Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/eSbuaVcPIe44SsNxc0ONB9BY9zo.roa
File: eSbuaVcPIe44SsNxc0ONB9BY9zo.roa (raw, json)
Hash identifier: y/B1nKumXhPE+OY93z/Vlb3pGSOM7SecmFio1w2Rqxs=
Subject key identifier: 79:26:EE:69:57:0F:21:EE:38:4A:C3:71:73:43:8D:07:D0:58:F7:3A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CF3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eSbuaVcPIe44SsNxc0ONB9BY9zo.roa
Signing time: Sun 07 Feb 2021 11:46:05 +0000
ROA not before: Sun 07 Feb 2021 11:46:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3315 (0xcf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:46:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7926EE69570F21EE384AC37173438D07D058F73A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:21:14:a7:eb:b7:4a:eb:b8:52:ed:c1:3c:17:
83:2a:37:ca:4e:e9:ce:c4:df:f3:c2:39:e0:cb:b6:
3c:39:e0:d4:6b:2d:91:1e:29:70:33:02:0b:89:5b:
9d:cb:d1:07:71:d7:58:8f:97:a9:2a:75:0c:9e:8e:
c8:3c:01:30:a4:69:8f:48:69:f8:c2:98:36:88:e9:
69:60:6c:12:09:d9:06:17:d0:06:26:9d:50:1a:ae:
99:1c:81:3a:d8:36:07:d0:1e:db:ad:02:bc:13:78:
f8:0e:1b:a6:fc:d9:56:8d:44:1f:c8:2d:b1:a6:ea:
04:82:4c:60:f9:f0:1f:0f:33:60:79:02:97:65:69:
b6:ea:e7:7c:70:2e:9b:dd:a5:33:19:d3:af:0a:c6:
c4:22:c3:82:a3:5c:68:2f:5a:67:c3:88:98:8a:05:
1e:bf:46:b4:08:40:56:e3:0c:b2:d8:c1:01:33:9f:
7a:79:44:ed:96:ea:48:6d:e2:9e:8a:ed:cf:bb:66:
50:08:23:db:60:af:25:39:11:ab:a5:e7:54:ac:bc:
4f:d5:0f:d0:a4:a8:83:0c:47:76:df:14:b7:cf:f4:
57:85:a9:b5:29:5d:5d:0f:cc:f4:60:46:57:fe:29:
ec:13:ba:a8:d0:99:4b:91:5e:d4:68:01:b0:8c:f3:
d9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:26:EE:69:57:0F:21:EE:38:4A:C3:71:73:43:8D:07:D0:58:F7:3A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eSbuaVcPIe44SsNxc0ONB9BY9zo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.24.0/21
Signature Algorithm: sha256WithRSAEncryption
79:1c:4b:67:f9:9e:03:41:9c:22:d7:3e:be:43:31:00:50:a8:
88:5f:c2:a3:3c:c8:bc:04:b4:6e:a9:b7:b2:c2:5f:87:f5:9a:
3a:8b:a0:9f:ec:d1:4b:a6:d0:ae:e9:d0:f2:35:b0:fe:99:de:
f9:78:67:c7:44:1c:e5:7c:dc:ec:7c:6b:76:2d:e8:b6:1c:ac:
ca:26:c9:a2:8e:3c:d2:a9:01:6b:05:af:b2:1d:79:53:eb:16:
5c:3c:d7:5e:ee:34:a2:21:62:6f:7b:e0:e7:dc:e4:8f:ee:ac:
8d:dc:ae:14:3d:1f:31:d6:04:ca:22:85:f4:eb:dc:27:10:fb:
a4:f9:df:27:11:25:a8:8c:59:d1:c6:15:27:40:50:47:57:eb:
57:6a:a6:ff:72:5c:fa:8a:fa:24:54:a4:a3:0a:4e:0a:ed:87:
ea:fd:12:a4:77:e8:96:48:f4:f3:1f:39:c2:c9:52:e7:66:71:
be:e7:ee:09:5e:09:7d:45:c8:73:1c:91:29:77:fe:f9:43:d9:
07:20:b2:0f:66:02:31:a3:32:c4:d8:0d:14:fa:19:30:05:2f:
05:aa:ab:f6:41:c2:54:b9:5d:88:03:30:56:a6:e0:2f:4e:e8:
54:05:81:16:01:5f:0b:9d:71:5a:b8:e3:71:91:18:ab:70:ea:
21:f5:07:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org