Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BnA2SKuxOTEIzocYwLBk9zzPEUM.roa
File: BnA2SKuxOTEIzocYwLBk9zzPEUM.roa (raw, json)
Hash identifier: LHnRVFO4Ky+L2DahdoMV8yPXKUXCXnoLlbOydA2zK7Q=
Subject key identifier: 06:70:36:48:AB:B1:39:31:08:CE:87:18:C0:B0:64:F7:3C:CF:11:43
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E47
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BnA2SKuxOTEIzocYwLBk9zzPEUM.roa
Signing time: Wed 29 Sep 2021 02:43:23 +0000
ROA not before: Wed 29 Sep 2021 02:43:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 122.147.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3655 (0xe47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=06703648ABB1393108CE8718C0B064F73CCF1143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5a:f6:6a:95:14:fb:69:74:ed:29:e0:68:1a:
2c:26:2e:72:7d:70:2b:9a:ca:c0:4f:34:33:c6:d2:
f6:c9:f5:7a:b3:b2:02:b4:ee:b2:53:39:ed:3c:1a:
4d:03:74:86:cd:6a:ca:ba:1e:d2:39:25:b8:c4:44:
35:a9:35:e8:d9:7c:14:0d:94:79:e3:3b:14:c2:c7:
cc:fc:2b:a9:30:c3:5a:1e:9e:4b:ee:81:5f:73:2a:
11:66:9f:bc:a4:5b:99:43:03:e2:da:17:a4:27:ba:
fa:4b:50:bf:86:53:5a:b2:23:68:23:1c:17:99:6c:
05:db:bf:10:26:99:30:65:ee:6c:97:49:f2:a0:d1:
55:31:f9:3a:25:51:e8:28:39:c8:ed:aa:c7:10:77:
25:4c:2e:4d:4e:8e:ab:35:4e:15:ba:64:53:01:9a:
0b:6a:77:7c:44:e0:d4:b3:0a:a8:31:5d:cd:d5:52:
d2:9c:9d:71:f8:30:9d:fa:36:63:8a:74:cb:a2:55:
50:5c:fa:14:3f:ed:e2:45:e7:79:d5:10:73:08:7f:
ce:ca:ea:71:1e:f1:dc:e0:3f:cb:5f:0e:b6:1b:11:
b0:09:ea:66:93:18:a7:31:2d:a7:4d:90:d9:7f:f5:
a2:1c:73:19:58:a1:b0:41:21:d8:75:39:f6:d1:8a:
4c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:70:36:48:AB:B1:39:31:08:CE:87:18:C0:B0:64:F7:3C:CF:11:43
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BnA2SKuxOTEIzocYwLBk9zzPEUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:44:a5:f9:ec:a7:df:44:5f:0d:96:f0:d3:2c:9a:ad:d6:7c:
a8:ab:90:99:3d:77:31:5e:d5:2c:62:ec:34:66:bd:a9:5c:6a:
a1:89:88:31:fc:21:b1:88:71:f1:65:55:7a:9c:82:f2:ba:ce:
01:18:95:18:17:6e:48:5d:e7:97:0a:ab:1f:fc:7c:39:96:f9:
7b:b5:c8:2c:89:d8:94:f4:c0:d6:4b:13:1b:56:3c:fd:55:6a:
e3:1a:f9:70:8e:07:0e:19:5b:d1:4e:7f:20:ed:dc:b4:a0:33:
b4:23:2b:3c:7d:9a:0a:26:38:86:03:40:47:88:e3:6a:bd:81:
d5:6a:38:2e:c2:c0:2a:d4:88:47:ed:7a:7d:d9:4c:e4:4c:d3:
61:1e:ae:c1:6d:26:5a:53:44:73:3d:d7:04:ae:d7:e6:4e:62:
95:01:29:ed:18:01:79:e6:d5:d6:07:66:5f:03:81:07:0a:7c:
8d:5d:ce:96:ca:ac:35:bc:36:33:fb:07:c9:8f:a3:db:29:5f:
86:85:ef:76:45:25:14:26:72:a4:72:bd:3b:d1:03:8e:ee:76:
19:f0:98:cc:f7:fe:c9:53:16:30:44:b3:ac:82:82:aa:e2:c3:
1b:94:74:b2:1d:54:2b:9f:b6:62:1b:52:28:8b:63:05:b9:2f:
f4:bd:ce:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org