Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7o_7OQXad54R5qsTwMx5J84XiFY.roa
File: 7o_7OQXad54R5qsTwMx5J84XiFY.roa (raw, json)
Hash identifier: 3ShqthfCOQx3hoPzGVf+hPWPRITSlcVVXp1hrnq1ejE=
Subject key identifier: EE:8F:FB:39:05:DA:77:9E:11:E6:AB:13:C0:CC:79:27:CE:17:88:56
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09CA
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7o_7OQXad54R5qsTwMx5J84XiFY.roa
Signing time: Sun 07 Feb 2021 06:24:28 +0000
ROA not before: Sun 07 Feb 2021 06:24:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2506 (0x9ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:24:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EE8FFB3905DA779E11E6AB13C0CC7927CE178856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3c:92:f1:cf:5b:a2:ff:80:d6:05:14:c1:1a:
58:7e:7c:1e:bd:2b:65:59:04:ea:31:ae:40:3a:ee:
6f:7a:ad:e8:b2:9a:7c:0d:f4:fe:39:0d:89:1e:6d:
ac:7a:80:2d:b0:2b:71:58:38:fc:0e:e6:0b:52:a0:
c5:92:00:25:63:f4:15:90:8f:28:39:2f:3c:0b:7a:
4d:94:bf:12:e5:2a:46:a9:d8:3d:22:5b:cb:04:cb:
4d:6a:0b:ce:88:10:d7:f1:62:ba:67:5e:f0:c2:e2:
1d:dd:ff:98:94:4d:7b:26:e5:79:c8:d3:a7:3a:50:
53:b5:24:58:2e:84:08:8e:48:f4:c9:13:bf:c6:a7:
d9:e2:cf:74:1c:68:5f:5c:b7:93:d1:c2:14:f6:1b:
9f:20:07:0d:2c:e2:f5:50:8b:06:94:4c:51:65:91:
24:8a:df:4a:df:32:1a:de:1b:e5:0d:a9:96:22:09:
6d:c1:ea:b0:fe:9f:87:c2:25:94:e6:35:f3:35:d5:
42:69:47:ed:d8:92:34:25:c9:09:8d:6f:07:e6:ea:
f9:25:6f:4c:75:09:52:d8:07:34:76:3b:85:fe:24:
70:c3:77:9c:38:84:97:da:a1:18:e3:72:9b:47:56:
0a:01:67:e5:7e:1d:22:e8:c6:31:cf:46:f4:38:53:
93:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8F:FB:39:05:DA:77:9E:11:E6:AB:13:C0:CC:79:27:CE:17:88:56
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7o_7OQXad54R5qsTwMx5J84XiFY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.240.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:80:26:45:1f:bc:5b:62:86:8b:ab:9a:dd:b8:c1:25:f1:f6:
8b:11:7d:52:39:f4:9d:ce:54:99:b1:04:73:e6:b1:64:51:0e:
3a:b2:64:87:48:1a:2f:a4:b7:dd:85:31:7d:4a:ce:05:81:d8:
e6:f2:28:9a:a4:8a:24:8f:84:75:38:e7:8d:81:79:c4:01:d2:
3a:b1:f1:b6:81:93:94:bb:72:37:d7:d9:16:4e:88:eb:f7:c1:
62:d3:e4:47:3e:ec:0e:c9:db:03:0a:33:82:52:81:e2:c8:0b:
77:9b:f1:81:ba:11:cb:7b:b1:15:09:4e:36:fc:8f:9e:17:1d:
f0:13:af:0e:20:ce:24:7f:3b:12:09:54:3f:cf:f0:fb:29:9e:
ff:38:68:24:a0:10:a5:d9:8e:11:43:c3:8b:af:6b:62:dd:4e:
1e:f8:22:72:79:57:a2:28:bb:b8:0b:74:2a:96:18:db:b6:1e:
f1:15:2d:64:e6:5e:52:c2:a8:23:73:fd:dc:bf:71:4b:dc:9a:
69:61:b6:6c:6c:4c:02:ab:bb:46:8b:3a:2e:94:4f:61:f8:35:
4d:37:e4:9e:e0:47:c7:cf:18:69:1c:4c:2e:02:c8:ec:6d:2a:
10:55:fe:f2:9f:0f:8f:69:cc:63:2d:35:b7:62:c6:6e:36:7f:
6d:60:d2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org