Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sAwYBy7xtTRRMKuSbeh7vWEy0Sc.roa
File: sAwYBy7xtTRRMKuSbeh7vWEy0Sc.roa (raw, json)
Hash identifier: TgTRuwN0taXnqvAjbmxPVDzXVP/dJc2SpLo9QLTUexM=
Subject key identifier: B0:0C:18:07:2E:F1:B5:34:51:30:AB:92:6D:E8:7B:BD:61:32:D1:27
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CE9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sAwYBy7xtTRRMKuSbeh7vWEy0Sc.roa
Signing time: Sun 07 Feb 2021 11:45:53 +0000
ROA not before: Sun 07 Feb 2021 11:45:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3305 (0xce9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B00C18072EF1B5345130AB926DE87BBD6132D127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:c9:40:7b:f3:a5:82:5d:bd:a4:48:b6:38:
1e:6b:56:b4:c9:ae:1a:61:59:37:23:45:86:04:1f:
0d:55:1a:49:84:5f:08:42:61:46:85:66:8d:6d:71:
73:61:bc:9e:2e:cb:6c:ac:e9:51:ee:e1:4a:74:d8:
5e:0e:39:71:d6:b9:b3:31:74:63:69:1d:45:d7:5e:
89:4e:c3:c9:02:c2:0c:79:46:8c:dd:4a:90:8a:17:
1e:c4:96:14:d1:de:56:13:96:be:3d:ea:6e:04:7e:
cf:e6:72:17:d1:3b:2b:a7:a5:d8:bd:ea:11:1c:9b:
f5:79:7d:88:f4:47:08:a9:d9:3f:62:8e:7f:4b:12:
29:c6:c8:17:e7:71:00:72:3b:0e:78:40:57:61:a2:
14:b0:81:84:07:06:5a:30:af:21:08:ea:43:fe:59:
0f:a3:fe:7d:47:a2:7f:55:91:f2:e6:96:93:d6:9a:
ae:70:c0:11:c3:36:c1:3e:b2:98:cb:e1:3d:bd:7b:
b0:3c:ff:40:da:56:d0:b9:ca:18:57:8f:90:9c:01:
95:68:88:ad:60:71:19:5c:c4:2d:42:92:6d:a6:32:
ff:21:32:a2:ba:92:7d:f0:a9:1f:37:21:67:40:65:
81:4f:d0:f0:4a:32:07:be:67:9d:d9:db:ad:c1:63:
3b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:0C:18:07:2E:F1:B5:34:51:30:AB:92:6D:E8:7B:BD:61:32:D1:27
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sAwYBy7xtTRRMKuSbeh7vWEy0Sc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.176.0/20
Signature Algorithm: sha256WithRSAEncryption
5f:b4:f6:ee:f0:67:2d:fb:0e:d1:ad:f8:9e:cc:94:d9:a7:4b:
df:1e:fe:04:56:72:04:eb:ab:cc:37:95:01:79:68:c8:7c:dc:
cd:7c:fb:2a:d0:75:32:57:a9:f9:e3:0a:e7:e3:be:87:3a:7e:
b8:5e:c1:10:1e:30:1e:ae:e8:75:c4:4f:89:38:a1:29:99:5e:
5c:14:57:b0:3c:1f:db:0c:d0:a4:44:a3:9f:4b:fa:f6:d5:a8:
06:67:0e:cd:ae:c4:0c:12:f4:04:b9:73:6d:50:b0:40:5d:33:
a5:75:9e:f3:e7:37:80:e4:92:57:23:9b:70:14:1a:b0:82:f5:
1d:4b:3c:3c:30:66:ac:3d:08:d9:cc:5e:27:fd:63:86:bf:0b:
62:cc:8b:9a:15:a3:51:60:25:6a:89:ed:74:c8:0b:18:64:b0:
ae:a1:e1:81:5a:f7:2d:fe:27:36:97:19:e3:7a:ea:b6:aa:06:
04:e1:70:2f:a3:3b:15:72:90:1b:10:07:85:42:5f:b9:12:32:
b6:fc:2d:9a:47:32:a5:cf:a0:a1:23:55:7f:dc:6c:f3:3a:80:
04:07:2f:fd:eb:22:df:2e:5d:6e:de:d8:b8:a0:f7:a1:c8:38:
45:5b:f1:56:70:f0:41:2a:2f:63:cf:27:03:31:3d:90:dc:9a:
50:2c:6a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org