Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xz-sfge5X_4f5eUGMxl3_Fe_Zto.roa
File: Xz-sfge5X_4f5eUGMxl3_Fe_Zto.roa (raw, json)
Hash identifier: IkR2mI7trfngjuPQJtiY2uj4GeyRp69NIzs4xmnxJSI=
Subject key identifier: 5F:3F:AC:7E:07:B9:5F:FE:1F:E5:E5:06:33:19:77:FC:57:BF:66:DA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0903
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xz-sfge5X_4f5eUGMxl3_Fe_Zto.roa
Signing time: Tue 29 Sep 2020 09:52:42 +0000
ROA not before: Tue 29 Sep 2020 09:52:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2307 (0x903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5F3FAC7E07B95FFE1FE5E506331977FC57BF66DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4b:af:0b:c8:ee:0d:19:5e:8c:86:0e:bc:17:
7b:50:43:a5:38:22:09:01:c6:1e:b4:58:28:2a:72:
aa:fc:7a:47:ba:f7:91:3e:d0:fa:09:e4:66:6a:e8:
30:bc:e8:9c:12:27:83:69:20:76:e9:fc:60:f1:5a:
e1:94:55:93:f1:bd:ab:6d:59:94:36:3d:cf:90:0b:
ee:c2:11:83:12:ea:3f:97:86:e9:0f:e1:39:05:3f:
34:8b:23:da:67:74:db:e0:54:72:39:b5:9e:5b:7b:
16:50:cf:ab:65:d9:47:3f:49:2d:67:4e:92:b6:50:
c5:cb:e1:da:94:84:c7:1a:a1:5a:3c:f5:35:45:fb:
ec:73:8a:46:d0:f3:0b:5b:7f:bc:d2:8d:99:33:4b:
5e:30:02:f6:16:f9:e1:ac:13:4a:72:ca:45:ac:f1:
74:96:64:bd:39:2d:43:e3:8c:8d:eb:f1:7b:12:10:
d2:c2:35:ce:36:8e:f9:2b:a3:1a:cd:4b:d2:8b:fc:
37:16:f4:cd:d9:65:68:9b:ab:c7:bb:b0:3e:a6:a0:
4d:91:2f:d6:0b:69:93:5e:56:ff:d8:37:be:03:15:
86:c0:ed:8f:65:26:72:33:53:cc:1c:92:4b:ea:18:
97:4e:0d:b8:d8:5a:7a:c9:dd:68:a0:94:25:6d:85:
3a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3F:AC:7E:07:B9:5F:FE:1F:E5:E5:06:33:19:77:FC:57:BF:66:DA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xz-sfge5X_4f5eUGMxl3_Fe_Zto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.168.0/21
Signature Algorithm: sha256WithRSAEncryption
78:bd:64:21:4e:4b:76:22:f5:a0:c5:5f:35:61:88:38:6f:1a:
ce:b9:da:4c:e4:9f:74:98:e9:1e:5b:2d:a1:ef:4b:47:0c:44:
b8:06:a4:2e:4b:13:3b:18:ab:8c:09:6b:92:9b:f0:30:10:bb:
76:6c:57:4e:7e:53:7c:5e:d8:87:dd:91:1a:21:7a:1d:7f:b2:
25:4b:93:1a:0c:f1:00:de:84:72:39:4a:11:d1:11:7e:a4:57:
7f:95:f3:2e:fe:8a:ce:73:33:6c:52:66:5b:f7:c9:71:b1:95:
82:19:f3:6b:f8:66:98:34:73:d5:e2:e6:68:3b:78:d1:cb:3a:
af:ff:66:6b:0d:36:c3:60:13:2a:70:65:00:73:f2:7b:68:ff:
98:18:e9:fb:75:fc:96:c5:11:f7:b5:6a:68:1e:a4:fd:55:7b:
e9:56:b6:a3:c5:97:ad:06:fc:20:aa:09:dc:35:f3:ee:b4:c9:
7e:4b:41:c1:ba:9a:ef:29:f4:93:30:70:7c:d1:89:82:49:fa:
9b:fd:82:1b:36:69:7d:cc:57:14:cd:63:b5:a1:59:0d:c3:5c:
2a:43:cb:75:01:65:e7:89:d6:ff:dd:d2:93:1b:e1:8c:3b:25:
b3:40:82:1c:30:a0:af:31:5c:25:5b:98:fe:64:4c:28:8f:86:
c9:ba:ab:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org