Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/egEVUjPEX_IWS4GkASkRwold3IY.roa
File: egEVUjPEX_IWS4GkASkRwold3IY.roa (raw, json)
Hash identifier: Vg4gvM/ZD6uXtO1VbY+waaL70b5EdhM7EzV3+aKNxUU=
Subject key identifier: 7A:01:15:52:33:C4:5F:F2:16:4B:81:A4:01:29:11:C2:89:5D:DC:86
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 088A
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/egEVUjPEX_IWS4GkASkRwold3IY.roa
Signing time: Wed 02 Dec 2020 03:38:04 +0000
ROA not before: Wed 02 Dec 2020 03:38:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18018
IP address blocks: 122.255.93.112/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2186 (0x88a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Dec 2 03:38:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7A01155233C45FF2164B81A4012911C2895DDC86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:74:a7:26:2d:16:31:a5:00:c6:c4:d8:14:1b:
2d:ca:56:f6:65:12:ac:86:6c:a9:d8:ea:c8:d6:a0:
58:5b:d3:13:6f:0e:50:ca:35:92:98:a3:8e:50:de:
41:00:f6:6c:01:0e:a2:1c:b9:5c:61:59:24:65:c0:
67:46:f8:b8:da:b2:42:ef:21:f6:02:b1:ee:a4:03:
98:b1:76:3c:dd:99:1c:a4:c2:4e:00:ed:d8:c4:41:
8d:ab:d0:6d:8c:e4:5a:19:57:f8:61:e0:7e:25:7a:
5c:b2:ea:e1:e3:b2:6b:c8:4f:22:69:4c:ea:4a:bc:
fc:88:ef:74:95:62:b6:81:62:86:27:9d:5f:fb:b7:
51:ec:0e:b6:d1:18:85:33:a8:bd:b6:85:e0:76:e4:
83:94:80:b0:70:ad:4c:5a:99:88:46:6a:2f:1f:6f:
a5:4c:7d:48:9a:8c:97:1c:79:0f:da:77:71:5a:76:
49:6b:a9:a4:56:df:d2:b9:d1:ff:c9:52:49:43:c6:
85:2c:aa:55:d6:3e:d6:1d:e8:d9:e9:a8:21:5a:1d:
32:4a:50:85:88:0c:0e:d4:b9:b8:e9:dc:78:0e:71:
13:f5:64:1d:5b:cc:c2:1b:f6:aa:32:56:5a:93:c2:
c0:92:0d:6c:ca:03:cf:80:b3:9b:09:90:2f:27:49:
b3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:01:15:52:33:C4:5F:F2:16:4B:81:A4:01:29:11:C2:89:5D:DC:86
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/egEVUjPEX_IWS4GkASkRwold3IY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.93.112/28
Signature Algorithm: sha256WithRSAEncryption
a4:aa:1d:b6:f3:de:10:a7:6f:a5:3c:30:30:cf:e1:9c:fa:18:
69:56:34:ca:0a:1d:c4:f4:12:67:3c:bb:43:8c:d2:bc:f8:79:
8b:21:37:ae:a2:e8:6c:e1:c3:2e:70:8a:13:31:27:43:0d:b6:
2a:9b:f4:b0:97:fd:74:7f:ac:5f:33:a3:49:d3:61:20:fd:48:
ad:e9:6e:06:1c:de:16:46:13:26:bf:cb:d6:8e:7a:02:92:9f:
6a:72:d8:05:b3:36:4e:fe:3a:8c:be:50:21:74:6e:f4:d8:4a:
a9:3a:dc:77:f4:9f:16:6d:67:3c:81:5c:7e:dd:a3:c7:61:94:
c5:8c:65:f4:e7:f6:48:a0:b4:d4:6b:62:b0:59:8a:bb:60:b3:
97:91:7f:6e:c3:83:43:3d:1a:38:2b:d3:59:58:73:c5:d6:72:
e0:0e:99:bf:6e:a6:29:b7:20:4b:50:f0:af:2b:f7:0e:90:46:
aa:76:ac:46:2d:ac:44:59:27:65:51:59:1f:19:59:71:9f:49:
4c:c2:0c:46:55:77:f6:2d:ec:fa:71:f6:14:a6:c7:19:96:de:
82:06:b2:8b:d5:cf:21:b8:a4:c9:e6:2f:b1:a5:25:b4:72:12:
b7:df:a0:e3:18:84:13:f2:7e:d8:80:02:a0:0e:95:d3:29:e1:
db:89:d5:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org