Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JVX7G_lChTnCpUYFQUl9NOlhreU.roa
File: JVX7G_lChTnCpUYFQUl9NOlhreU.roa (raw, json)
Hash identifier: E/IONoI+xvvcxGMkDdQaXAVRgCC9I5dCPWZQi8qzgnE=
Subject key identifier: 25:55:FB:1B:F9:42:85:39:C2:A5:46:05:41:49:7D:34:E9:61:AD:E5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CDB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JVX7G_lChTnCpUYFQUl9NOlhreU.roa
Signing time: Sun 07 Feb 2021 11:45:35 +0000
ROA not before: Sun 07 Feb 2021 11:45:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3291 (0xcdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2555FB1BF9428539C2A5460541497D34E961ADE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4b:3d:8e:a2:8b:43:e6:78:89:91:46:8f:ff:
75:63:ba:f3:aa:3f:fb:88:5e:7b:c9:09:c0:3b:c6:
4b:8e:5b:17:64:9d:26:c7:ee:f0:90:7e:69:a0:18:
d1:3c:9a:57:69:3b:b6:1f:66:4c:c5:d5:2a:b2:b5:
b5:ea:e0:2c:70:d9:b9:7f:c9:41:0f:bc:b9:ef:af:
f9:94:ad:4c:6d:b9:1f:48:1a:77:08:f6:8b:0e:a8:
74:98:97:f5:de:60:d9:f7:2b:c9:a8:58:e2:4d:38:
ec:03:df:07:9e:14:87:1a:24:11:86:54:77:18:c1:
c5:2b:bf:50:b9:49:c6:d3:bf:e3:86:db:c8:0f:22:
d0:7b:ed:ac:4f:ac:9f:c2:4f:ff:1a:47:24:7a:cc:
29:90:61:54:e4:65:d1:25:77:62:0b:66:26:4d:e8:
ec:33:68:39:e3:3d:3e:d6:64:ca:d0:b1:12:db:b6:
01:0d:a2:f9:3a:4a:ba:aa:b8:d9:83:a6:c4:5c:67:
67:97:e0:ba:09:71:60:4b:83:30:6f:8f:66:9a:c3:
4c:08:ce:81:eb:db:07:ed:3c:07:e2:45:33:8a:62:
e5:c4:c7:21:4d:ae:35:90:e1:1d:8e:40:b3:e5:8e:
ce:24:e4:01:14:33:f0:fa:81:8e:48:dd:6c:2c:71:
d5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:55:FB:1B:F9:42:85:39:C2:A5:46:05:41:49:7D:34:E9:61:AD:E5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JVX7G_lChTnCpUYFQUl9NOlhreU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a9:c7:3f:a4:fe:bf:5f:07:f4:40:0a:5c:7b:6b:21:d5:a2:ed:
45:8c:b6:c6:3e:b0:50:63:a4:3b:4e:4c:ee:5d:aa:4c:88:60:
ff:22:52:24:41:ab:83:91:8b:05:d2:a5:17:f0:eb:06:cc:41:
70:91:9a:b4:a0:49:cf:e4:43:6a:3f:bf:f9:84:b6:05:2a:8f:
bb:ab:06:8b:18:44:e4:ce:bd:13:f0:29:01:df:06:8d:fd:c3:
10:4b:00:9d:a5:8b:84:08:04:cd:38:16:d0:6f:17:9c:c2:d1:
50:39:76:2c:89:84:8c:6e:b4:eb:9e:69:3b:53:06:87:6b:70:
53:60:c4:d2:d4:a3:fc:19:c9:73:5d:75:1d:e1:c3:cd:7b:93:
09:0a:e5:c6:a7:39:ac:26:dd:9d:01:72:83:99:97:58:03:d3:
4d:e0:35:7c:da:b1:a5:94:4b:5e:81:2e:cb:45:b4:cf:ec:fe:
e1:c6:2e:46:ac:09:0a:c6:1e:56:ec:da:53:b9:3e:e6:3e:50:
73:d1:f5:f3:92:77:cf:5a:2e:dc:82:c9:db:a0:21:70:e0:6f:
67:18:8e:c3:ac:3a:5d:1e:3b:95:d5:c2:09:cd:22:45:17:f9:
cb:ca:d5:72:97:9e:16:83:92:23:e2:e1:8f:33:2e:dd:b7:79:
32:2f:2e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org