Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/W0RQr6JzvVWV-2L2s-Ho3k3_tEg.roa
File: W0RQr6JzvVWV-2L2s-Ho3k3_tEg.roa (raw, json)
Hash identifier: WWQtzDRHNRF3jJZ2c8OZ+BkmOWxcAH1ZfRAoWM/U6qk=
Subject key identifier: 5B:44:50:AF:A2:73:BD:55:95:FB:62:F6:B3:E1:E8:DE:4D:FF:B4:48
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EBC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/W0RQr6JzvVWV-2L2s-Ho3k3_tEg.roa
Signing time: Wed 29 Sep 2021 02:43:55 +0000
ROA not before: Wed 29 Sep 2021 02:43:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 122.147.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3772 (0xebc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5B4450AFA273BD5595FB62F6B3E1E8DE4DFFB448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:88:66:36:47:0b:67:85:a6:38:5f:4d:ba:60:
43:03:bb:49:06:2c:ff:41:f7:fa:c7:ca:20:1b:8f:
72:0a:5f:3e:f5:9c:78:3d:a7:e8:48:22:25:96:53:
fb:df:2a:5c:e7:35:e2:f3:86:56:fc:ee:1e:2b:8e:
01:72:bd:8b:49:92:5d:4e:b2:34:2c:38:77:5f:92:
92:93:82:58:5e:e1:70:e1:c7:50:44:60:dd:be:53:
31:da:73:6b:d0:f6:3f:53:c4:90:90:e4:c0:5e:41:
02:03:87:c5:00:d7:7d:36:73:dc:41:ee:97:17:92:
81:2d:44:de:a3:45:c4:3e:90:a0:2a:9b:03:af:b0:
3e:f4:69:a6:28:ee:1c:61:45:d8:83:e2:ce:1a:20:
93:2c:bf:f5:ac:a2:52:ca:41:50:13:da:85:43:f1:
bd:ff:28:e3:25:1e:62:a8:f8:3f:37:6c:5d:2d:16:
2e:01:2e:30:39:a9:f7:42:e6:6f:65:70:df:8c:65:
e7:dc:fb:40:0a:18:b1:4b:fa:8d:55:c7:0f:e9:33:
56:89:45:66:76:1f:19:18:9e:ea:ef:d8:c3:b1:66:
cb:ff:94:71:e0:64:08:cc:35:90:4d:99:70:60:25:
1c:21:24:79:a9:94:83:b2:9f:b9:b3:db:02:d2:6b:
06:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:44:50:AF:A2:73:BD:55:95:FB:62:F6:B3:E1:E8:DE:4D:FF:B4:48
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/W0RQr6JzvVWV-2L2s-Ho3k3_tEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.128.0/17
Signature Algorithm: sha256WithRSAEncryption
38:13:04:ef:14:91:45:11:75:83:93:18:59:94:ce:67:00:b6:
19:e2:ff:ac:3d:0e:d4:4f:f7:a4:14:c8:3b:39:80:9b:71:47:
92:46:4a:c1:34:26:b2:e0:b8:fd:85:a7:d2:6e:15:3e:c5:d8:
0c:22:a2:cc:1f:2d:0b:2b:4b:aa:4d:6b:07:9d:30:6d:bb:7b:
22:2f:f1:3f:c6:23:9e:26:a0:79:a5:ba:20:0c:9c:c9:74:00:
04:55:40:b9:29:36:74:62:e6:9c:02:c4:1e:f6:a7:13:5f:97:
44:f5:47:88:c3:c2:3c:9d:3b:67:bc:4b:68:73:cc:e9:4e:95:
86:b4:c2:c3:84:ad:14:ab:11:e3:33:7c:f0:61:0b:7f:84:30:
81:ad:ae:6f:d1:04:6a:9e:0e:d8:ba:5f:52:88:a2:4d:66:66:
69:39:f6:60:55:65:97:81:8d:23:a2:3f:0c:6b:a3:90:2b:a4:
a7:c0:70:05:fe:95:2c:68:9b:28:d6:59:e2:a5:5a:01:c7:5f:
c3:e4:ab:a9:c3:10:5b:b3:47:d9:ec:e5:05:d3:f0:5f:b4:97:
38:5f:47:f3:e0:dd:bf:3b:4a:72:6b:44:ef:e2:67:b0:05:50:
43:3e:b7:8e:47:31:a9:03:40:17:15:17:d6:6d:cb:5a:03:7f:
54:13:81:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org