Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RmFXFhGyZ-yBvH3HKK-OwQ-F1TQ.roa
File: RmFXFhGyZ-yBvH3HKK-OwQ-F1TQ.roa (raw, json)
Hash identifier: +nFNQmcAl3KfJUM9EEuhx7YINuS6zmfm9aAfh+Mq+DM=
Subject key identifier: 46:61:57:16:11:B2:67:EC:81:BC:7D:C7:28:AF:8E:C1:0F:85:D5:34
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C35
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RmFXFhGyZ-yBvH3HKK-OwQ-F1TQ.roa
Signing time: Sun 07 Feb 2021 07:09:54 +0000
ROA not before: Sun 07 Feb 2021 07:09:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 122.146.108.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3125 (0xc35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:09:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4661571611B267EC81BC7DC728AF8EC10F85D534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1d:df:45:45:ff:75:10:42:43:95:76:71:21:
95:e9:32:12:7d:78:4a:b0:51:b4:23:c3:ba:bb:91:
24:0d:14:ae:fc:ff:6f:c6:d0:6c:1c:68:65:18:03:
51:08:be:ac:31:ff:3e:18:16:15:af:c1:99:3c:7c:
c1:a4:45:4d:6d:8f:f3:22:e0:10:41:00:8d:7c:fe:
ed:a6:33:4c:d6:ff:34:73:e8:4a:d6:32:2a:78:e8:
a7:d0:e8:cf:9d:3e:d7:53:dd:c0:c0:1d:ac:89:d8:
e1:98:aa:69:1b:53:11:7e:06:33:92:e1:89:22:c0:
a9:1a:9a:d6:e6:18:a6:01:68:43:d3:28:48:12:27:
95:23:31:f6:39:a5:d6:b4:90:78:8d:bf:56:c1:c7:
78:bd:43:d4:7e:ef:09:69:63:2f:3b:19:ac:37:b2:
f5:21:25:35:ea:e7:1c:5a:45:8a:9b:05:17:5f:df:
98:5a:13:ad:c6:31:47:54:e3:0e:60:b0:ff:e5:9b:
a7:94:a7:4a:1f:a7:b9:ad:7f:93:52:16:1d:41:54:
7c:fb:12:ba:82:75:35:79:df:93:9b:bc:ce:1a:72:
a0:ac:89:8e:ab:95:d1:ac:04:cd:95:6f:39:84:6e:
a9:40:77:20:c4:58:d4:70:0e:95:45:57:d3:6f:1c:
79:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:61:57:16:11:B2:67:EC:81:BC:7D:C7:28:AF:8E:C1:0F:85:D5:34
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RmFXFhGyZ-yBvH3HKK-OwQ-F1TQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.108.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:7d:49:b9:cd:e1:46:3e:3e:cc:b7:87:3a:66:ab:88:92:56:
bc:30:a9:02:b0:a9:5c:bb:a6:09:ed:fb:c1:8a:f5:1e:11:6e:
ba:8a:5f:73:94:28:00:d2:7e:d2:22:b9:22:c2:94:e4:48:52:
42:83:f7:94:c9:ec:85:19:69:04:6f:9e:38:3c:b3:dd:db:2c:
88:4b:6f:f3:da:d4:cd:83:75:21:a0:aa:27:22:8b:d9:90:4f:
a9:98:12:5d:1b:d6:64:75:c6:9b:97:66:09:36:1d:de:86:19:
ef:6d:db:3d:0e:13:cb:cb:69:9a:3d:91:e2:3f:ee:11:64:09:
9b:16:39:22:1f:80:2d:98:ed:dc:a4:3d:91:61:a1:a8:38:bf:
e1:e7:d0:21:47:5c:41:d3:e0:fd:bb:8c:52:8a:6e:3a:4f:5a:
dc:24:56:45:9c:0e:c6:67:5c:35:7a:53:ac:f3:2f:59:9d:a8:
3b:1d:c4:4f:e0:5e:2c:99:e1:40:58:29:60:52:09:a8:da:92:
0e:1e:cb:dd:fe:ad:c7:5e:81:17:d2:e9:bc:4b:0a:a5:95:61:
72:fc:40:31:d2:c4:bb:ee:67:26:0c:a6:aa:91:76:56:c7:60:
01:03:be:ea:1e:da:79:f8:6c:5d:17:b0:44:10:83:9c:9a:50:
b4:74:8b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org