Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Rl5qJc44ypAC3jnTVXbd2siFBdE.roa
File: Rl5qJc44ypAC3jnTVXbd2siFBdE.roa (raw, json)
Hash identifier: eEtK1JLqqW4vSskAieQEkKF9FTIdgIGDGLQNHj6fG6Q=
Subject key identifier: 46:5E:6A:25:CE:38:CA:90:02:DE:39:D3:55:76:DD:DA:C8:85:05:D1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CEB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Rl5qJc44ypAC3jnTVXbd2siFBdE.roa
Signing time: Sun 07 Feb 2021 11:45:55 +0000
ROA not before: Sun 07 Feb 2021 11:45:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3307 (0xceb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=465E6A25CE38CA9002DE39D35576DDDAC88505D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:97:42:12:9e:89:3d:2c:90:bc:5c:d4:dd:d4:
83:55:6d:69:81:ed:28:20:07:42:55:07:c3:53:d2:
6d:38:9d:c7:d6:d6:4a:cf:79:77:41:a9:25:8c:f3:
a0:d5:e5:57:66:32:a9:dd:0b:12:d5:55:f8:2b:ec:
7f:d7:38:84:ba:88:58:a0:e9:4d:c6:74:19:ee:98:
1c:c1:7c:19:b0:c2:33:17:f8:91:0d:52:a2:b8:03:
09:89:56:a4:62:7f:1f:3c:37:57:f5:35:36:07:ab:
e5:82:e0:83:a8:97:6a:b6:31:4f:3e:a6:57:22:20:
70:6f:09:7e:82:02:e0:b8:cf:81:c6:32:b7:6b:7c:
f1:7f:ce:2e:4d:c9:27:54:b1:80:f5:6e:f3:f3:79:
f2:73:b3:41:e2:b0:7c:43:54:cd:5f:08:0f:2e:53:
14:cf:59:f2:6d:05:f0:de:b6:8f:19:81:9d:92:dc:
18:88:62:4d:bb:ce:49:38:de:89:2c:b0:42:a8:86:
05:e2:9d:0e:50:a3:38:48:1a:50:4f:88:66:d5:52:
92:98:c1:a1:0e:41:0e:e1:31:b8:1c:d1:15:cb:0c:
b0:51:30:dd:ba:2e:49:09:71:ff:fc:4b:a1:fc:d0:
6d:1d:40:e8:87:39:b1:ef:f2:0e:24:cf:2c:27:47:
a7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:5E:6A:25:CE:38:CA:90:02:DE:39:D3:55:76:DD:DA:C8:85:05:D1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Rl5qJc44ypAC3jnTVXbd2siFBdE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.192.0/18
Signature Algorithm: sha256WithRSAEncryption
80:7e:34:df:34:d4:0c:46:16:1a:37:49:34:ad:5e:3d:9a:33:
f7:fb:d7:db:cf:b0:64:00:8a:11:77:e4:65:89:22:15:63:f1:
9f:5d:4c:60:58:fd:e4:11:bd:3d:78:ae:ba:11:9c:0d:6c:5a:
a8:09:cb:94:c6:05:ab:2b:ac:0a:2d:86:f1:ac:33:d1:26:90:
b3:26:26:58:dd:b9:28:5c:36:03:9f:6e:16:75:6a:5c:38:7b:
da:cf:55:1d:77:6f:6b:9a:c5:bd:e5:b8:ce:34:5e:43:64:0c:
26:6c:a4:84:4b:79:bb:b7:cc:58:b2:85:8b:84:02:dd:f7:42:
e4:6a:d8:3a:26:50:ca:e4:a9:4a:cc:03:e5:a2:27:e5:47:fb:
12:9c:da:44:a0:8f:eb:3b:cd:a7:4e:6d:90:73:7a:8f:f1:e0:
b4:93:18:f4:9a:71:01:26:6d:86:57:de:d6:24:ba:aa:34:df:
bf:b3:8f:2d:f7:f6:3a:7a:48:0f:9d:cb:b7:1c:81:2f:85:98:
a1:07:5a:24:5d:58:1b:8c:ab:ff:24:d2:8e:17:b3:66:1d:b5:
1b:84:7c:11:9e:91:c6:59:75:25:f2:3c:5d:b3:0e:19:3f:1c:
38:e0:2c:f8:d5:9d:a2:43:a0:5f:83:58:f6:82:f3:bc:d3:a5:
26:d5:f3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org