Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qSUjmDfzjD0UxdBzBXoxE75xTEk.roa
File: qSUjmDfzjD0UxdBzBXoxE75xTEk.roa (raw, json)
Hash identifier: dQMhONLRktWGmIrwKq0z0qMS+OQKh3rehx7B7FOy2jM=
Subject key identifier: A9:25:23:98:37:F3:8C:3D:14:C5:D0:73:05:7A:31:13:BE:71:4C:49
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EA3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qSUjmDfzjD0UxdBzBXoxE75xTEk.roa
Signing time: Wed 29 Sep 2021 02:43:48 +0000
ROA not before: Wed 29 Sep 2021 02:43:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.147.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3747 (0xea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A925239837F38C3D14C5D073057A3113BE714C49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a1:03:20:3e:fc:5b:e5:43:99:63:d1:05:11:
70:97:7f:ba:ff:63:5a:b9:9f:3a:4d:3a:a1:f0:66:
e8:33:6d:ff:76:56:a1:33:41:3d:56:12:97:80:e4:
03:a1:68:66:d3:75:18:96:1e:e9:e5:3b:2f:62:37:
8e:15:c1:2d:3b:51:9e:bb:c8:5c:65:bc:a6:4c:fd:
a5:4e:eb:55:34:04:1f:35:16:48:e4:36:19:53:8d:
17:6d:66:6c:48:cf:54:05:ee:92:e4:bc:16:a9:34:
8f:57:c7:b7:57:0d:1f:7c:7c:d1:8f:50:58:1d:a1:
88:fa:1d:5e:99:67:9c:76:fe:5a:18:a5:a1:91:1d:
59:d0:be:d7:90:02:23:63:da:ca:a0:a1:1d:29:20:
a8:ac:d6:67:b1:6d:0c:f0:10:3a:3e:19:39:aa:93:
4c:58:62:30:ac:c5:34:f1:2a:f6:df:5d:b1:ff:8b:
a0:60:2f:f0:9b:4e:e5:9c:e4:13:37:23:71:6d:7c:
56:d1:f5:8b:d7:d7:92:17:ac:76:38:0c:33:58:4d:
10:31:4d:26:47:77:f5:6c:ab:4a:49:87:3c:db:e6:
a7:6f:ac:d2:76:fb:59:85:c1:06:5e:c3:5f:31:8f:
29:3a:96:1f:8b:23:2f:1e:d2:f5:4f:11:cb:21:3e:
fe:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:25:23:98:37:F3:8C:3D:14:C5:D0:73:05:7A:31:13:BE:71:4C:49
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qSUjmDfzjD0UxdBzBXoxE75xTEk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.128.0/19
Signature Algorithm: sha256WithRSAEncryption
86:ea:67:84:bf:70:13:70:eb:91:d4:dc:c9:11:32:ab:ea:fc:
ef:99:ff:7b:96:01:13:72:39:af:f6:24:ff:b5:83:d8:f4:71:
97:80:4b:ce:2f:39:24:aa:78:75:6d:e7:2a:60:39:90:a1:8b:
73:92:33:59:09:f8:ad:ff:4e:3e:27:6a:4a:78:eb:66:a3:91:
ac:69:71:4d:32:61:0c:40:76:e6:92:3b:14:b5:43:38:a0:1e:
0b:06:ca:37:ae:57:a2:54:d5:09:6b:9b:34:86:41:05:73:d1:
bb:61:7b:b6:e9:1a:1e:ac:a9:cb:c4:21:a5:5b:11:d4:5d:c7:
0c:13:90:fe:98:c5:27:43:f2:0b:1f:83:b9:8a:f2:e3:35:4a:
11:07:af:50:19:f4:8a:9c:5d:0d:d9:6b:ad:45:e3:b5:93:f7:
11:11:44:91:ce:7a:bf:64:4b:d2:1a:94:98:a8:81:48:7f:27:
6b:5c:a0:62:c3:50:2f:f6:3b:72:30:ed:df:59:db:16:58:a2:
93:74:ee:24:a6:16:5a:ff:0a:dd:fa:98:0e:d8:69:99:fc:be:
5a:07:73:23:67:c9:ab:db:39:20:10:81:64:b6:58:e7:ee:dc:
24:87:ea:e0:65:94:c1:47:30:10:dd:60:06:d0:26:f3:98:94:
ba:a2:fd:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org