Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/njBCaHZuUmGeDD1hlUXdIjJjXmk.roa
File: njBCaHZuUmGeDD1hlUXdIjJjXmk.roa (raw, json)
Hash identifier: wi9STZbVgN7J3l4cXw3PHhJ5rvT1x1QTSHsLZx94Evc=
Subject key identifier: 9E:30:42:68:76:6E:52:61:9E:0C:3D:61:95:45:DD:22:32:63:5E:69
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EA0
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/njBCaHZuUmGeDD1hlUXdIjJjXmk.roa
Signing time: Wed 29 Sep 2021 02:43:48 +0000
ROA not before: Wed 29 Sep 2021 02:43:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.146.110.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3744 (0xea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9E304268766E52619E0C3D619545DD2232635E69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:51:63:12:ee:eb:81:72:f1:fe:66:65:dd:7b:
77:cb:cf:96:19:cd:a5:0a:56:7c:27:6d:be:f7:47:
f2:d9:07:a4:b6:00:91:a2:44:de:37:71:ae:af:ab:
73:f6:a3:21:4e:7a:9d:a1:81:41:ec:4c:24:fe:16:
45:59:e9:e0:c3:b4:c7:b7:cd:2d:0d:34:53:92:4f:
2c:e5:41:36:3e:29:bb:5b:71:ca:57:a7:69:f4:cd:
94:3c:91:7e:8c:bb:00:b0:92:0f:d0:ca:ac:44:0d:
cc:51:14:45:ad:c6:30:86:3c:37:f5:f2:87:ce:ef:
34:ee:a2:4e:e2:4a:70:7d:1b:a5:6a:b0:1b:b1:2f:
0a:9d:dc:e2:d6:5a:4c:de:59:51:c4:01:ad:de:8e:
0e:e3:ea:29:a4:9f:6f:f3:a3:a4:f7:7d:43:28:f7:
ca:7f:8d:da:29:53:2d:27:10:d7:1d:e6:35:c4:30:
11:a2:a4:7b:a1:f6:34:31:50:a0:74:2d:0e:85:29:
19:e8:d1:50:42:fe:fd:70:65:98:0b:4e:69:b4:c2:
5a:32:86:de:70:ec:16:2b:5f:b9:2c:4a:04:f1:1d:
cb:da:b9:30:17:9b:87:a8:fd:78:11:13:60:2f:70:
ee:cd:1c:ea:31:07:4e:82:38:af:99:65:12:b9:a1:
f8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:30:42:68:76:6E:52:61:9E:0C:3D:61:95:45:DD:22:32:63:5E:69
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/njBCaHZuUmGeDD1hlUXdIjJjXmk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.110.0/23
Signature Algorithm: sha256WithRSAEncryption
84:f7:9c:18:7e:c8:75:b4:99:3b:0a:07:cb:c4:a5:c4:01:3c:
78:03:ef:8b:b9:30:64:e5:7a:28:9b:2f:1d:82:bf:1a:9a:98:
29:71:76:4b:8f:62:7f:e6:f5:4b:97:05:14:2b:2c:37:0d:21:
d5:fc:45:ca:ac:09:de:dc:63:83:6a:08:90:c0:6e:06:b5:61:
c1:9a:cb:91:e8:a5:22:79:b6:37:45:76:b6:16:ac:f5:09:8d:
cf:26:fb:e8:1e:91:00:4c:cb:30:98:80:34:4d:4f:ef:9e:2e:
27:58:1a:4c:17:39:e4:0b:84:c2:5a:fc:2b:19:12:5d:15:aa:
71:10:b6:4d:ae:a5:8e:a8:1d:b7:8b:0a:7a:40:01:2e:9b:88:
7f:e4:90:ff:ce:32:46:58:38:d4:ac:fa:86:94:ef:e3:4d:58:
ba:0a:8d:54:04:be:c6:1a:a4:bd:c1:94:8a:f3:94:a7:58:db:
8d:23:fe:cf:1f:44:3a:79:96:4e:18:2b:6d:81:fa:6a:f5:f5:
3c:c3:35:66:e0:a5:f2:cd:d5:29:b5:87:c0:d3:1f:0e:51:da:
3f:c7:b1:2e:ae:02:62:4c:aa:d7:ee:f7:99:03:ac:1f:5d:39:
d2:bc:08:06:87:83:40:95:a0:2a:e6:f9:e4:8e:bd:be:b8:3c:
a3:d1:46:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org