Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/07_hOPrmHMx7JFUVsvpIFm6xAE4.roa
File: 07_hOPrmHMx7JFUVsvpIFm6xAE4.roa (raw, json)
Hash identifier: In7BR3AamHVkXmn1TXQWuMICWHyb9dQpsq7by+alHzA=
Subject key identifier: D3:BF:E1:38:FA:E6:1C:CC:7B:24:55:15:B2:FA:48:16:6E:B1:00:4E
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0979
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/07_hOPrmHMx7JFUVsvpIFm6xAE4.roa
Signing time: Wed 29 Sep 2021 02:53:07 +0000
ROA not before: Wed 29 Sep 2021 02:53:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3949
IP address blocks: 122.255.94.16/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2425 (0x979)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 29 02:53:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D3BFE138FAE61CCC7B245515B2FA48166EB1004E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0c:43:2c:46:6b:29:e9:16:0a:fe:c8:bc:51:
79:d6:69:d3:a6:0c:d4:07:5b:96:54:09:b9:d4:ba:
96:ce:ce:21:de:00:0c:02:9e:8a:74:97:f9:1a:fe:
fd:a9:58:00:12:45:c3:f3:59:00:8a:21:35:2a:1e:
ed:54:8b:58:ab:2f:de:4f:f2:06:23:f6:70:78:52:
ad:50:1a:73:91:03:a4:e7:c4:a1:50:46:13:d2:59:
06:23:e9:2d:76:15:f2:4c:64:62:c7:6c:d2:61:fd:
6d:82:db:0e:f3:35:a7:b3:08:75:e4:90:1a:05:02:
e1:33:70:93:f5:fb:c4:23:c9:95:6b:9a:35:39:71:
40:2b:4c:60:1f:39:d1:dd:78:44:54:ed:fc:e2:60:
98:2d:08:f8:70:86:d2:52:fc:26:0b:23:85:81:08:
4d:5b:1b:83:92:e3:d1:e6:f3:62:d5:12:19:07:d4:
7b:ff:f8:6e:4f:de:7e:14:d6:4b:b9:c0:77:4e:9a:
47:b8:e8:ec:ac:0c:a1:af:8e:52:fb:96:72:3c:1e:
da:3a:65:1f:f1:d0:39:d3:ab:f5:71:e0:2d:4b:e0:
43:99:5f:0e:14:08:32:a9:53:13:d1:5e:3b:78:f2:
8c:28:35:12:a4:de:51:f4:85:e4:53:ab:e3:95:7e:
ee:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BF:E1:38:FA:E6:1C:CC:7B:24:55:15:B2:FA:48:16:6E:B1:00:4E
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/07_hOPrmHMx7JFUVsvpIFm6xAE4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.16/28
Signature Algorithm: sha256WithRSAEncryption
99:d3:9c:a8:4e:9a:4f:80:b1:6e:9e:21:13:6a:07:29:5a:fd:
f5:e5:6a:35:ee:98:cb:3f:bc:26:e8:90:18:12:c5:26:08:30:
32:ff:f7:37:3c:3d:94:4b:cf:a1:a3:75:88:cb:47:f2:9e:9a:
77:33:23:75:53:2e:55:5f:fd:64:8e:94:c6:13:75:2b:cf:d3:
e9:88:52:c6:0f:ab:cd:0c:fa:a5:ca:d8:b9:0b:1e:aa:d3:46:
32:7a:6c:fc:c1:ff:48:2a:db:b8:cf:01:98:67:63:de:c0:5a:
83:d5:ca:07:ac:10:c2:0a:85:9d:30:0f:22:f5:52:0f:a9:91:
55:34:70:16:3c:c1:cc:0f:4b:6f:b4:aa:7b:1a:ae:e8:92:72:
e0:6e:f0:62:0b:75:92:99:9d:b6:bb:10:1b:7a:9d:4c:13:5a:
13:d1:a4:8e:fd:95:19:7c:ed:c0:7b:f7:21:50:f7:a6:86:bf:
67:eb:d6:aa:a7:6a:20:dd:41:d7:ea:13:85:2a:dd:d0:20:30:
3f:8f:b9:8e:4a:33:30:93:df:29:18:ff:35:d0:86:f0:87:8a:
ff:63:eb:77:ad:2f:33:be:70:f8:6a:b8:19:8a:d3:0e:b5:36:
09:6d:77:76:47:33:65:30:d6:17:8e:5a:a1:df:f8:18:da:b7:
ac:63:0f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org