Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/S4noJWQE-YRfFL0klwrAsL0qk8E.roa
File: S4noJWQE-YRfFL0klwrAsL0qk8E.roa (raw, json)
Hash identifier: Mm7cMZK0b+HX8gpynoIz5z5aQ61E0B1beWTCRUMfhOI=
Subject key identifier: 4B:89:E8:25:64:04:F9:84:5F:14:BD:24:97:0A:C0:B0:BD:2A:93:C1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08AD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S4noJWQE-YRfFL0klwrAsL0qk8E.roa
Signing time: Tue 29 Sep 2020 09:52:19 +0000
ROA not before: Tue 29 Sep 2020 09:52:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2221 (0x8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4B89E8256404F9845F14BD24970AC0B0BD2A93C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:58:f6:19:18:ba:0d:5a:5c:83:ce:e3:a6:0a:
82:ce:47:fb:3b:0b:1b:55:02:41:22:2f:e0:0f:d8:
69:fa:ad:96:0b:5f:69:16:cb:85:92:da:6d:a6:1d:
48:3d:26:67:5b:3b:85:b2:67:d3:e3:8b:4c:8a:87:
eb:0a:54:04:e2:e6:38:13:8e:c7:59:1a:66:d2:5d:
d1:2a:d4:38:7f:7d:b6:ef:97:84:8e:b5:aa:ca:56:
3f:1f:9a:8e:3a:05:54:31:5f:ea:ab:ae:29:6b:e3:
ae:49:3b:07:25:c9:f0:98:71:35:53:cc:6f:50:4b:
8e:03:4b:e5:bf:bf:48:07:e0:98:03:50:a0:b6:22:
83:33:f7:21:0a:64:b4:d5:a5:c7:21:e2:22:dc:ee:
37:ea:5a:01:29:9a:c7:41:77:5d:43:62:39:95:09:
ab:c2:25:47:b8:51:1b:ad:29:34:d8:93:a2:fc:5b:
71:bd:58:b9:85:25:ff:ec:5e:bd:87:47:30:90:81:
8d:0a:09:d3:cb:f2:d0:4c:06:e6:ca:fb:88:56:4d:
b6:44:64:36:1e:66:f5:9d:6a:db:a5:8c:d1:dc:6d:
68:fd:11:54:e8:62:b5:f2:c5:f9:4c:2c:9b:da:83:
82:f6:11:36:ff:41:06:a3:98:9b:ac:19:ce:f9:42:
71:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:89:E8:25:64:04:F9:84:5F:14:BD:24:97:0A:C0:B0:BD:2A:93:C1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S4noJWQE-YRfFL0klwrAsL0qk8E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:b8:67:fc:85:65:65:2a:1b:d2:9b:f2:c8:90:89:2b:55:d1:
e4:77:52:7d:ba:ec:e7:bd:50:96:78:05:5f:bb:c7:68:27:97:
ee:cb:15:5d:af:da:da:c1:49:c6:2b:2d:65:47:9f:fd:a1:48:
70:77:35:ab:f1:fd:06:3b:73:3b:d5:8d:34:f4:95:c7:3d:59:
40:32:76:62:c0:60:1b:2f:bd:de:fa:5d:f1:8f:94:08:88:cc:
a3:87:16:fc:20:39:b4:50:c3:6b:19:64:c2:92:74:84:e0:3e:
8e:0d:3d:c4:17:7e:a0:04:36:12:96:d8:35:26:db:2b:ae:c6:
92:0a:52:e3:80:d3:11:af:6b:f4:65:f2:b0:44:af:03:92:fa:
fb:0a:32:52:01:70:3d:2f:56:69:01:d1:c8:25:3c:85:ad:f5:
44:ee:7a:92:6a:15:f9:a9:c0:a8:38:10:52:fa:89:97:00:73:
59:14:6a:7e:f2:25:52:0b:03:34:8b:01:c8:54:d6:ad:0e:14:
2a:6e:ee:42:3c:96:c6:00:c0:12:59:3b:e0:8e:43:51:58:47:
34:78:12:d0:08:e6:7f:74:03:ee:99:87:d4:ad:cb:f1:4c:0c:
2f:15:79:b5:f8:9d:ca:16:39:0f:c1:f6:50:d3:02:44:dc:06:
cc:3e:4e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org