Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/nOfq5UlnicWt2Hl19aAexRsVPQ4.roa
File: nOfq5UlnicWt2Hl19aAexRsVPQ4.roa (raw, json)
Hash identifier: 7ck5tjKS4eeaaBmbAM8mQ7DoFjLq+UfHOMREQq6441s=
Subject key identifier: 9C:E7:EA:E5:49:67:89:C5:AD:D8:79:75:F5:A0:1E:C5:1B:15:3D:0E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CED
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nOfq5UlnicWt2Hl19aAexRsVPQ4.roa
Signing time: Sun 07 Feb 2021 11:45:58 +0000
ROA not before: Sun 07 Feb 2021 11:45:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 122.147.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3309 (0xced)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9CE7EAE5496789C5ADD87975F5A01EC51B153D0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:29:60:9c:6e:7e:6e:49:a7:d3:90:b9:51:d2:
5e:d3:26:32:80:91:d2:23:9a:c6:b2:d9:dd:1f:df:
11:a3:84:6a:a3:aa:54:36:4e:8d:1b:04:a9:c8:3d:
ac:99:6b:ae:c8:74:6c:6f:e2:d9:ce:38:c2:51:e6:
0c:01:62:cd:0f:e5:75:fc:69:ef:c6:fe:a2:4d:7d:
99:fe:b6:ec:02:bc:bd:2a:bb:12:48:2c:2c:90:2e:
b7:55:b3:e3:ad:ee:79:5d:7a:bd:41:c2:0e:d2:a3:
c6:4c:6a:e9:43:14:58:67:eb:c6:bb:10:31:38:aa:
40:43:60:eb:f5:fc:f2:0c:26:2c:55:13:33:13:dd:
af:b6:bc:67:ce:c1:fd:e8:92:ca:55:3c:96:46:fb:
80:b3:d8:3e:5d:bd:be:f9:66:26:40:f7:1b:c5:ed:
62:16:7e:2b:38:93:f7:ea:c8:6e:e4:18:b5:be:6d:
09:c8:a9:f1:ac:80:ce:61:fc:ea:ac:3d:4c:98:d2:
7e:12:8b:5f:6e:8b:8e:8e:00:46:cf:db:20:7f:11:
e0:d2:30:22:ad:b2:88:fe:a1:ca:62:93:9d:e4:35:
55:83:3b:d2:20:38:14:7e:70:ea:3e:e1:e3:93:74:
0d:52:6e:2b:05:ce:f9:08:39:f2:be:10:55:0e:04:
79:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E7:EA:E5:49:67:89:C5:AD:D8:79:75:F5:A0:1E:C5:1B:15:3D:0E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nOfq5UlnicWt2Hl19aAexRsVPQ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
52:54:54:32:58:39:b0:bc:ba:77:ac:44:f4:8b:8e:cd:2d:ea:
ea:c6:12:26:54:77:d4:0b:2e:12:5a:80:00:09:b7:5e:11:53:
e8:41:c1:45:da:e5:cb:54:54:2e:2e:d2:f8:03:53:4b:d4:d2:
0f:f4:01:73:6d:e1:96:4c:31:90:4a:05:10:fa:94:a3:7c:81:
d9:4a:74:32:f7:55:a6:d3:4a:b2:7c:86:df:4a:55:08:40:85:
5b:05:f4:1f:68:54:ab:0f:04:ba:64:bf:88:49:0f:5d:f8:6f:
ea:fc:2c:e3:fc:b2:fe:99:7a:dd:93:22:97:1c:63:a8:2d:7c:
9b:94:84:ac:23:08:07:36:7f:13:07:0f:90:c6:59:3d:f1:a1:
b8:23:e3:31:d5:8e:5a:26:29:08:b6:83:bc:f4:c7:1b:a1:df:
5f:8e:3e:e9:f3:14:c2:94:59:a8:10:38:67:05:35:c6:62:c4:
16:d9:b2:5d:4a:ba:99:7a:87:35:c5:c1:37:db:1a:92:d0:89:
9c:77:2c:06:77:d5:48:6d:1c:8c:74:35:3e:72:34:0b:cd:d8:
9d:f0:88:39:99:90:0d:b5:76:52:a8:54:eb:5a:25:9d:7b:4a:
10:3c:1d:ae:44:69:b6:17:a7:0f:77:2f:31:bf:45:8b:b5:83:
ba:c4:97:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org