Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YldNXe-M1l2fU5B1iHAb2HOfjtI.roa
File: YldNXe-M1l2fU5B1iHAb2HOfjtI.roa (raw, json)
Hash identifier: rmNujHUsKxwVQkLVeY89SIWohoZJYdEqfLJ/ToIYQyc=
Subject key identifier: 62:57:4D:5D:EF:8C:D6:5D:9F:53:90:75:88:70:1B:D8:73:9F:8E:D2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0888
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YldNXe-M1l2fU5B1iHAb2HOfjtI.roa
Signing time: Tue 29 Sep 2020 09:52:08 +0000
ROA not before: Tue 29 Sep 2020 09:52:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2184 (0x888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=62574D5DEF8CD65D9F53907588701BD8739F8ED2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:da:ba:56:cb:4b:47:66:cf:98:a7:36:ea:69:
af:08:96:9a:47:14:aa:6a:fc:87:32:c1:1e:2a:85:
17:6e:64:b5:43:17:0a:20:79:2c:68:8c:c6:75:76:
1e:f1:27:60:e5:7e:e4:6f:6b:82:36:ea:82:f6:b0:
f4:de:40:fc:d2:07:f8:e1:ed:76:ca:1c:95:59:90:
9b:f5:37:5c:c3:ac:36:c3:d3:61:ee:ec:7d:61:f0:
cb:63:19:4d:21:40:38:05:0b:6f:72:7e:36:b5:74:
b4:5e:7b:0b:7b:a0:bf:00:fb:ef:1d:8d:95:34:e6:
bb:d1:2e:87:b6:ed:a3:35:3f:fa:0d:e4:0e:0d:af:
18:d4:88:33:d7:4b:a6:fe:0e:ee:62:40:8a:97:5e:
2e:1f:70:51:53:6b:85:23:75:af:13:05:22:b9:b6:
c4:e9:2d:c5:21:73:9e:b8:9e:a7:f6:4f:19:81:6d:
3e:3c:c2:4d:d0:44:e8:da:b2:c2:b6:de:25:5a:d9:
b6:e8:07:b1:a7:c4:2c:74:79:e7:29:8d:53:ae:22:
98:fe:61:04:63:9a:0a:4c:94:21:ce:e4:1b:89:db:
dc:c5:81:5f:4e:b3:2e:35:e5:e9:a3:1d:31:42:7f:
ab:82:c4:43:5e:d5:16:33:13:eb:a8:c9:7d:cf:05:
48:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:57:4D:5D:EF:8C:D6:5D:9F:53:90:75:88:70:1B:D8:73:9F:8E:D2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YldNXe-M1l2fU5B1iHAb2HOfjtI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.176.0/20
Signature Algorithm: sha256WithRSAEncryption
76:a9:bf:5e:86:f0:c2:f1:e1:89:a8:57:c6:02:07:eb:e9:fa:
ba:58:37:8f:b2:dd:ba:d1:5c:37:16:45:fb:fd:c4:76:94:67:
d3:1d:34:57:24:eb:01:b4:97:25:d3:a5:85:6a:9f:57:88:01:
54:e6:ac:d6:c9:cb:7e:b8:54:30:0a:76:8c:15:cb:de:61:26:
f3:6c:e2:eb:e6:75:1f:0c:07:dd:cb:d0:75:4d:e3:f8:87:1e:
05:53:e6:58:19:3a:09:85:c8:bb:92:d4:7a:45:aa:e1:a6:1e:
f4:34:7e:25:99:34:fd:72:1b:3e:3d:1c:c4:2e:44:c8:6c:c5:
89:a9:d3:aa:00:e9:f7:ab:87:99:c6:94:ac:08:8e:a7:b5:13:
96:f6:a2:63:6b:af:17:ab:65:a4:d3:f8:10:06:98:38:92:d8:
c0:fe:9f:d4:e8:1b:31:75:14:78:52:bb:d7:d3:a1:10:61:29:
ee:fb:e4:28:14:c3:99:a4:e1:7b:d5:92:25:e5:b8:22:15:75:
50:56:24:f3:82:5d:c6:04:d4:49:c2:78:37:21:94:d3:a7:67:
99:e3:ea:54:88:9b:68:5f:2e:3e:c3:25:e5:b2:ec:16:f1:93:
89:39:7e:84:6e:2e:4a:be:78:24:5d:21:86:99:c1:de:a1:aa:
47:76:2b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org