Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BZSW0rK0pfkt8qTX3kfcrQ_2hxY.roa
File: BZSW0rK0pfkt8qTX3kfcrQ_2hxY.roa (raw, json)
Hash identifier: CxSEH/dL6Hq96Gzf6KD7aetemSK7DWbYgOHXpzoVlKU=
Subject key identifier: 05:94:96:D2:B2:B4:A5:F9:2D:F2:A4:D7:DE:47:DC:AD:0F:F6:87:16
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B6B
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BZSW0rK0pfkt8qTX3kfcrQ_2hxY.roa
Signing time: Wed 29 Sep 2021 02:44:10 +0000
ROA not before: Wed 29 Sep 2021 02:44:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2923 (0xb6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=059496D2B2B4A5F92DF2A4D7DE47DCAD0FF68716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:98:74:eb:e0:84:5a:c9:00:9c:9f:f3:6f:
38:44:6d:30:df:d3:ba:8b:0f:1d:db:29:66:83:da:
21:70:6e:30:a0:3d:07:1b:c0:96:33:1d:2a:a0:dd:
4d:8d:51:47:bb:95:4b:12:37:4f:07:fe:38:55:fb:
9b:cf:67:b5:2d:ad:9e:03:b4:c1:af:28:ae:3d:bd:
a3:3c:8b:54:71:c7:20:7a:a8:a4:8a:55:ed:f7:f9:
9b:e4:7e:92:a1:9c:33:b6:f3:2f:78:14:1d:6c:2b:
e0:48:65:6e:12:80:9e:17:1d:7d:ad:c9:42:5f:8d:
01:b4:28:dd:9d:18:ea:d0:d5:31:4c:cd:c3:d3:61:
3e:1f:ed:7f:1a:13:44:0f:01:7e:fc:16:9f:8d:5c:
d3:47:66:9e:2d:9c:41:f0:50:4e:f1:ba:83:db:ad:
2b:dc:40:07:35:93:f9:21:a4:8a:72:fe:14:2c:c9:
ec:ae:54:5f:e5:ee:43:12:25:a3:c8:62:7e:3f:ab:
90:0a:eb:0a:06:c1:ab:25:40:ed:ce:81:33:53:73:
3e:b8:0c:c5:1c:de:dd:a0:df:c4:7a:dc:c8:01:dd:
5e:3c:da:58:21:c8:ec:ce:1f:01:a7:cd:3e:a8:07:
f1:b0:01:6a:0c:95:39:5a:b0:70:fa:21:19:35:68:
68:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:94:96:D2:B2:B4:A5:F9:2D:F2:A4:D7:DE:47:DC:AD:0F:F6:87:16
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BZSW0rK0pfkt8qTX3kfcrQ_2hxY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.8.0/21
Signature Algorithm: sha256WithRSAEncryption
70:4a:f8:70:72:4e:fc:64:db:91:a8:15:ca:ae:c2:33:54:6c:
74:dd:43:a2:77:73:68:f3:ab:12:4c:e1:14:56:fc:ce:44:11:
e2:9c:96:26:53:bc:a2:09:cf:b2:63:22:93:04:0a:d6:eb:23:
59:dc:1d:98:26:e3:3b:02:bb:8d:12:93:35:8a:39:68:3d:42:
a3:8f:04:fa:5c:8e:14:ad:61:98:ed:71:d2:df:04:4f:e1:21:
ad:68:6e:e5:6a:52:9e:6d:c1:9e:e9:f6:20:50:5d:c3:ad:9a:
1b:ce:b8:0a:e4:d7:fa:54:00:32:7d:6c:66:24:14:3e:a8:c5:
4a:56:64:26:53:bf:4b:90:1e:34:41:0d:0f:8d:94:64:0d:35:
d0:30:99:e3:a4:2a:98:61:f9:f1:e1:8b:1d:8a:2d:50:61:88:
c7:7e:b2:99:c1:ea:ea:58:c8:34:0d:b3:c7:24:07:7b:cb:d6:
05:d9:3d:4c:23:9a:c2:b2:38:fa:b1:c6:5f:37:cb:ed:98:af:
ba:26:4f:35:72:39:2e:3b:eb:17:75:d8:ef:61:11:ee:56:a5:
8c:9c:71:81:fb:37:5c:42:bc:16:e2:0d:59:e1:bf:c9:11:e9:
7b:92:50:02:a9:84:65:9f:35:5e:e3:aa:a4:67:78:ea:ca:7f:
1c:eb:35:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org