Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/wL_axX4VM5XZqngq6r_aOGpNVD4.roa
File: wL_axX4VM5XZqngq6r_aOGpNVD4.roa (raw, json)
Hash identifier: Fe/LbT9mDz3S5S1xtSAFPf5yaJzcvAzohbwoX7LwvPs=
Subject key identifier: C0:BF:DA:C5:7E:15:33:95:D9:AA:78:2A:EA:BF:DA:38:6A:4D:54:3E
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 097F
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/wL_axX4VM5XZqngq6r_aOGpNVD4.roa
Signing time: Wed 29 Sep 2021 02:53:08 +0000
ROA not before: Wed 29 Sep 2021 02:53:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 2914
IP address blocks: 122.255.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2431 (0x97f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 29 02:53:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C0BFDAC57E153395D9AA782AEABFDA386A4D543E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c4:d8:98:8e:70:39:86:f0:cf:39:68:c8:be:
bb:f3:cd:cc:0d:aa:8f:ff:95:e0:98:0e:7d:9a:48:
0e:c4:f4:6c:8f:32:2f:53:9c:83:ea:56:f6:f1:ad:
e1:45:3b:19:2e:12:03:42:bf:4f:b7:55:92:e2:31:
81:a8:cd:84:6c:6e:32:92:34:59:ec:5c:df:a2:aa:
73:1f:de:1f:b8:2d:29:ba:2b:9e:0e:20:39:ce:99:
e9:92:82:5d:a2:64:da:ff:53:9e:59:87:93:4a:1d:
fd:b7:c3:c0:47:a4:0a:b5:c2:78:56:c4:8e:72:c0:
86:3e:5a:2d:65:00:eb:f7:73:89:05:ab:93:74:a1:
f0:7d:bc:f6:5a:a9:5a:4b:a2:5f:3e:95:7c:2c:fc:
25:25:96:d9:25:e3:cb:69:4c:e2:77:ae:7d:43:ac:
23:a1:21:b8:87:d8:df:6f:e4:7b:34:68:99:84:0f:
13:80:af:ba:45:e5:b0:c0:61:73:61:5c:32:73:55:
57:90:4a:67:a9:a3:a5:50:0b:57:07:73:e1:b6:db:
0b:f6:43:f8:cf:da:c9:33:d5:c4:27:fb:72:8d:da:
a7:1e:e7:a6:a9:b9:5f:68:a1:24:06:91:e3:b6:01:
3b:e4:fa:27:22:06:47:1c:0f:e5:67:3f:c8:b1:54:
85:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:BF:DA:C5:7E:15:33:95:D9:AA:78:2A:EA:BF:DA:38:6A:4D:54:3E
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/wL_axX4VM5XZqngq6r_aOGpNVD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.80.0/20
Signature Algorithm: sha256WithRSAEncryption
02:84:54:db:1f:91:1e:ea:c1:f6:cb:ad:04:14:45:97:85:2a:
1e:36:d2:de:cc:29:f6:66:86:41:bc:97:c3:8d:19:a0:6a:72:
3a:0a:15:b5:46:8f:38:82:85:fe:39:fe:08:90:81:2c:d9:79:
ab:aa:9d:72:cd:05:ad:93:98:92:58:75:79:fb:64:46:82:69:
6f:5d:ec:e9:40:0f:c5:58:f2:dd:30:85:39:1a:7f:23:aa:04:
3b:c6:90:66:dc:c6:39:4a:cf:d1:52:20:2d:fe:9f:f1:86:dc:
4a:0b:fa:5d:4d:8b:01:c8:5f:7f:1b:a2:55:1a:e8:e9:51:53:
6b:90:2a:2c:66:b7:5b:b6:2d:25:5a:81:8f:39:7e:f7:8d:7c:
06:8b:31:a3:94:6d:e8:d1:fe:aa:ae:cf:84:8d:bf:5b:c2:a0:
14:11:93:be:f8:7f:04:a3:01:d4:90:d2:25:a8:01:b0:3b:d0:
c2:0b:68:16:0d:44:98:bb:3b:ee:34:ed:5e:23:83:51:4d:29:
55:db:da:a5:cb:8a:b4:8c:6f:69:e3:78:b5:09:d3:73:69:1b:
16:cc:80:d0:57:71:cf:ab:86:4a:3a:84:04:8c:b9:6a:40:c1:
d4:99:ec:b1:ab:af:de:b2:ac:f1:32:b7:0c:80:ca:f4:03:f0:
e0:5f:50:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org