Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/FdbajwZyTPdeIIn5akqdfU8gWkg.roa
File: FdbajwZyTPdeIIn5akqdfU8gWkg.roa (raw, json)
Hash identifier: LkM4m+bd9bVsdmXedSkLOB+4zskL138iZHanNt04QNE=
Subject key identifier: 15:D6:DA:8F:06:72:4C:F7:5E:20:89:F9:6A:4A:9D:7D:4F:20:5A:48
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 088C
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/FdbajwZyTPdeIIn5akqdfU8gWkg.roa
Signing time: Wed 02 Dec 2020 03:38:43 +0000
ROA not before: Wed 02 Dec 2020 03:38:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18018
IP address blocks: 122.255.94.0/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2188 (0x88c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Dec 2 03:38:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=15D6DA8F06724CF75E2089F96A4A9D7D4F205A48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1d:2d:45:3e:66:cd:a2:26:ed:f4:56:e3:1f:
95:a2:ef:b1:f4:14:b2:f7:ef:cb:dc:75:be:48:6c:
9d:6b:1b:17:6c:f6:26:09:45:21:7d:8a:82:2f:d7:
a3:55:db:2e:61:95:da:fd:03:de:db:0f:85:e7:95:
29:7a:16:75:36:50:46:23:92:23:71:3d:3c:7c:29:
74:ff:93:66:eb:cb:b2:6c:9e:0d:c3:3c:c8:59:c8:
c5:e2:4c:4b:0f:66:2c:a7:25:89:b6:02:71:e7:86:
9e:38:3c:33:89:04:e7:00:b8:8a:3a:b1:1e:0a:d8:
c6:ae:4f:2a:35:c4:1f:f0:db:01:f6:14:ef:5e:7d:
45:66:b0:d7:9d:57:8a:d1:52:89:e8:7a:e0:67:43:
87:e2:1a:3b:3d:f6:aa:d3:ae:fb:75:9d:eb:64:f8:
da:21:70:86:3b:9b:11:2b:79:b6:5c:a8:39:ad:a3:
59:cf:6c:73:ba:73:fc:eb:73:45:b3:2e:1f:a3:59:
7f:f3:a4:11:99:83:0e:ce:d8:3e:66:a7:de:d6:d5:
16:99:53:9b:62:4e:4a:02:a4:d9:c1:88:64:9c:87:
0c:cf:dc:95:55:21:7f:9e:2c:97:43:d9:cc:cf:57:
5a:d2:bf:15:be:20:53:cf:e6:cf:01:ac:d0:37:59:
3b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D6:DA:8F:06:72:4C:F7:5E:20:89:F9:6A:4A:9D:7D:4F:20:5A:48
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/FdbajwZyTPdeIIn5akqdfU8gWkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.0/28
Signature Algorithm: sha256WithRSAEncryption
1c:0b:9a:cb:c5:4b:ae:fa:e7:5c:03:51:a9:97:f0:e3:47:15:
af:a9:dc:13:89:c3:97:9f:0d:72:64:eb:c7:6a:26:a9:d8:24:
3b:15:d0:90:96:6b:37:68:bd:81:53:49:49:0a:84:aa:fd:fd:
d9:42:97:06:ad:5d:c8:0a:bf:1c:40:fe:1a:bb:1a:c5:90:f4:
7a:d1:f4:9f:e7:90:a0:83:3e:0d:7b:ca:fe:47:f0:e5:56:87:
5c:ad:1d:48:47:85:5b:11:0e:6f:1c:91:a0:de:fd:66:f9:d2:
75:80:39:bf:5f:62:86:ff:3b:72:53:71:7d:3d:60:1d:cb:8e:
2c:51:f2:cb:c4:e5:d8:10:dd:82:da:9a:20:6c:92:f1:dc:f2:
bb:6d:d1:b1:24:0f:40:39:8d:62:cd:9d:10:8c:07:dd:cc:78:
1f:d6:48:3a:56:7f:83:d4:e2:48:ae:c3:e0:08:e7:ca:64:bb:
8a:f2:de:9f:63:b5:de:d7:a7:83:7e:e3:92:31:61:b8:bb:7e:
c2:25:4d:4d:d7:e8:b5:ff:7b:ec:0c:a5:6a:7d:94:d3:1a:c4:
cb:f1:b3:20:25:29:cd:dc:55:e8:02:cb:ef:91:00:fc:97:76:
af:c7:04:6d:3c:4f:55:72:df:63:a6:ab:71:2a:20:12:6d:57:
12:c2:f5:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org