Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UoV66cbTyhfW41BYJzKGX8le7So.roa
File: UoV66cbTyhfW41BYJzKGX8le7So.roa (raw, json)
Hash identifier: Sfdy8lta/Ej2++4xx8tHgD/1ovERLiNtPDwR85ZnRrQ=
Subject key identifier: 52:85:7A:E9:C6:D3:CA:17:D6:E3:50:58:27:32:86:5F:C9:5E:ED:2A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CDD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UoV66cbTyhfW41BYJzKGX8le7So.roa
Signing time: Sun 07 Feb 2021 11:45:38 +0000
ROA not before: Sun 07 Feb 2021 11:45:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3293 (0xcdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=52857AE9C6D3CA17D6E350582732865FC95EED2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a1:60:09:ea:69:82:3b:72:15:fb:68:6b:7c:
1a:65:f6:2f:fe:30:fc:93:6d:4f:5a:bf:71:83:8c:
b7:78:05:d6:32:84:0b:67:80:22:c1:cf:6a:84:d1:
b0:74:4c:d0:91:5d:c2:54:cb:b5:25:b9:f8:7c:fa:
19:5b:49:8b:7f:0e:a3:d2:f9:7d:24:78:49:f3:25:
19:e6:66:ba:b8:e2:7e:21:38:85:65:99:b1:37:a7:
23:0e:38:2f:3f:20:2d:74:b6:9a:5f:f3:aa:71:10:
76:ab:c0:2d:d9:a8:53:dd:10:1f:00:cd:61:89:49:
02:26:56:10:10:6d:2c:52:49:c1:81:51:1f:a0:90:
0d:10:98:8c:b5:4d:93:0c:34:d4:fc:28:67:70:bf:
61:8f:20:7f:91:74:3a:99:8a:bb:ea:ba:44:9e:a2:
7b:6e:04:3a:95:b5:e4:0c:30:5c:55:b3:72:15:25:
4e:69:c6:26:91:6d:1b:15:a6:27:73:c7:43:09:4b:
3f:0d:7f:3d:06:e1:e1:16:81:33:c5:a9:9b:5f:b6:
27:ff:89:54:0d:7f:07:d8:c2:ad:e3:27:b3:5e:d0:
8c:2a:5c:a8:c1:17:93:40:fc:29:ec:e3:7c:00:2a:
29:b3:03:89:72:62:a1:79:fe:84:e2:08:94:cb:f1:
ed:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:85:7A:E9:C6:D3:CA:17:D6:E3:50:58:27:32:86:5F:C9:5E:ED:2A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UoV66cbTyhfW41BYJzKGX8le7So.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.96.0/21
Signature Algorithm: sha256WithRSAEncryption
06:05:97:74:50:d3:a4:a4:28:29:ca:7b:45:4a:f2:4d:5d:d1:
28:2c:93:3e:40:a5:39:3f:1e:a8:39:f1:05:5d:eb:47:05:5f:
ed:df:9e:5d:ae:b5:61:6e:d3:5f:fb:51:f3:fc:e3:5f:8a:38:
eb:1a:9e:56:c7:28:b0:68:33:91:22:e9:17:2d:f4:d2:e9:b6:
14:08:34:7d:90:50:7b:51:05:38:d1:91:ca:77:2a:3e:17:c1:
b4:5e:58:2e:2d:35:03:a4:0a:c6:00:19:6e:51:8d:1b:78:aa:
93:48:65:1d:6f:ab:fa:0f:30:f1:e1:3c:72:97:36:96:2e:40:
52:8d:0e:a3:b4:e7:de:ff:af:b5:60:19:cd:60:ed:66:30:9c:
ef:63:a1:92:48:f4:6a:0a:9a:53:2d:1d:b9:c8:2c:34:a2:8b:
27:c2:a6:c5:28:14:c5:7e:3c:56:03:77:ef:4f:6e:53:a6:fc:
a2:6d:7d:ea:f4:b4:a9:23:49:b0:66:1e:5d:0f:70:d0:27:15:
39:26:75:e8:24:da:9a:86:f4:2f:53:3e:92:d1:17:77:35:ab:
3f:56:fd:1a:16:c1:f9:fc:73:b2:d4:3f:02:87:f6:9d:ae:46:
f4:d1:7b:e3:a5:b1:74:11:b0:e4:92:bd:70:e1:3b:41:9f:89:
00:29:18:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org