Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sxUqRxd7E_5ymnUQKblOn6jK-sk.roa
File: sxUqRxd7E_5ymnUQKblOn6jK-sk.roa (raw, json)
Hash identifier: LUfPY9BlFh7ui8t7PxVdFHV31OnJNSW/RkCNrKuBy/E=
Subject key identifier: B3:15:2A:47:17:7B:13:FE:72:9A:75:10:29:B9:4E:9F:A8:CA:FA:C9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E9D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sxUqRxd7E_5ymnUQKblOn6jK-sk.roa
Signing time: Wed 29 Sep 2021 02:43:47 +0000
ROA not before: Wed 29 Sep 2021 02:43:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 122.146.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3741 (0xe9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B3152A47177B13FE729A751029B94E9FA8CAFAC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:77:ab:4a:92:4f:7d:2b:2c:7a:da:d2:45:93:
23:c4:e3:c7:68:2d:80:47:d5:ce:4b:7f:42:38:bd:
92:10:81:3b:69:95:63:eb:9a:0b:dc:6a:ef:65:7f:
c3:5b:39:6f:c2:3b:49:8b:fd:46:a2:05:01:22:50:
9c:b7:45:f5:6a:55:08:cd:45:64:00:50:8c:09:a6:
42:7d:a0:c4:d8:01:0f:27:a5:9c:c0:ee:96:cf:0e:
64:fb:5b:34:06:02:05:4e:f2:fe:a2:a8:08:68:ab:
7f:c3:f4:3d:94:b6:80:42:84:06:c5:20:a8:a8:cf:
87:4a:5d:66:81:92:a0:68:9e:26:c3:64:27:55:ef:
43:0b:d7:c4:1d:ff:b7:5e:88:24:bc:b6:79:a5:0c:
44:54:32:43:7d:a6:4a:eb:a4:29:92:37:d8:c9:6a:
ea:2d:e2:c8:2f:16:bf:05:4c:ec:62:fe:aa:8e:c1:
90:ba:10:16:85:dc:46:66:bb:25:52:bc:55:ca:43:
5b:15:9f:d9:59:56:2c:fa:42:31:91:98:f0:b5:5a:
d0:40:f8:f8:08:8b:90:50:24:49:f1:96:45:3a:25:
99:a6:2b:51:10:6c:cc:f9:b1:ba:1c:5d:c0:63:05:
57:e4:7e:85:19:cd:b7:5c:7b:ff:92:ad:c4:d5:f8:
92:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:15:2A:47:17:7B:13:FE:72:9A:75:10:29:B9:4E:9F:A8:CA:FA:C9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sxUqRxd7E_5ymnUQKblOn6jK-sk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.128.0/17
Signature Algorithm: sha256WithRSAEncryption
60:04:fb:51:96:65:5d:b9:a8:90:77:c0:0a:99:97:08:61:85:
49:d7:0b:b9:77:fd:1c:0f:b8:15:7b:71:f3:ab:7a:70:0d:e6:
27:f7:73:ca:d5:89:57:8a:a5:be:77:64:c4:e8:da:f0:9e:c5:
84:1f:a6:f8:ff:81:82:31:01:33:72:49:62:ec:c1:04:d3:03:
26:5f:cc:4f:ca:97:3f:b8:48:4e:8a:d2:94:5d:26:f2:ff:c9:
40:79:65:cd:a5:52:55:20:c1:79:bf:5c:b8:89:3a:41:e7:83:
19:44:d6:e0:55:94:d1:52:10:13:9c:5e:2f:9b:14:d7:19:06:
cf:8c:e0:32:8b:23:a9:47:d8:ec:4d:b0:05:0d:6a:d5:5d:0c:
2f:35:cc:37:ad:54:ab:8b:9b:b0:fd:c1:7f:a9:c4:e2:ca:7d:
c7:8a:21:8c:42:ee:3c:50:33:1b:c7:87:52:66:e8:78:29:f5:
b8:c5:2c:0b:ed:c2:bf:d9:f9:ed:f2:64:d4:0a:e8:ab:a0:1d:
dc:a4:94:5d:85:5d:94:b3:d9:fd:14:cf:47:2f:87:b4:34:98:
b3:47:26:b6:70:49:71:d4:78:e0:44:e8:99:fd:17:2f:85:6c:
b6:4a:33:62:a4:60:94:4c:4b:a8:9a:83:ab:3b:22:ec:76:71:
2f:f5:91:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org