Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Himn87ROHGF26z0bvSVR4yFwCI.roa
File: 7Himn87ROHGF26z0bvSVR4yFwCI.roa (raw, json)
Hash identifier: bbV5dFcrR6Au3hXhcieuGpyAEdLzTuAvRWafnor2ebg=
Subject key identifier: EC:78:A6:9F:CE:D1:38:71:85:DB:AC:F4:6E:F4:95:47:8C:85:C0:22
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B76
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Himn87ROHGF26z0bvSVR4yFwCI.roa
Signing time: Wed 29 Sep 2021 02:44:14 +0000
ROA not before: Wed 29 Sep 2021 02:44:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2934 (0xb76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EC78A69FCED1387185DBACF46EF495478C85C022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:72:8f:7c:03:b1:68:05:fe:25:4e:a2:02:ac:
40:21:c0:d0:16:55:98:3e:60:9e:6a:0b:a0:69:b3:
0c:8a:85:85:9d:03:48:9e:33:ba:ca:44:a5:82:8b:
5a:cf:c2:c1:e3:fd:76:cb:fb:72:c4:07:9e:6a:9d:
7c:14:a1:b3:e3:b6:5d:98:64:79:0b:53:0b:a3:bd:
4d:9a:e5:d0:4f:bb:41:8d:f4:37:ce:7f:44:e2:5e:
b3:aa:8b:8c:bd:2b:58:f4:61:5c:8d:7c:e4:e6:18:
51:bc:63:81:21:90:e1:52:a1:6b:92:1b:68:46:05:
59:0d:5d:af:8e:e3:f0:d5:4f:b8:07:a9:94:f1:c6:
d8:2f:26:59:43:bf:ea:6d:0c:19:93:18:df:54:6d:
de:af:b1:8f:c7:eb:70:23:8c:41:19:60:83:0b:97:
23:ac:8c:8f:a9:db:e0:08:3f:bc:73:e8:39:62:07:
9e:a8:b2:22:1d:fb:9e:c1:05:e7:60:cb:62:d4:3a:
62:ab:7c:b6:4a:9c:1c:18:fb:a1:8c:e1:7a:ce:e0:
72:e5:aa:46:ca:e8:ba:23:71:d1:48:9f:69:3f:8b:
92:d4:a4:a3:f3:fc:32:2e:9d:60:77:b2:11:13:e5:
04:d9:a6:bf:6a:af:db:d5:09:73:8a:dc:99:e1:f7:
71:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:78:A6:9F:CE:D1:38:71:85:DB:AC:F4:6E:F4:95:47:8C:85:C0:22
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Himn87ROHGF26z0bvSVR4yFwCI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
46:c4:5c:13:89:34:bc:3a:9d:1c:6a:d7:db:4b:3e:45:d3:7e:
fc:8e:e1:f2:d9:54:0b:34:59:da:ab:11:74:c5:d2:9d:cc:3e:
a9:5b:0d:6c:6b:be:60:d7:93:46:80:d4:93:de:b7:b2:10:25:
ee:b4:12:98:ca:37:92:72:69:ef:ab:5f:cf:8d:35:61:d4:e0:
ce:0f:72:72:c8:e1:f2:80:d9:41:a6:4d:fc:4c:6a:fa:5f:c8:
81:ec:26:8e:f6:2d:c6:17:c7:0a:b6:13:fa:37:bb:e4:3f:42:
f2:d2:59:ad:ed:70:37:d0:15:8a:bc:4a:61:70:7c:fb:33:27:
58:b9:9e:8a:a6:8b:a9:e0:a1:6c:31:17:ae:8a:aa:09:97:4e:
a6:51:65:b8:68:90:f5:29:19:5f:3f:e5:59:c7:65:54:36:e6:
a8:98:77:b1:7d:f9:15:12:01:0e:bd:6f:91:80:5f:84:55:35:
0c:39:d5:99:bd:30:96:ec:a8:e9:58:7c:df:ae:9f:6f:99:57:
23:8e:b4:09:3d:06:09:f6:b9:14:e2:37:25:bf:bc:96:d5:9f:
8e:7e:5d:55:23:3b:0f:d7:e7:14:61:d5:4a:e3:49:c9:05:cb:
5c:a9:88:08:3c:69:cc:62:ed:1b:29:ee:60:9f:bb:c3:51:16:
37:8b:8e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org