Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Rnb8Q-cDFXTaxQGTJKdRYU5IJwE.roa
File: Rnb8Q-cDFXTaxQGTJKdRYU5IJwE.roa (raw, json)
Hash identifier: tuAfQkqCmjkY9O+5HEAvTYomjhYnbk8UzllOJGjjlpA=
Subject key identifier: 46:76:FC:43:E7:03:15:74:DA:C5:01:93:24:A7:51:61:4E:48:27:01
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08F2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Rnb8Q-cDFXTaxQGTJKdRYU5IJwE.roa
Signing time: Tue 29 Sep 2020 09:52:37 +0000
ROA not before: Tue 29 Sep 2020 09:52:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2290 (0x8f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4676FC43E7031574DAC5019324A751614E482701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5f:97:0e:bf:fc:92:0d:66:26:07:c4:66:e4:
51:1f:1a:8f:6d:6d:90:87:e0:c9:31:5b:fb:ce:c5:
5f:df:27:1f:39:74:7c:15:9e:0e:38:10:74:c0:39:
38:cd:f9:5e:d9:7c:e5:26:a9:ed:29:f4:e2:63:14:
3d:1b:a2:10:16:3e:a5:32:1c:96:ad:ed:38:62:6a:
26:5e:cd:88:d7:e1:40:60:c3:1e:78:5f:cb:e2:84:
5f:4f:a0:73:db:4b:a3:e1:18:1a:21:3e:0c:59:82:
3a:99:5d:13:07:62:74:2a:92:9d:72:05:f5:47:60:
16:a3:77:64:5e:8d:60:26:ae:1d:1c:33:51:6b:3d:
17:01:ff:8b:08:ee:aa:e5:9b:44:f8:24:c3:d3:7d:
a1:60:ed:d5:fa:ff:94:ce:00:13:c9:00:b7:f8:94:
ec:78:5f:bf:ed:cc:fe:65:6f:a0:f0:52:90:d8:86:
d1:22:8a:68:89:c9:b2:7e:a7:8a:68:dd:ae:ad:2e:
a2:b6:32:d7:db:ae:ef:40:95:e2:87:09:11:72:be:
c6:02:5c:55:00:85:a0:7e:5e:4c:d6:31:35:31:79:
24:34:43:70:5c:6c:04:c7:d0:21:d1:8b:36:1f:f0:
c4:24:e4:ee:29:f0:13:44:df:a4:60:4c:ba:5d:7c:
40:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:76:FC:43:E7:03:15:74:DA:C5:01:93:24:A7:51:61:4E:48:27:01
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Rnb8Q-cDFXTaxQGTJKdRYU5IJwE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.112.0/20
Signature Algorithm: sha256WithRSAEncryption
92:90:43:6a:00:a0:20:19:32:50:60:c4:c2:2a:70:f1:6a:86:
19:f0:76:7e:29:e5:a8:2a:52:36:48:55:13:18:6e:fb:42:ee:
28:8d:04:74:3e:59:fe:6f:8a:56:40:97:d6:50:9c:12:89:f2:
6e:43:8b:6f:b1:9a:57:26:fb:2a:84:23:d7:a2:67:d0:9f:ed:
52:d1:06:1d:ee:b2:24:fd:58:64:03:cc:32:7f:74:d8:f0:ac:
30:5f:58:a2:33:e7:da:ce:1d:d7:ca:ee:ad:19:f1:ed:db:26:
78:2e:24:94:8f:1b:63:53:3d:23:41:f6:e4:e3:7e:9d:c4:cf:
cb:d1:63:2f:9f:f6:27:df:3c:06:ff:33:60:90:6b:a4:3f:ca:
6d:88:21:cb:25:15:5a:f6:ff:73:e8:2b:8f:36:eb:bc:46:6f:
b9:52:e4:9f:ed:2c:34:f3:90:d0:45:46:5b:1f:94:3e:c9:6d:
f3:82:fc:32:5a:bb:6e:70:b2:da:91:fc:41:4d:bf:a6:d0:31:
f8:2a:08:06:d1:05:5e:5a:03:d7:0b:d5:46:31:76:9b:fa:ba:
18:25:b6:a8:6a:6e:ce:b2:e2:60:bd:78:a9:0e:41:b5:2d:94:
ea:d6:37:72:f3:53:85:2f:e6:fc:92:81:af:b2:86:a3:b8:ec:
38:6d:65:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org