Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MVKRV0WhgbeDQ_xC01l04LzxJ68.roa
File: MVKRV0WhgbeDQ_xC01l04LzxJ68.roa (raw, json)
Hash identifier: Lb1r/ht8n1nLaXy+Dwru6ytPwh5Vf6PjusDRvpVyDAg=
Subject key identifier: 31:52:91:57:45:A1:81:B7:83:43:FC:42:D3:59:74:E0:BC:F1:27:AF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EA1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MVKRV0WhgbeDQ_xC01l04LzxJ68.roa
Signing time: Wed 29 Sep 2021 02:43:48 +0000
ROA not before: Wed 29 Sep 2021 02:43:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3745 (0xea1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3152915745A181B78343FC42D35974E0BCF127AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4f:36:dc:df:d4:43:75:5d:a2:e2:a7:f0:8a:
46:4b:e3:ba:c5:d5:02:7e:0e:01:19:93:57:c7:65:
5f:bc:40:db:80:e3:03:df:06:40:e6:bc:b6:5c:d7:
fd:4c:f1:80:6b:3e:2a:f2:a6:1d:29:43:5d:b9:7e:
e2:dc:06:6b:01:9f:cf:47:3c:0f:17:8b:8d:03:ae:
6d:db:ad:12:78:4a:71:f1:57:e7:d1:ac:f8:b6:31:
8f:16:00:bd:6f:33:2e:fc:3f:68:94:30:e3:5e:a5:
d3:ce:5e:28:b3:2a:ae:1d:8f:fe:67:0d:70:c7:88:
03:23:81:55:91:f6:50:cb:a1:79:cc:88:5a:e3:d8:
93:a3:21:b4:d3:05:4f:7e:60:c2:94:f5:b7:a7:d2:
3a:06:69:5f:b3:3b:2d:7a:3a:b4:39:eb:40:73:76:
a2:30:8b:0c:0f:71:92:30:b7:51:86:74:4e:e6:64:
e1:3c:d6:45:7c:43:a4:64:24:53:e6:89:ac:7f:24:
e5:e0:a5:63:b1:9b:40:1b:7d:75:af:c2:47:2f:8d:
da:4f:38:9f:44:d0:77:f5:cb:30:d5:8e:e9:e1:3b:
36:18:8d:7c:29:a2:c1:ec:58:df:73:d0:ff:05:b9:
be:b9:0f:4e:9d:b8:dc:73:53:e6:f3:95:b8:05:e9:
82:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:52:91:57:45:A1:81:B7:83:43:FC:42:D3:59:74:E0:BC:F1:27:AF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MVKRV0WhgbeDQ_xC01l04LzxJ68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.168.0/21
Signature Algorithm: sha256WithRSAEncryption
56:e4:54:28:f2:81:f2:32:11:0e:bc:15:11:d1:f2:dc:5f:3e:
e8:e0:55:d6:6b:b4:a3:b3:50:ef:8f:ba:6e:e2:fc:8b:32:bf:
97:d1:55:7d:14:5c:1c:7e:e9:05:03:95:fe:a1:fb:34:94:71:
b1:95:c0:8b:ae:95:5e:1f:c2:26:a0:df:ed:09:56:1f:e5:4f:
3d:53:7d:03:39:b9:3f:10:15:66:fa:37:76:5d:0a:bb:86:79:
95:13:5d:5d:4d:07:1c:04:fb:ab:2f:3f:94:05:17:67:81:3b:
52:a2:90:3d:4d:9f:ad:3a:ad:1e:39:01:d4:e4:bd:12:fb:ef:
3c:42:cc:52:fd:6a:72:9d:bc:8a:8c:82:33:33:48:f8:d4:1f:
95:b6:87:8b:b9:a5:f5:19:70:0e:0a:e4:11:f8:89:4f:e1:42:
49:ac:72:6e:41:19:35:ff:5f:8b:eb:7a:cd:fd:7e:7e:36:e5:
c9:9d:6a:30:4e:36:48:0f:43:49:b0:07:19:4e:79:c2:8b:1a:
c9:00:ee:12:c8:9b:9b:b8:11:bf:1d:5f:a2:1c:7b:5a:5a:fa:
06:92:5d:d5:2c:3d:40:42:bb:9f:1f:7e:ae:64:00:c3:d4:67:
7b:78:d8:29:5d:14:10:a3:79:19:71:26:b9:18:97:35:96:de:
8c:be:6c:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org