Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/cMJKMMJuqRci0eXMedvKe8fZcY8.roa
File: cMJKMMJuqRci0eXMedvKe8fZcY8.roa (raw, json)
Hash identifier: bdk/SmEGoSHpdVvpMy1Dy7XXprDbdI03TfZ6nqXtWTk=
Subject key identifier: 70:C2:4A:30:C2:6E:A9:17:22:D1:E5:CC:79:DB:CA:7B:C7:D9:71:8F
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0A6D
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/cMJKMMJuqRci0eXMedvKe8fZcY8.roa
Signing time: Thu 15 Sep 2022 02:50:45 +0000
ROA not before: Thu 15 Sep 2022 02:50:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18018
IP address blocks: 122.255.94.0/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2669 (0xa6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 15 02:50:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=70C24A30C26EA91722D1E5CC79DBCA7BC7D9718F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a0:94:47:92:1e:16:25:d9:e4:5d:40:b0:27:
d4:c3:7e:ba:e4:a7:12:36:cf:9e:82:27:12:e0:a9:
cb:32:2c:08:7e:32:12:f6:8f:d5:e8:b2:01:ec:08:
c6:a8:e3:c4:c2:9e:3b:fc:25:d5:44:1b:c7:2d:cc:
d1:f7:15:3b:c0:a6:f4:01:16:31:f5:53:ad:24:9e:
cf:69:26:71:a9:48:53:06:8b:06:04:71:d9:13:4c:
77:a7:05:c0:ed:41:62:a2:12:a8:4a:31:c4:5c:fb:
d4:96:8d:b7:2b:19:81:05:1f:24:c6:c3:3c:d4:2b:
8a:34:7d:78:92:09:09:1b:4e:ea:d6:0a:ed:c6:d5:
67:b1:2c:f3:86:dd:c5:49:40:9c:6d:ff:e3:d0:ba:
bc:be:24:33:50:c2:dc:37:8f:23:2c:9e:2f:ab:3b:
18:86:2e:47:03:6e:ab:16:d6:cc:11:b4:a9:ca:ec:
1c:d7:71:bc:58:f2:ff:44:0d:7e:9b:be:7c:41:e5:
57:a8:6c:d4:51:ce:18:74:5e:5b:75:03:74:83:fc:
72:ab:5b:b0:1b:d2:f8:82:c8:28:e9:02:a4:48:3c:
96:db:a5:4f:e3:f9:14:04:57:52:43:6c:c1:5f:22:
30:17:d9:55:39:e4:a8:3d:a8:90:46:06:33:f9:25:
c9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C2:4A:30:C2:6E:A9:17:22:D1:E5:CC:79:DB:CA:7B:C7:D9:71:8F
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/cMJKMMJuqRci0eXMedvKe8fZcY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.0/28
Signature Algorithm: sha256WithRSAEncryption
07:66:f0:99:70:78:ad:e3:2d:de:31:7c:9e:e5:e4:a2:60:9c:
4a:81:91:17:de:04:8a:fb:3e:5a:62:50:56:75:ef:73:77:c4:
d6:6f:77:b0:4f:e4:f3:94:3b:31:30:ed:11:de:d2:53:55:99:
8d:2f:9f:a8:52:27:11:48:76:fb:ea:99:c2:ce:9f:33:7f:25:
ca:ab:b2:09:6e:56:6a:ba:93:33:34:fb:a6:af:6a:2c:95:06:
30:09:80:f4:63:d2:68:c2:6b:54:34:24:8f:2a:ab:5d:57:7d:
bc:c7:13:55:c4:e8:b2:b0:1a:91:0c:a1:01:69:ae:80:6e:e4:
15:f6:a5:0f:2e:a2:cb:92:3f:13:ca:65:ca:a9:88:8f:a5:23:
56:d9:05:9c:ac:4d:33:d0:7e:2f:74:09:fc:18:59:e8:ff:39:
ec:8e:fb:c9:62:59:41:d8:25:26:ef:e8:da:07:53:0d:2c:41:
a5:82:91:27:81:56:9c:e7:9f:7a:94:7f:a6:35:6b:b7:fc:4f:
6a:42:ad:1a:5b:0e:92:a4:d5:a1:06:51:70:3b:c3:c9:b2:82:
8c:7b:0e:c8:04:16:eb:a0:8d:bb:2e:bc:3a:65:18:a2:7a:73:
65:0d:97:ff:8f:d9:37:a6:8a:8f:b2:1d:0b:f0:df:cf:e1:db:
9b:5f:4c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org