Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/kwKcdzOgtwxyeVgYE4eJEyfNoWQ.roa
File: kwKcdzOgtwxyeVgYE4eJEyfNoWQ.roa (raw, json)
Hash identifier: CDqOrnRA/DZMnF1LPkeLBvMRZ1FVIQOgAsKXvx71sJ8=
Subject key identifier: 93:02:9C:77:33:A0:B7:0C:72:79:58:18:13:87:89:13:27:CD:A1:64
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 097C
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/kwKcdzOgtwxyeVgYE4eJEyfNoWQ.roa
Signing time: Wed 29 Sep 2021 02:53:07 +0000
ROA not before: Wed 29 Sep 2021 02:53:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18018
IP address blocks: 122.255.94.64/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2428 (0x97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 29 02:53:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=93029C7733A0B70C727958181387891327CDA164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:26:96:44:9f:3f:e6:66:da:e8:d5:63:64:f3:
4f:9d:da:ff:97:e5:b4:b3:41:0e:a8:22:28:c7:36:
ce:27:8a:7a:52:92:b5:84:8e:93:f3:8c:b9:e8:2c:
45:eb:14:14:c3:5e:e8:ce:59:5c:93:30:c8:b9:64:
89:26:96:89:42:9c:07:3e:9d:8c:56:07:96:22:f7:
12:a7:9f:da:04:b6:58:73:91:11:02:40:0a:f5:17:
31:35:69:24:c8:4e:a0:d5:4e:32:ec:f7:15:c2:31:
b2:2a:06:43:45:70:8a:b7:05:b1:08:fb:48:ae:41:
a4:ea:b5:d2:a3:83:8c:65:b6:52:23:49:90:44:a8:
17:e0:ef:40:2f:dd:72:7e:e2:ef:57:72:bf:08:13:
51:4e:c9:d5:65:ca:1f:61:54:00:1a:af:95:7a:88:
97:df:5e:da:f1:d8:a4:15:75:dd:32:2e:f3:b9:9f:
bd:fc:f6:10:e5:84:29:a4:af:6c:3c:43:76:53:84:
25:2a:00:7d:68:bc:93:5f:a0:b1:e9:10:a9:01:00:
21:e5:b0:10:3b:f4:a0:d2:b6:95:c9:71:0d:41:ae:
47:4d:d8:5c:ad:67:73:0a:7a:e1:42:87:b5:81:91:
67:e3:8d:c1:3e:4c:91:31:6c:ee:72:3f:dd:bc:8d:
3b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:02:9C:77:33:A0:B7:0C:72:79:58:18:13:87:89:13:27:CD:A1:64
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/kwKcdzOgtwxyeVgYE4eJEyfNoWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.64/26
Signature Algorithm: sha256WithRSAEncryption
98:48:7b:08:73:a3:73:93:76:6e:6f:76:88:8c:76:0a:74:c4:
e1:68:eb:fa:57:0b:c4:75:6f:9d:a5:45:fb:89:14:bb:57:a3:
69:de:27:ac:d9:ed:ab:df:c7:2b:2b:83:4d:1c:d6:dc:af:db:
90:cd:bc:5a:a7:1a:20:7e:5b:36:17:74:51:ea:32:17:59:53:
46:6e:29:ab:31:ae:e0:b8:6c:5e:12:58:f4:25:42:a9:bb:f9:
40:e8:00:03:5d:be:9c:06:73:27:a4:53:b5:b5:f1:8c:a6:b3:
17:0c:36:90:77:0c:86:73:b0:9f:0c:c7:e9:fb:0b:0a:c2:38:
cb:67:ed:88:ca:ce:80:5c:2c:4a:6c:4f:7b:1d:f1:dd:83:1d:
b5:92:19:4b:63:e2:b4:e2:91:57:dd:e9:ed:49:1b:64:09:3b:
ef:1d:54:0b:64:5e:ec:08:fd:f7:17:1b:0d:dd:13:c7:e4:8b:
5f:44:25:48:ab:1f:f2:e2:a5:4b:48:13:8f:e9:dd:a2:56:c8:
d7:22:44:2a:f9:85:95:5b:b7:14:19:13:61:b0:dc:d3:33:2b:
59:9b:5b:e5:8f:ca:b7:c6:d2:6c:45:dc:32:77:eb:69:53:1a:
d3:67:89:f2:3b:9d:cf:b0:ef:1d:7c:69:ae:cc:3c:b8:c4:ca:
0d:c8:c4:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org