Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OJh6NtBqMqF6UEucOokg7g-h9vA.roa
File: OJh6NtBqMqF6UEucOokg7g-h9vA.roa (raw, json)
Hash identifier: rXEPwGbewK6rOFgsmiCMbuDS45Ep6SZbu5nBTHcC0To=
Subject key identifier: 38:98:7A:36:D0:6A:32:A1:7A:50:4B:9C:3A:89:20:EE:0F:A1:F6:F0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0887
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OJh6NtBqMqF6UEucOokg7g-h9vA.roa
Signing time: Tue 29 Sep 2020 09:52:08 +0000
ROA not before: Tue 29 Sep 2020 09:52:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2183 (0x887)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38987A36D06A32A17A504B9C3A8920EE0FA1F6F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:33:42:53:b4:eb:67:04:3c:d3:69:4d:ab:fd:
1b:8a:39:7c:4f:02:10:c9:4f:a9:5c:26:04:c3:1d:
0b:e3:b5:ff:4e:ab:8a:a8:d8:33:d0:c2:e5:d0:c5:
84:2d:42:09:9d:ae:59:10:22:6f:38:93:bd:e7:67:
38:e3:58:07:b5:71:a8:72:7a:07:e0:81:8b:f9:25:
66:c8:c7:4b:74:12:80:a9:e6:b4:40:32:36:e7:61:
f0:76:0a:6b:a4:dd:7a:17:78:93:83:9f:81:7c:b4:
f3:d9:68:a8:0c:aa:21:5a:4d:61:f6:5c:ea:24:1a:
55:91:ba:1d:93:0d:2e:5a:3c:67:96:81:ea:17:ba:
8d:ef:28:a7:ef:84:f7:a1:51:02:11:73:b2:c2:94:
3e:f9:21:16:97:65:c7:67:4c:be:93:71:4b:1d:4b:
85:47:95:31:c0:88:67:af:0a:14:28:7a:61:66:89:
02:2c:84:f0:9d:b3:14:02:cc:bc:56:2c:e9:60:ea:
6f:9f:72:e4:d4:83:8e:01:42:89:9c:86:cd:5f:fc:
32:7f:df:8a:30:1e:86:c9:84:47:a3:eb:9d:4c:4a:
e3:b1:6e:b0:cf:36:ce:30:55:7e:56:05:dd:0b:82:
06:43:d4:b7:e6:98:e2:d4:70:f6:f2:c3:1e:64:a9:
79:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:98:7A:36:D0:6A:32:A1:7A:50:4B:9C:3A:89:20:EE:0F:A1:F6:F0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OJh6NtBqMqF6UEucOokg7g-h9vA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2e:27:84:37:1d:d9:22:d7:e8:06:19:32:ec:96:3c:4d:f8:4c:
46:21:6d:3b:c4:89:a3:26:5d:ab:04:0e:4c:a7:af:b5:43:a7:
33:28:39:86:e5:f1:b4:3b:06:56:e9:da:5f:34:b7:60:e1:88:
a1:5c:ad:fb:fc:de:ed:e6:c9:db:22:51:30:57:01:de:9c:c9:
b5:54:29:ad:d0:f8:6e:12:46:03:00:f6:76:48:5f:ed:34:4d:
e4:67:6b:6c:65:20:6b:6e:58:60:c0:0d:13:54:3a:90:68:1c:
27:d8:26:20:81:07:2f:31:ac:02:3d:d5:0e:af:9b:1e:7f:b4:
c8:69:a8:c7:f1:f2:34:01:2a:bc:d8:63:0a:c3:2d:c3:0c:ee:
86:7a:5c:c5:4b:ea:0a:ee:95:4e:5b:46:d8:0b:33:8c:2f:fa:
25:92:23:b2:34:0e:86:b6:92:1f:7d:38:6c:fb:b9:48:a9:c6:
52:2d:11:0e:93:8b:3e:cb:f8:6a:c6:a0:3a:3e:8b:40:1e:76:
39:d4:8d:ef:64:3b:ff:83:96:7c:80:22:35:6a:48:ff:f9:8b:
9e:3b:2d:dd:98:98:e5:31:48:1b:2f:32:79:da:ba:10:30:8e:
06:4a:71:a7:1f:f6:75:f2:da:c3:be:8c:59:39:ed:14:9f:4b:
00:c8:08:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org