Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gr7kF0N6j0SYD0hLxR2nL1IUfeM.roa
File: gr7kF0N6j0SYD0hLxR2nL1IUfeM.roa (raw, json)
Hash identifier: Xk0D4yQwLVAIofiXfspUI1d6MQhHFl1DT0NQ4yeE7Ag=
Subject key identifier: 82:BE:E4:17:43:7A:8F:44:98:0F:48:4B:C5:1D:A7:2F:52:14:7D:E3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EBF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gr7kF0N6j0SYD0hLxR2nL1IUfeM.roa
Signing time: Wed 29 Sep 2021 02:43:55 +0000
ROA not before: Wed 29 Sep 2021 02:43:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.146.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3775 (0xebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=82BEE417437A8F44980F484BC51DA72F52147DE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6d:eb:57:51:68:c4:b9:1d:7b:94:e0:c5:61:
57:e2:ba:4c:37:f3:63:4e:57:f5:c9:04:75:42:b1:
15:3a:58:60:78:70:b0:83:2a:20:b2:be:72:14:99:
8a:09:67:0c:85:59:ae:f0:6d:2b:af:2e:53:b0:24:
bf:7f:43:c4:ba:48:44:8f:fd:7c:bf:05:9d:32:a6:
ad:45:65:6f:bf:e4:db:7c:33:b7:d5:c4:a9:15:ec:
38:46:17:a4:eb:ec:1f:0d:cc:75:62:7f:02:5a:f2:
27:4a:2e:64:87:4e:8a:86:08:bd:3b:91:6f:4f:e4:
02:8f:ec:c4:ed:b0:5a:fa:56:7b:af:1b:30:7c:a5:
7a:e5:e7:a7:69:ea:85:6d:56:c4:82:c5:1e:f8:8e:
72:31:2e:5f:24:bd:da:ca:aa:09:e5:77:28:d9:d6:
4a:6d:40:6a:91:0e:e7:0a:0f:63:a2:4a:19:f9:fe:
bd:69:0b:e6:c1:cd:a4:8b:b0:dd:94:36:aa:34:b8:
aa:34:fa:7b:b2:dc:35:20:c2:ec:8b:a9:e3:fe:05:
ac:9a:18:b7:42:2e:e3:2e:44:f3:d6:c9:fd:db:16:
eb:8e:23:c0:55:53:df:88:c0:22:87:bb:29:aa:1d:
35:1e:d5:a5:ed:fa:f0:46:ee:e2:2e:b6:dc:58:54:
c1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BE:E4:17:43:7A:8F:44:98:0F:48:4B:C5:1D:A7:2F:52:14:7D:E3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gr7kF0N6j0SYD0hLxR2nL1IUfeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.96.0/19
Signature Algorithm: sha256WithRSAEncryption
11:b9:4a:14:08:bf:89:9f:7f:99:fd:4f:26:4e:8d:74:ea:dd:
d5:9d:b4:8c:70:2c:2d:20:8e:97:2c:81:16:cb:04:65:cc:a5:
8a:98:4e:f2:03:a7:2f:02:45:a8:02:61:50:61:3b:d0:de:ba:
8e:a8:a8:f1:ce:67:ed:97:2c:1e:83:1f:bf:57:27:23:f4:7d:
33:96:10:59:13:21:be:33:c0:b2:f9:2b:ba:ce:2e:8e:26:d9:
5d:02:90:8a:2b:d2:e1:48:20:ee:46:79:13:ec:44:76:38:aa:
e2:5c:ff:e8:72:f0:85:71:2f:f4:fb:63:8e:b1:c4:b5:81:15:
07:23:c1:b3:27:b5:d9:c3:56:30:69:46:69:f6:02:77:0c:63:
7f:81:4e:db:fc:b8:f2:7b:e9:f1:1e:4a:76:cb:95:03:ec:3e:
07:19:da:85:4b:80:ac:37:29:b1:e2:95:e0:2e:0c:55:72:1d:
b8:1e:76:66:fe:9c:18:e2:90:4c:4e:b5:62:d7:d6:b2:0c:b3:
d1:cd:4a:27:ae:f0:8c:4e:e4:ff:5b:1a:40:1b:f3:bc:42:11:
38:1d:2f:71:3c:da:13:0b:5b:aa:7c:61:ef:64:96:5b:f4:2c:
a2:58:f3:62:27:37:33:55:9e:56:79:9e:e4:84:49:e7:dc:c2:
d1:ef:8f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org