Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/54DStnU3XN3S3hzTohtCxXTMIRY.roa
File: 54DStnU3XN3S3hzTohtCxXTMIRY.roa (raw, json)
Hash identifier: wPtM/lGbpl4W8BLdmBZSxigo9C1t0mpOOGEXn+DVtWk=
Subject key identifier: E7:80:D2:B6:75:37:5C:DD:D2:DE:1C:D3:A2:1B:42:C5:74:CC:21:16
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B6D
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/54DStnU3XN3S3hzTohtCxXTMIRY.roa
Signing time: Wed 29 Sep 2021 02:44:11 +0000
ROA not before: Wed 29 Sep 2021 02:44:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2925 (0xb6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E780D2B675375CDDD2DE1CD3A21B42C574CC2116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:20:01:a7:65:d5:2a:9e:3e:a3:f8:36:e3:18:
42:f2:aa:39:66:7b:b7:8c:51:09:39:f4:ab:5b:34:
0b:af:c8:50:e1:78:f2:93:0e:31:8f:0f:ff:31:da:
0e:4a:34:a0:cc:49:c4:c4:b2:e4:3f:3f:e4:06:38:
01:32:1a:43:7c:05:58:a0:be:f7:5a:84:01:57:50:
66:49:41:9c:2e:25:92:68:2f:d0:55:e5:09:fc:b5:
cc:d2:57:d8:46:c1:49:e7:9d:2e:8b:22:75:29:88:
35:ae:2c:72:13:8b:ff:00:dc:e8:27:53:0d:32:66:
f3:c2:3a:8f:8b:60:93:5b:d4:bf:6c:90:84:91:d2:
03:0b:d7:f1:c1:66:a5:45:d2:3a:87:bf:1e:b6:a7:
5c:d3:78:e4:37:f2:b4:2f:23:db:48:48:9e:e9:8d:
d5:d5:ee:1a:1f:48:e2:b4:1a:df:71:f5:3f:a3:da:
29:79:9e:2f:91:eb:e9:28:43:af:ee:b4:67:7c:eb:
e0:d2:f8:f7:5f:09:97:9f:3e:e7:e9:27:34:8a:7d:
b8:41:8c:40:72:41:88:e7:39:d8:88:77:64:19:ff:
f7:c7:9c:c9:9b:6b:9e:9e:77:62:62:63:95:3e:17:
2c:4f:d1:5f:23:d4:74:72:19:15:58:b0:e5:07:b9:
72:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:80:D2:B6:75:37:5C:DD:D2:DE:1C:D3:A2:1B:42:C5:74:CC:21:16
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/54DStnU3XN3S3hzTohtCxXTMIRY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
66:bd:6c:8a:e6:77:d8:b1:2a:57:fb:59:df:65:82:19:8b:ad:
a3:40:c6:19:ee:14:f9:b8:d8:d1:96:2b:8e:c9:8a:9a:ac:b8:
23:82:8a:38:4a:fb:ff:17:2a:de:40:6e:fa:c9:6e:e7:aa:d1:
84:1d:5c:ec:01:11:38:25:ad:05:4d:c9:1c:c8:45:24:ba:6f:
e4:25:b1:8b:06:18:a5:f0:04:39:05:17:3e:b5:48:58:79:83:
4b:4a:e6:2a:1c:fe:bc:fa:2d:a8:8e:d9:fa:9d:30:85:e6:85:
6a:f8:94:52:0e:6a:d1:5c:26:e5:b6:90:d0:c0:6e:02:d3:ca:
0e:5e:44:c1:34:8a:86:67:6f:04:c5:ef:06:25:f7:a2:19:18:
88:97:6d:cd:29:26:64:ea:ae:a8:ca:78:97:76:81:0f:57:84:
d9:85:13:d0:f4:c6:ad:14:7c:80:86:a7:1d:69:e4:25:70:ab:
06:bd:41:05:8d:89:f6:a9:15:95:80:be:09:1a:6f:f6:1e:ff:
76:f6:5e:7f:59:92:67:9f:62:6b:e4:6e:4e:36:d6:08:64:42:
ca:75:e8:c4:45:a1:dd:92:5b:70:00:38:31:64:fe:ce:b9:81:
db:1e:a6:5d:93:7e:f7:d2:cd:c9:01:3e:e0:d9:1c:53:e8:c5:
be:c7:ba:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org