Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/3m9Ru0kE2uSJ_MIki_HXpLAiKI0.roa
File: 3m9Ru0kE2uSJ_MIki_HXpLAiKI0.roa (raw, json)
Hash identifier: c5TfVnXMxgeOCoZxsrObweJEhwd1Dxp40sd56K+Mwow=
Subject key identifier: DE:6F:51:BB:49:04:DA:E4:89:FC:C2:24:8B:F1:D7:A4:B0:22:28:8D
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0888
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/3m9Ru0kE2uSJ_MIki_HXpLAiKI0.roa
Signing time: Wed 02 Dec 2020 03:36:27 +0000
ROA not before: Wed 02 Dec 2020 03:36:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 2914
IP address blocks: 122.255.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2184 (0x888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Dec 2 03:36:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DE6F51BB4904DAE489FCC2248BF1D7A4B022288D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5a:12:31:09:a2:34:ed:b4:f3:0e:7f:3e:6d:
40:2c:3d:72:59:b1:b5:4f:2e:9a:da:63:bf:10:5f:
58:e3:8f:f9:c0:01:d4:0f:dc:48:30:81:fd:2e:c7:
c5:98:e2:9f:09:20:a6:c7:71:a7:15:39:c1:e8:5f:
98:87:47:56:be:57:88:7a:79:7e:48:bb:22:e6:9a:
b6:cd:f9:fb:0a:cc:d6:1b:d3:18:29:e7:d9:ac:aa:
5a:d0:c1:1d:3e:58:9f:21:4a:b5:c8:5b:a6:45:83:
35:ac:f2:d9:8e:39:33:57:ad:db:42:b3:d5:92:ae:
eb:50:41:52:f3:36:1b:f9:35:db:e4:78:dd:15:0a:
87:46:91:52:f9:9e:0f:c6:66:43:c8:e7:c5:ff:3d:
d8:91:da:db:81:7a:62:ad:09:22:fb:07:00:7f:ab:
ce:8b:ae:d7:6b:3c:ed:b8:08:b5:f0:f1:3a:f9:55:
6d:4a:9b:e6:dd:1c:4c:87:2b:08:08:37:83:df:a5:
e5:66:d2:0c:66:89:2b:10:4b:b9:15:5e:11:32:cc:
9d:03:74:85:dd:ef:a1:0a:86:1f:b1:5d:12:40:b5:
15:4a:50:0e:33:78:62:45:49:de:d0:21:85:30:b3:
e8:0f:2d:08:67:48:a6:64:ad:12:fb:5a:62:79:25:
de:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6F:51:BB:49:04:DA:E4:89:FC:C2:24:8B:F1:D7:A4:B0:22:28:8D
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/3m9Ru0kE2uSJ_MIki_HXpLAiKI0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.80.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:6a:79:72:00:6d:77:a8:b9:12:63:e1:87:e5:8a:17:ff:d5:
41:fa:76:80:6c:ba:d1:e8:88:36:e5:3a:63:2d:f5:6b:8f:d3:
c8:cf:31:27:8a:40:fc:67:c6:20:f5:3b:78:b5:18:0e:29:b4:
2e:d1:ff:7e:cf:7d:59:db:87:4a:ee:5b:18:eb:80:0a:d2:a3:
30:e5:45:aa:80:78:6d:fe:18:6e:b4:dd:90:60:1c:41:ec:33:
f6:bc:1d:19:42:b1:82:77:9b:73:4b:86:85:74:62:17:2f:1b:
d6:a1:0f:76:65:e5:ff:86:6d:d8:c8:26:e9:60:02:98:67:43:
70:c9:86:9c:e4:3a:ce:7f:9f:68:c9:67:d9:8a:f4:8a:d2:67:
26:84:76:05:eb:24:86:f6:34:15:70:a8:39:12:b8:1e:c7:32:
c9:be:ce:85:71:02:80:60:09:01:61:cb:b8:19:16:34:fe:47:
91:ac:23:46:20:57:1c:3c:e1:13:b6:cc:5d:0f:3b:d4:38:fc:
15:39:3e:4d:6a:f1:8a:76:84:85:48:ac:b9:22:de:ff:c9:23:
7f:f0:73:fd:88:52:e9:07:0f:d0:1a:d1:12:8f:e6:de:90:0a:
58:31:95:c9:69:7e:00:81:57:47:96:e6:5c:bd:5d:04:0d:2b:
b7:22:11:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org