Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5YuZ5km4Z4T1jCRTGUksvkFdvnI.roa
File: 5YuZ5km4Z4T1jCRTGUksvkFdvnI.roa (raw, json)
Hash identifier: sBIrOg7jxTOsia+mGBIgP3j6cM/9/NRMDs0nBHat/DM=
Subject key identifier: E5:8B:99:E6:49:B8:67:84:F5:8C:24:53:19:49:2C:BE:41:5D:BE:72
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09F2
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5YuZ5km4Z4T1jCRTGUksvkFdvnI.roa
Signing time: Sun 07 Feb 2021 06:34:38 +0000
ROA not before: Sun 07 Feb 2021 06:34:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2546 (0x9f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:34:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E58B99E649B86784F58C245319492CBE415DBE72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:05:ac:c8:74:19:82:ba:47:b4:c8:f0:39:57:
14:a3:5a:93:f7:a0:79:f8:7e:14:f5:d7:0a:c8:83:
0b:97:ae:cd:16:a1:02:0e:40:05:fa:56:e6:d1:98:
22:b2:b3:39:04:32:fb:04:36:0c:e1:dd:4c:7d:f9:
63:fb:40:d8:cb:27:30:02:bf:9c:bc:84:85:d3:5c:
a9:20:be:7c:b8:4f:7a:fd:b7:cc:d6:ec:6a:e2:39:
84:e8:fb:93:e8:09:ba:55:30:28:57:26:99:1f:81:
7a:0a:30:ce:33:eb:26:4f:32:f5:78:51:af:e0:2e:
11:de:da:8f:4b:8a:d8:b1:a2:e6:ce:30:36:c3:82:
7b:2d:40:9f:1e:e8:1a:9c:ab:a8:4b:8b:97:86:c9:
12:4a:80:38:75:81:f4:3e:c9:b1:20:5c:30:23:a4:
96:47:6c:84:6c:f6:08:06:f8:0d:29:b1:39:17:01:
86:60:8e:f4:e4:03:51:af:a4:96:c5:ac:de:61:96:
c1:a2:8b:4c:87:e3:b8:b0:34:5f:c4:f7:7a:83:25:
24:d0:60:79:31:36:de:99:bf:92:72:7c:f5:bc:ce:
9c:ef:44:69:7b:e3:2a:b7:15:ea:7c:30:c4:12:56:
2b:0d:5b:09:6d:bb:91:ba:29:d5:2f:20:cb:ed:93:
5d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8B:99:E6:49:B8:67:84:F5:8C:24:53:19:49:2C:BE:41:5D:BE:72
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5YuZ5km4Z4T1jCRTGUksvkFdvnI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.128.0/18
Signature Algorithm: sha256WithRSAEncryption
04:1d:8b:c3:c7:4f:34:67:58:51:0c:7a:72:74:f4:40:66:c4:
f1:90:5e:0a:d8:9d:b9:99:dd:64:7d:eb:5d:1a:e8:62:03:c6:
db:66:8e:4b:03:4b:7f:79:54:a8:b0:ba:cc:a4:c5:f4:af:49:
66:b0:33:f9:e6:a0:e0:3a:86:ea:ca:ba:e9:bc:20:89:a5:6f:
9b:a4:ff:f0:60:7b:ca:77:7a:e0:eb:85:2f:ea:cd:70:0e:a0:
0b:a2:20:18:c5:f3:a2:77:2a:6e:62:d2:2b:c4:b0:71:5d:c9:
86:ab:78:e0:c2:e3:6d:88:7a:87:a8:7c:3e:a7:a1:b0:9d:0a:
d8:23:4c:78:2b:85:83:6a:25:c7:49:b6:cd:a6:ad:bf:9d:7e:
0e:bf:30:35:76:4c:4f:0f:9a:ad:33:f2:44:e7:f5:df:0c:7a:
d3:54:75:84:c4:c4:fb:3a:25:9f:70:0d:80:51:a0:09:09:8e:
63:f2:ad:11:09:dd:12:55:98:54:9d:0b:a9:e5:82:29:65:94:
b0:14:e9:83:63:16:e1:89:a5:88:c3:4d:f7:a5:9f:f1:0a:a3:
3e:aa:d0:7b:b2:e0:f6:70:43:0c:4d:9e:ac:9f:ab:92:f7:1f:
c9:ef:73:59:95:3c:aa:b9:bc:18:53:20:bf:7f:6c:31:a1:13:
2a:53:d9:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org