Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8rwix0gBaB14_gKK2h14k5uCg_A.roa
File: 8rwix0gBaB14_gKK2h14k5uCg_A.roa (raw, json)
Hash identifier: OLie/gHrd96KbuC7OuEhSz6ZWr+nqrnfv/4+UCKfUaE=
Subject key identifier: F2:BC:22:C7:48:01:68:1D:78:FE:02:8A:DA:1D:78:93:9B:82:83:F0
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B7F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8rwix0gBaB14_gKK2h14k5uCg_A.roa
Signing time: Wed 29 Sep 2021 02:44:16 +0000
ROA not before: Wed 29 Sep 2021 02:44:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2943 (0xb7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F2BC22C74801681D78FE028ADA1D78939B8283F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a5:44:73:80:6f:20:a6:57:dd:b4:e8:52:8b:
77:50:ba:91:60:81:25:8f:15:e1:51:f4:bd:6f:52:
99:fa:7c:56:3f:b0:2b:97:01:bc:73:ca:0f:01:c5:
e2:9d:79:86:89:80:ed:20:c5:e6:b9:03:00:5d:66:
6c:29:8d:5d:14:2b:0c:d5:be:5f:e3:94:41:2d:80:
29:d3:19:38:df:29:45:00:ea:0b:30:45:87:ff:ce:
9b:38:96:c1:5d:45:cd:de:fb:9f:f4:82:8b:3e:ce:
aa:f2:88:02:39:42:a0:a2:5b:7d:d1:b1:53:9a:98:
fc:d9:e3:c5:67:a2:22:fd:33:11:e4:99:90:cf:be:
24:05:2c:d4:1e:49:50:eb:e9:5d:73:84:73:fa:b2:
4e:5b:03:c5:be:ac:33:13:b2:81:8d:3f:ff:bd:a2:
50:a1:ad:68:08:2f:a7:52:fc:68:84:81:e6:24:2e:
38:11:bc:09:57:e5:1e:86:b5:56:60:a8:03:c1:b9:
5a:a8:97:1b:bf:49:a9:e7:b3:32:ca:27:61:9a:53:
bf:51:e8:89:d4:b3:05:9b:46:47:6d:bb:fb:e8:24:
e2:ba:ef:4a:53:f0:79:5b:13:05:68:d5:34:92:99:
d2:a3:9b:c7:14:b5:33:d7:e6:13:a6:3d:e1:0c:8e:
38:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BC:22:C7:48:01:68:1D:78:FE:02:8A:DA:1D:78:93:9B:82:83:F0
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8rwix0gBaB14_gKK2h14k5uCg_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4f:fd:40:c2:a9:d8:7a:ae:35:b6:75:16:d7:ee:5d:fa:83:ca:
33:87:4d:e2:e6:e5:09:1d:4d:89:cc:c1:3b:ca:5e:fe:02:c2:
ce:d0:55:71:0d:0c:bf:cf:20:af:7c:84:0b:14:a1:ef:b6:a4:
88:cb:c8:45:68:58:bd:35:5b:0b:25:b3:66:39:f0:3d:83:a4:
53:11:1b:f3:6c:ff:71:de:35:75:97:b5:eb:f1:ed:8e:a6:dc:
2e:f2:b4:b3:a5:78:ff:9d:29:62:3e:9b:82:9e:c7:2e:58:a4:
e5:ff:59:aa:ab:25:f5:4f:97:17:2b:60:1d:bd:d0:4b:0d:c2:
cf:5c:8d:5a:5e:0c:1a:97:06:73:f7:41:a2:0b:38:27:0a:4b:
e2:17:26:97:8b:15:b6:01:92:31:e9:e1:59:74:68:ac:26:6f:
a5:64:eb:5e:ee:83:a2:39:6b:80:cb:b3:c6:b3:01:9f:bf:ad:
fd:b8:9e:ce:f0:d0:98:ae:51:93:ef:54:6b:12:f8:31:a6:44:
39:18:3a:00:6d:ea:91:78:96:8d:73:d0:e0:b7:33:c4:40:a6:
bd:e5:ca:9d:3c:04:a3:90:04:54:ac:f1:86:3b:f9:cd:40:e3:
2f:94:80:a9:3d:7b:c3:8f:10:58:17:c3:c7:ce:a8:e2:76:28:
04:65:64:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org