Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cwa-AmfZKPpKxVsVUoMJEc5ugUg.roa
File: cwa-AmfZKPpKxVsVUoMJEc5ugUg.roa (raw, json)
Hash identifier: KsEyxW5Imoim0MAqbwnWL9z/koFFRtd4UXfnEj2MIDQ=
Subject key identifier: 73:06:BE:02:67:D9:28:FA:4A:C5:5B:15:52:83:09:11:CE:6E:81:48
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EAA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cwa-AmfZKPpKxVsVUoMJEc5ugUg.roa
Signing time: Wed 29 Sep 2021 02:43:49 +0000
ROA not before: Wed 29 Sep 2021 02:43:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3754 (0xeaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7306BE0267D928FA4AC55B1552830911CE6E8148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:eb:78:fb:13:9b:e5:ad:10:a3:be:6f:b6:e7:
93:41:e5:f2:68:4a:d1:25:97:84:8b:ee:60:c2:db:
0b:8d:b1:19:ba:dc:99:3e:96:cd:f7:96:c5:a1:c0:
49:0f:d6:de:a4:7c:99:e0:04:da:d1:9b:0d:c6:e5:
d5:66:b2:55:a9:31:c0:a4:7d:5a:fd:14:51:2f:f7:
04:04:bf:a7:c5:7a:ff:ac:27:23:61:1f:13:89:3d:
c3:86:18:37:79:83:9f:ed:e2:3b:71:c8:34:88:17:
07:7c:56:6d:7d:99:81:a8:9c:f4:07:fd:9b:2c:2a:
39:cc:dd:bc:0b:2b:ea:31:e9:74:15:65:f5:a0:45:
49:ee:45:c0:4b:8c:ce:ae:ce:88:ed:1d:33:95:1f:
b6:57:9d:4d:f4:cb:7c:00:41:60:28:1b:12:c3:58:
a5:b5:58:c6:4c:f5:41:3e:e1:d0:68:42:58:bc:0e:
a8:4c:42:ad:82:39:77:19:da:73:b9:e9:b2:32:17:
af:d5:44:41:bf:4b:32:74:1d:30:25:9b:9b:c9:7d:
d9:fc:1e:70:5f:d5:b7:c2:0d:15:85:f7:6f:bb:4c:
91:f2:ff:35:df:96:bf:cf:85:9d:99:0f:f6:4a:bb:
ae:65:14:b9:db:da:92:2e:99:e4:c0:e1:20:6c:0a:
5a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:06:BE:02:67:D9:28:FA:4A:C5:5B:15:52:83:09:11:CE:6E:81:48
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cwa-AmfZKPpKxVsVUoMJEc5ugUg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.24.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:94:07:d8:5e:4f:5f:72:de:98:88:e7:4d:ba:b6:a4:9c:c2:
17:b5:17:1a:82:0c:86:22:7e:ab:2a:09:11:0c:87:c3:70:28:
53:07:d8:40:9b:7a:34:3d:6c:3d:b9:dc:6f:2a:66:2d:25:2e:
d8:72:65:a2:04:98:ce:8f:60:1c:4c:a0:d9:5c:e3:b1:a2:61:
4b:57:9b:22:d7:28:38:9f:05:1b:e8:25:34:64:3d:0c:0a:b3:
e8:79:af:bc:89:d8:9e:38:2b:36:31:36:36:59:62:b1:3e:78:
fc:5e:53:43:38:c5:3c:8a:90:81:54:91:f6:4a:82:47:46:8e:
6b:aa:fc:32:38:f8:50:31:9d:76:62:c1:d9:2c:92:ab:8d:c2:
00:da:1d:39:84:fb:39:7f:44:fc:e7:46:26:4c:bb:79:19:8d:
24:fe:9d:2f:9c:8e:20:a3:15:44:ef:f8:c4:9e:e5:5c:cf:11:
e0:3a:a0:f0:ef:29:95:18:2c:5d:5d:95:3c:8e:56:2e:a6:eb:
ac:74:a3:b0:52:b8:8b:9a:25:9a:0c:33:fe:bd:cc:20:20:59:
cf:2e:56:3d:74:30:2b:43:12:64:a2:cc:95:75:2d:97:56:20:
08:93:e6:ea:2a:dd:5d:e8:01:2d:3b:d1:77:10:f2:dc:2f:aa:
6e:6c:fc:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org