Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KjMOJXxHVs2VLA72YOH5RMdFCvk.roa
File: KjMOJXxHVs2VLA72YOH5RMdFCvk.roa (raw, json)
Hash identifier: UTUfQih/GBfAucEh1KeyBrfDfqBn4SqyvTinWPdfO9I=
Subject key identifier: 2A:33:0E:25:7C:47:56:CD:95:2C:0E:F6:60:E1:F9:44:C7:45:0A:F9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08B8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KjMOJXxHVs2VLA72YOH5RMdFCvk.roa
Signing time: Tue 29 Sep 2020 09:52:22 +0000
ROA not before: Tue 29 Sep 2020 09:52:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2232 (0x8b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2A330E257C4756CD952C0EF660E1F944C7450AF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:24:5e:b6:92:19:88:1c:bf:bf:6a:55:a5:
a3:6a:99:7b:17:19:0d:18:46:0b:b6:87:c8:a7:53:
f3:da:28:fe:e8:80:e6:a7:4c:88:47:84:df:49:30:
f3:e0:57:fa:83:49:91:33:a5:87:66:c8:43:92:66:
69:0f:19:ff:c9:13:1c:c5:8d:f6:60:0a:40:d5:7e:
1f:92:d6:a9:8d:ac:42:b4:e1:e7:ee:59:e2:1f:02:
2a:4a:d5:84:a5:08:b3:b5:ec:eb:54:e8:a8:61:46:
44:4d:74:16:54:33:e7:5d:6e:3a:da:d3:4e:1a:92:
22:2d:b8:85:59:48:2e:e9:4f:d7:05:b8:54:77:0a:
e5:df:f8:25:f1:22:39:eb:93:12:5e:13:6d:60:d7:
bd:ad:ab:b1:2b:dd:42:a2:d4:99:e5:ff:b1:39:e5:
66:02:d2:49:d1:46:5d:3a:26:a1:9a:9e:6c:62:4a:
20:c6:31:26:fd:44:12:2f:d1:fb:da:ef:4f:bb:a3:
62:b9:cd:d7:4b:3a:25:b1:c1:45:d9:0f:75:d6:1f:
83:22:92:dd:93:c7:5c:a3:e9:c5:62:26:ef:7a:a3:
54:ed:aa:42:ad:3d:79:37:68:6d:de:62:85:31:f3:
61:63:a1:32:1a:6e:87:8a:3b:67:05:9a:78:d0:92:
f8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:33:0E:25:7C:47:56:CD:95:2C:0E:F6:60:E1:F9:44:C7:45:0A:F9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KjMOJXxHVs2VLA72YOH5RMdFCvk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a7:08:3c:89:a3:b0:b6:28:7a:12:c8:ee:60:0f:da:12:0c:bc:
a5:6f:9c:84:ef:01:ad:fa:73:68:14:7b:27:d2:24:23:19:87:
70:d0:4d:fe:a3:d2:78:b9:e5:16:57:c6:05:5b:ed:f0:03:d4:
e5:06:d4:82:11:74:62:03:75:3d:55:f6:8a:5f:df:3d:46:ab:
49:6f:0d:ab:e8:3a:25:32:6d:c5:d5:2f:90:2c:38:37:aa:c2:
c5:9e:3a:e4:70:34:7c:2f:f7:33:87:a5:32:9e:45:cd:0a:99:
b9:aa:c3:74:89:c5:72:f7:23:10:05:34:da:26:b7:26:2e:ba:
42:0a:a0:81:81:3d:04:ad:8e:f8:06:00:64:15:01:80:a6:58:
45:f3:76:9e:53:14:a6:8f:68:66:fa:eb:01:29:bc:6d:e8:b9:
ac:a1:56:57:1b:68:99:ba:42:08:50:3a:e7:fd:e9:19:85:68:
60:f7:40:96:e9:0d:e0:e8:23:c9:65:f6:b8:b2:88:fc:a0:88:
e0:64:ed:18:8a:c1:7c:59:a7:b9:45:df:c9:5f:c1:c6:89:03:
5b:85:60:2f:8b:9e:84:54:91:6f:8f:21:0f:2d:3c:ee:48:28:
cc:07:5b:ee:76:2c:f9:36:bc:ab:07:3f:dd:a6:ed:8a:81:c1:
77:9e:0b:ec
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJBMzMwRTI1N0M0NzU2
Q0Q5NTJDMEVGNjYwRTFGOTQ0Qzc0NTBBRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5VyRetpIZiBy/v2pVpaNqmXsXGQ0YRgu2h8inU/PaKP7ogOan
TIhHhN9JMPPgV/qDSZEzpYdmyEOSZmkPGf/JExzFjfZgCkDVfh+S1qmNrEK04efu
WeIfAipK1YSlCLO17OtU6KhhRkRNdBZUM+ddbjra004akiItuIVZSC7pT9cFuFR3
CuXf+CXxIjnrkxJeE21g172tq7Er3UKi1Jnl/7E55WYC0knRRl06JqGanmxiSiDG
MSb9RBIv0fva70+7o2K5zddLOiWxwUXZD3XWH4Mikt2Tx1yj6cViJu96o1TtqkKt
PXk3aG3eYoUx82FjoTIaboeKO2cFmnjQkvj5AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUKjMOJXxHVs2VLA72YOH5RMdFCvkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS2pNT0pYeEhWczJWTEE3MllPSDVS
TWRGQ3ZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXqSMA0G
CSqGSIb3DQEBCwUAA4IBAQCnCDyJo7C2KHoSyO5gD9oSDLylb5yE7wGt+nNoFHsn
0iQjGYdw0E3+o9J4ueUWV8YFW+3wA9TlBtSCEXRiA3U9VfaKX989RqtJbw2r6Dol
Mm3F1S+QLDg3qsLFnjrkcDR8L/czh6UynkXNCpm5qsN0icVy9yMQBTTaJrcmLrpC
CqCBgT0ErY74BgBkFQGAplhF83aeUxSmj2hm+usBKbxt6LmsoVZXG2iZukIIUDrn
/ekZhWhg90CW6Q3g6CPJZfa4soj8oIjgZO0YisF8Wae5Rd/JX8HGiQNbhWAvi56E
VJFvjyEPLTzuSCjMB1vudiz5NryrBz/dpu2KgcF3ngvs
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org