Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/P30b7GGXHQijQAZIpA1Bz5Lk9Ps.roa
File: P30b7GGXHQijQAZIpA1Bz5Lk9Ps.roa (raw, json)
Hash identifier: W4BvnpAnpS64vZcWVgrDzWZTAEKoyfm6DKx4p1JZQJQ=
Subject key identifier: 3F:7D:1B:EC:61:97:1D:08:A3:40:06:48:A4:0D:41:CF:92:E4:F4:FB
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 08D3
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/P30b7GGXHQijQAZIpA1Bz5Lk9Ps.roa
Signing time: Sun 07 Feb 2021 13:07:58 +0000
ROA not before: Sun 07 Feb 2021 13:07:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18018
IP address blocks: 122.255.94.0/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2259 (0x8d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 7 13:07:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3F7D1BEC61971D08A3400648A40D41CF92E4F4FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:15:79:7f:29:ab:19:4c:77:97:41:27:1a:74:
7f:c1:e8:ca:d0:b7:20:e3:ad:3a:83:d4:08:d8:99:
07:e0:68:83:f8:38:c7:5a:37:f3:c3:58:b5:81:1d:
36:77:65:6d:ae:18:83:b6:64:2a:45:99:90:e5:60:
03:04:85:0c:79:da:d5:03:8c:11:89:de:92:f1:b4:
02:d9:81:a0:9d:33:49:03:7e:8d:45:f3:70:e6:77:
74:ca:fb:e4:51:72:2f:05:a9:0f:f8:ba:ca:b7:36:
cb:1d:76:25:be:3e:51:90:60:44:25:38:32:c6:54:
cf:fa:8d:e0:1a:79:5e:06:4a:a4:08:95:e5:05:c1:
3f:6c:25:99:dc:a4:05:63:76:bb:66:53:4d:f5:50:
b9:8e:bf:b1:7c:22:f8:28:c7:82:fc:0a:f7:ec:fd:
19:36:03:e1:56:52:bc:23:e3:51:9d:ad:b2:41:8c:
12:10:21:7c:da:58:77:b4:04:83:8a:a6:01:4e:7f:
49:4c:12:bd:c3:f7:a7:4d:70:e8:ee:e4:ef:3c:15:
85:d1:31:c0:ca:8f:e3:0c:83:7f:17:f1:69:dd:0b:
35:c5:b5:82:98:8d:e9:b3:3f:a4:66:dd:63:3d:e7:
e3:22:dd:e9:63:9d:a4:6f:2f:9b:7c:88:84:81:61:
04:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7D:1B:EC:61:97:1D:08:A3:40:06:48:A4:0D:41:CF:92:E4:F4:FB
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/P30b7GGXHQijQAZIpA1Bz5Lk9Ps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.0/28
Signature Algorithm: sha256WithRSAEncryption
4d:dc:94:8c:a5:6e:c4:47:ce:04:f1:a5:02:d6:d9:83:12:fa:
b5:c0:68:1b:05:3a:b4:c5:01:01:76:b7:3b:09:9a:03:a6:9a:
99:35:eb:7e:7f:fa:1e:9d:d0:a4:86:23:67:14:6e:52:6c:a4:
d7:37:59:40:12:b4:8e:15:1d:2d:f7:25:63:c0:77:8e:ba:e2:
53:e0:c7:5b:62:0e:ce:73:25:55:14:88:8a:2a:62:85:b3:28:
ea:b9:d9:66:f2:27:2c:7a:85:3b:a5:5f:65:a0:37:db:ff:9a:
8d:0b:7e:18:1d:65:36:b9:91:8d:6d:d4:73:79:6f:26:ac:7e:
58:b1:6b:c4:c7:6d:cc:48:73:5f:39:c1:d5:9e:36:fd:98:39:
1f:18:06:e9:6e:b3:de:1a:d6:cf:b4:1b:62:d4:33:2e:0f:8c:
22:c1:4f:80:38:0a:a0:b8:66:4c:be:01:e9:b6:76:98:47:15:
b6:53:68:ea:03:3a:be:94:81:6e:c1:1b:f7:3f:cb:89:7a:6a:
3a:7b:d3:e0:12:d5:ba:73:93:8c:45:57:f0:1d:5a:a1:a1:86:
5c:99:2d:17:24:ad:7d:d5:81:1c:97:b9:e1:1b:b6:11:f0:3e:
a2:39:a9:e5:75:b8:57:35:64:6d:3b:34:c1:04:cd:09:74:d6:
61:73:ab:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org