Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8-vwIWwzRgEPLZVf6gBpbxp--nE.roa
File: 8-vwIWwzRgEPLZVf6gBpbxp--nE.roa (raw, json)
Hash identifier: rIz3Z5fBTj9gTnG2fxPzBcCebEHsyt393wKjHtnJOco=
Subject key identifier: F3:EB:F0:21:6C:33:46:01:0F:2D:95:5F:EA:00:69:6F:1A:7E:FA:71
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0790
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8-vwIWwzRgEPLZVf6gBpbxp--nE.roa
Signing time: Tue 29 Sep 2020 09:52:52 +0000
ROA not before: Tue 29 Sep 2020 09:52:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1936 (0x790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F3EBF0216C3346010F2D955FEA00696F1A7EFA71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e6:a0:93:17:d7:2d:38:cd:9d:76:40:c5:66:
33:b6:d6:74:cf:d1:a4:87:be:2f:20:1e:fc:89:85:
ce:87:22:ac:05:f2:bd:b4:05:66:97:35:64:2d:a4:
45:e7:97:d0:c5:ff:50:28:fe:50:7d:1f:ac:b9:7c:
7d:5e:5f:2d:43:27:28:5d:52:f3:56:b3:d2:90:40:
64:af:18:6f:13:06:db:13:27:18:11:23:31:d6:1d:
7d:be:e9:12:e8:e0:5b:99:2d:a5:f6:8c:eb:71:23:
ef:aa:dd:3e:b5:a9:9d:5e:b6:9b:9b:18:0d:bc:20:
cb:25:ac:16:e6:87:b7:ff:81:fd:93:b7:fc:38:3e:
cc:f9:3b:1f:f6:22:46:2a:4a:75:1d:ef:4a:10:ab:
2e:1d:a2:df:ea:e4:2e:5b:98:7b:b0:6f:15:68:5a:
f7:cf:b7:58:6c:de:3b:d2:64:66:bf:20:75:fd:36:
4c:d8:e7:8f:27:5e:71:06:d4:c9:72:a6:08:30:b7:
6d:62:eb:a9:55:47:25:6d:a7:60:15:9a:51:70:98:
01:32:cb:5b:8d:bf:27:af:df:65:b9:35:ac:91:70:
d2:45:ad:b2:ad:68:f1:94:02:2e:78:7e:33:68:bd:
dc:c7:13:a7:97:6d:da:b3:d2:4e:4a:77:8e:b9:22:
6b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EB:F0:21:6C:33:46:01:0F:2D:95:5F:EA:00:69:6F:1A:7E:FA:71
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8-vwIWwzRgEPLZVf6gBpbxp--nE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.3.0/24
Signature Algorithm: sha256WithRSAEncryption
43:c8:f2:6b:bc:bb:72:5e:3d:e4:1d:8c:46:14:17:4e:b4:75:
3c:fe:d8:01:31:44:4e:e4:8b:3e:59:a9:d8:47:67:15:bb:12:
42:e0:9e:47:15:57:2b:20:d8:90:fd:38:1b:39:16:2e:5b:f6:
6a:e1:d3:d4:43:ff:54:e8:99:fa:93:98:7b:39:a4:bc:89:d9:
5f:ce:b1:c1:ab:52:2a:89:bb:d9:9a:00:69:47:5c:5f:80:c3:
1e:10:12:b9:a9:38:a9:07:e0:64:9e:8e:e6:63:e0:07:bf:b6:
ba:18:93:71:05:84:18:95:19:2e:df:40:49:f8:e4:18:45:48:
72:54:bc:29:b9:a5:9e:5f:81:4b:0e:ad:fe:04:01:36:d5:0c:
12:a9:22:22:b0:02:ce:53:71:a8:75:e7:98:2b:d0:77:f2:ee:
6a:0b:74:9c:91:9e:6b:89:09:3b:81:df:fe:fe:ec:c7:70:af:
a4:16:da:b1:91:01:a8:7e:76:fc:92:5b:dc:f8:f3:95:a6:ed:
18:a6:24:af:7d:0d:a3:d0:02:aa:7d:3b:4d:15:18:2f:2b:dc:
c9:89:4d:7b:b4:db:95:38:50:c2:02:f4:1a:75:ff:20:82:aa:
5f:f3:fc:7b:ae:6e:db:5f:45:bf:2a:66:d2:7f:5c:1a:ac:54:
9f:ee:10:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org