Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/AdZaSMpHUcgnoRqxNOwpCdf122Q.roa
File: AdZaSMpHUcgnoRqxNOwpCdf122Q.roa (raw, json)
Hash identifier: XTHzY6cGKHyHxV04aurOTAn8PoMpG3Q+lrIJvG338h8=
Subject key identifier: 01:D6:5A:48:CA:47:51:C8:27:A1:1A:B1:34:EC:29:09:D7:F5:DB:64
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DEF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AdZaSMpHUcgnoRqxNOwpCdf122Q.roa
Signing time: Wed 29 Sep 2021 02:43:01 +0000
ROA not before: Wed 29 Sep 2021 02:43:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.146.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3567 (0xdef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=01D65A48CA4751C827A11AB134EC2909D7F5DB64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ac:95:bc:33:b3:7f:98:94:30:d5:72:74:68:
c5:26:d5:05:75:4f:41:b4:e5:63:65:af:38:70:f9:
c8:b1:5e:28:ef:c4:ac:e7:30:aa:76:34:36:6e:0b:
f3:72:c9:71:e7:b3:d2:2d:9d:36:47:bc:1c:4e:f4:
34:b8:c1:f9:50:35:79:d5:c6:7e:d0:07:f6:18:c0:
5c:ab:ca:cd:60:9b:c8:61:ba:2e:dd:b1:29:0a:ac:
48:74:d2:52:bb:4b:1c:70:c4:ee:61:79:fe:42:16:
fa:b8:2d:ce:f2:0a:2d:f2:ac:70:a5:88:cb:c4:06:
f1:a2:f5:77:fb:b1:95:1a:0b:f4:16:a2:57:66:8c:
0c:67:b4:cd:64:02:1b:30:7c:2d:3b:3d:e6:94:c0:
a5:0b:a6:20:a9:49:ee:76:7c:45:35:19:d9:81:59:
9c:02:17:0b:f4:88:4e:2d:43:01:4b:db:4d:51:2f:
5e:b3:6d:3e:c3:78:47:bb:98:53:46:fd:f9:e7:9d:
52:e5:9d:5f:59:c8:fe:05:bb:fd:ee:3d:63:0e:c2:
9d:36:c8:15:e4:9c:e9:40:fb:a5:e0:01:15:07:f4:
02:3e:7a:dc:12:42:21:ab:bc:a1:c7:40:da:18:1a:
5e:4e:57:d3:0c:7c:42:10:fc:8e:4c:9c:a2:ce:70:
a2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D6:5A:48:CA:47:51:C8:27:A1:1A:B1:34:EC:29:09:D7:F5:DB:64
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AdZaSMpHUcgnoRqxNOwpCdf122Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b2:97:5b:2b:f2:db:a3:68:32:de:ba:66:95:6c:e5:e4:be:62:
80:7c:d9:4f:f7:4b:52:55:11:74:9b:4e:8f:e7:93:e7:26:f1:
ca:33:10:20:45:15:f1:bb:ab:6e:f2:bc:27:17:a3:48:86:9d:
fd:dc:e2:7e:38:29:9c:71:86:fb:b5:51:26:74:51:55:9d:3c:
f1:8c:57:9d:b3:f1:db:33:8b:bf:b0:57:98:dd:61:89:9d:15:
fa:a3:ef:1b:6e:2a:0a:72:b2:24:ab:b8:56:86:e7:b4:f8:df:
55:37:f2:90:23:24:65:d6:4b:c8:69:dc:e2:95:f7:d1:86:16:
93:c9:16:1f:9a:8c:c0:ae:ae:ee:e0:92:1c:56:c0:26:d3:65:
c4:52:27:58:06:9b:ab:46:f2:8c:72:3d:59:d9:65:53:4c:23:
1b:96:05:43:c2:ea:4a:a5:44:48:48:46:2c:c6:33:1a:98:3e:
ed:30:c0:e5:ed:51:b5:f4:0e:d1:b9:ff:e7:d8:8b:62:b3:5c:
12:8f:69:45:96:de:9d:4f:e7:6c:19:8d:fc:1e:5d:7f:6e:4a:
b8:5d:75:ba:3f:34:23:c7:25:1e:e1:c7:5f:f4:e5:c9:7f:fd:
93:04:80:f8:84:1c:4e:5a:7d:15:b8:3e:c6:99:8c:f7:5e:d0:
89:77:04:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org