Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lft-qap_0HtGW4S_XRpYmRCGVqg.roa
File: Lft-qap_0HtGW4S_XRpYmRCGVqg.roa (raw, json)
Hash identifier: QU+EPo85WIJW0hpKHfQLd+jK2mDnzdo2YXqVkww3/64=
Subject key identifier: 2D:FB:7E:A9:AA:7F:D0:7B:46:5B:84:BF:5D:1A:58:99:10:86:56:A8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EA7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lft-qap_0HtGW4S_XRpYmRCGVqg.roa
Signing time: Wed 29 Sep 2021 02:43:49 +0000
ROA not before: Wed 29 Sep 2021 02:43:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3751 (0xea7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2DFB7EA9AA7FD07B465B84BF5D1A5899108656A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:20:fd:ab:5c:41:1f:e9:e9:7d:5b:bb:6b:b9:
9b:99:35:1c:d9:ab:77:5c:ed:6f:3d:c0:5a:7d:2f:
c0:88:63:9f:14:7d:8d:48:2f:cc:48:d0:aa:6b:46:
30:0a:ff:d2:1e:9f:5e:0d:ff:7a:74:d6:d1:53:33:
be:85:3a:53:20:f4:d1:2c:df:37:8e:01:d8:81:ce:
45:8a:25:fc:de:38:16:0f:85:33:4c:0a:16:d1:6d:
2a:8c:9f:3e:4e:74:6c:08:29:3b:ba:43:7e:39:a2:
22:bc:e5:89:34:2f:dc:45:a2:1a:5b:34:40:bf:36:
5c:1d:0f:f8:ff:65:83:23:00:e3:03:bc:12:94:9d:
a6:0d:50:a1:2e:8c:54:49:21:73:52:63:9a:c3:bb:
fa:08:84:5f:a0:90:bc:97:b1:39:3c:e2:ba:db:0e:
b8:91:83:33:55:81:13:da:d0:b9:d5:8c:e5:ae:86:
d3:09:bb:45:3e:97:0c:d4:bd:f2:9b:94:08:98:15:
c8:7f:71:48:84:08:f3:98:ed:d9:61:75:5b:55:0f:
70:4a:d2:b6:ad:f2:aa:6a:a3:06:c9:bf:d0:29:74:
d0:da:ba:b3:f5:1c:15:b6:5b:db:db:68:ad:69:a7:
1b:7e:62:54:03:3d:15:73:f1:1a:5a:ad:60:b8:11:
10:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FB:7E:A9:AA:7F:D0:7B:46:5B:84:BF:5D:1A:58:99:10:86:56:A8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lft-qap_0HtGW4S_XRpYmRCGVqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.32.0/19
Signature Algorithm: sha256WithRSAEncryption
24:de:05:d2:a7:59:ba:ab:ed:ec:5a:ee:d6:4b:9e:1d:38:60:
aa:79:39:c1:23:1b:df:03:eb:dd:67:b1:67:20:23:25:8f:f8:
81:84:df:27:66:e7:a0:76:ab:9d:ba:84:59:1d:d6:e7:04:df:
26:0c:7d:ea:88:81:e0:67:53:c7:8f:41:4c:22:03:d9:67:a4:
2c:87:1d:5d:45:f5:67:fb:7c:57:5d:46:c2:46:b3:7f:09:ac:
15:c9:f5:32:65:f8:a0:c0:7a:33:0d:93:be:5c:ab:1a:d8:99:
fd:f5:b5:95:61:85:6a:9f:cc:c1:0c:00:18:4b:8e:15:08:ef:
18:fa:89:23:fc:b0:47:86:7c:e9:76:3e:a3:d3:23:a6:ba:4a:
2b:8f:ea:ed:1b:47:9b:62:50:6d:8f:89:d7:0e:58:0d:59:39:
60:3a:e3:5a:fd:8e:f5:ac:54:19:e6:da:f3:af:80:6e:40:c3:
18:5e:b5:bf:25:9d:29:e4:f3:d0:c9:83:5a:13:97:57:d9:8f:
11:f2:63:5d:de:26:a5:ca:12:40:1c:bc:4e:10:7b:51:10:7a:
05:d9:36:04:62:ef:3e:20:5a:33:7b:eb:54:cb:7b:43:17:86:
08:d6:c3:8f:eb:01:83:6a:df:91:73:94:87:d5:fb:29:8b:58:
99:c2:0f:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org