Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/StBh4zhp-mJFJeJAP_fX6j8cyVE.roa
File: StBh4zhp-mJFJeJAP_fX6j8cyVE.roa (raw, json)
Hash identifier: D7SewZ0AdTKvW9iKtx/jgc6HXX27Y1bMut8CXsaksjs=
Subject key identifier: 4A:D0:61:E3:38:69:FA:62:45:25:E2:40:3F:F7:D7:EA:3F:1C:C9:51
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CE7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/StBh4zhp-mJFJeJAP_fX6j8cyVE.roa
Signing time: Sun 07 Feb 2021 11:45:50 +0000
ROA not before: Sun 07 Feb 2021 11:45:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3303 (0xce7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4AD061E33869FA624525E2403FF7D7EA3F1CC951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8f:39:36:e9:23:14:03:87:fe:86:4f:91:0f:
b8:5d:86:9b:60:ea:03:ff:2e:6f:a6:ce:b9:b0:8c:
38:24:28:03:97:ef:a5:d2:e4:0e:13:77:5d:b2:12:
0d:35:b0:25:5b:ec:02:fd:13:f6:9a:98:12:8a:c0:
1f:f5:7d:2a:36:04:4d:62:3e:a5:7a:00:3c:c7:52:
17:6a:12:d3:13:c7:c9:5b:0b:90:65:61:06:82:8f:
b0:7f:1a:5f:00:93:bc:d2:e7:92:ea:31:29:27:0b:
29:55:f1:54:a2:c3:df:7a:a2:ee:c4:11:be:e3:f3:
08:83:0d:ab:f4:2c:db:0b:98:8b:1a:2b:fb:df:e6:
94:be:b2:12:2f:cb:b3:4c:d1:8f:4f:76:78:3a:fa:
c8:6f:66:20:9c:75:b4:cc:bb:39:6f:ce:a0:7b:c6:
c5:99:7a:5b:03:95:b8:c9:46:f8:73:d4:49:94:93:
1b:2b:fe:4e:08:63:81:c2:00:e9:31:a5:b0:e3:56:
86:4b:5e:37:df:45:e6:d3:35:8e:03:7c:46:b8:c1:
e9:6a:70:bc:c7:f2:44:6c:e5:2f:e0:16:e5:ef:7f:
5a:f9:70:6b:ed:37:a9:0c:ea:49:b4:18:17:a0:fb:
57:19:63:06:37:6b:fb:78:e3:66:21:60:d8:6c:0e:
af:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D0:61:E3:38:69:FA:62:45:25:E2:40:3F:F7:D7:EA:3F:1C:C9:51
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/StBh4zhp-mJFJeJAP_fX6j8cyVE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.128.0/19
Signature Algorithm: sha256WithRSAEncryption
30:ae:d9:cc:97:62:19:bc:d5:95:12:41:f0:4c:e9:07:8a:dd:
60:29:97:c8:d4:63:c7:4f:8d:02:e0:c2:4f:aa:94:90:4a:38:
44:38:7e:bf:86:bc:c7:0c:3b:8f:8e:63:a8:0d:b1:a7:af:05:
c5:61:51:d1:02:70:b9:1e:fa:48:cc:7a:ad:f7:ad:10:27:bd:
1c:cf:c1:fb:60:bf:1e:c6:60:07:80:84:17:59:ce:b7:27:07:
06:b6:6a:17:3e:7b:a1:77:fd:ff:a2:ad:e6:20:81:b9:b8:72:
70:27:5b:fc:9c:a8:b7:1d:b9:48:aa:33:96:06:89:d7:db:89:
5d:81:97:d9:21:34:67:0e:f2:b5:d7:b6:98:58:20:f9:5e:96:
31:52:c5:d3:41:bf:19:f0:17:a8:cb:d4:96:5c:0e:26:bb:43:
f1:3f:ef:74:84:51:a5:7e:e2:4d:8e:3d:3e:b1:f7:c3:39:84:
21:31:92:52:58:cf:17:1f:fa:0a:16:6d:4d:4d:7e:a0:72:7a:
19:72:5d:4c:08:ca:81:eb:b6:98:00:16:e6:69:71:9d:ba:2a:
c0:a6:c5:03:35:44:03:c9:43:a5:1f:27:fb:49:de:f8:51:98:
a4:fd:1d:7c:fa:b5:b3:03:12:3b:fd:72:14:84:58:cd:84:c4:
70:15:cc:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org