32:7e:ac:12:c3:d0:f3:26:0c:72:ef:37:b6:f4:
92:3b:44:76:42:05:26:81:ed:26:9b:5c:75:b1:e3:a7:15:e0:
68:a2:6c:eb:fc:75:bb:29:b2:27:3d:50:aa:80:5f:da:13:3e:
52:f7:21:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org