Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GTeOn9NOg-R2R3JegVxJK68LDIs.roa
File: GTeOn9NOg-R2R3JegVxJK68LDIs.roa (raw, json)
Hash identifier: n2Mg/6kxba0RZ8Z55yfk0mAoBla61M2lb9no9RmbqCw=
Subject key identifier: 19:37:8E:9F:D3:4E:83:E4:76:47:72:5E:81:5C:49:2B:AF:0B:0C:8B
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B7A
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GTeOn9NOg-R2R3JegVxJK68LDIs.roa
Signing time: Wed 29 Sep 2021 02:44:15 +0000
ROA not before: Wed 29 Sep 2021 02:44:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2938 (0xb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=19378E9FD34E83E47647725E815C492BAF0B0C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:99:9c:3b:42:7e:2c:9f:2b:3c:a2:ca:2d:02:
9f:89:38:a2:64:86:f5:1b:c3:07:55:61:1f:6e:a2:
d1:6e:8b:b3:ce:17:0b:53:86:3d:a3:1c:e5:8a:ae:
b9:cb:43:77:d9:71:83:d0:3c:78:d0:f6:1b:b5:31:
c5:e7:ec:bf:cf:eb:d4:00:81:46:a9:ac:63:b7:03:
bf:df:c6:fc:f6:65:b6:dc:56:eb:e7:d9:99:6b:de:
53:73:61:be:02:c2:8c:fb:8c:b0:5a:d4:9c:31:ac:
3c:38:c9:82:c5:ae:f9:37:1b:cf:59:76:fa:6c:15:
85:22:4a:6a:05:b6:f4:76:49:30:ba:2f:3b:44:48:
e6:61:37:fd:ed:ea:46:41:d0:dd:db:df:18:3f:db:
01:5b:3d:4e:db:b9:57:44:a0:43:0e:aa:81:1d:c2:
1a:48:8d:e0:31:45:ce:95:74:e5:e0:57:04:fd:21:
e8:d6:ce:f0:8e:ab:f2:0c:eb:f1:3c:54:45:69:56:
8a:d8:1f:1c:2f:2f:02:76:4b:c4:1f:62:91:dc:e2:
e3:36:e5:ea:7f:6c:ba:fd:11:18:bd:c1:94:b8:d0:
99:7a:c5:d1:b8:de:5c:b1:ba:ce:1f:19:fc:f0:71:
cf:b0:eb:01:76:0d:9f:06:38:27:63:e0:8d:72:3e:
63:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:37:8E:9F:D3:4E:83:E4:76:47:72:5E:81:5C:49:2B:AF:0B:0C:8B
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GTeOn9NOg-R2R3JegVxJK68LDIs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.16.0/20
Signature Algorithm: sha256WithRSAEncryption
27:65:93:cc:95:59:2a:e5:8f:9c:22:4d:8a:bc:e7:3e:8f:c2:
01:9c:9b:c8:1b:15:66:43:5f:37:e8:43:55:56:a6:96:cf:a9:
c9:29:a2:48:f7:09:5e:dd:1e:69:05:c2:ed:03:08:54:49:20:
59:cd:70:59:9d:84:43:12:0d:f7:75:dd:d4:14:1a:bf:40:6c:
2e:f3:36:b7:5f:97:8b:f9:f4:97:50:44:4e:6c:b9:7e:23:5d:
5c:c7:09:0f:cc:32:72:b0:bd:50:f8:28:bf:2a:c8:7b:83:50:
63:c5:44:e8:9f:7a:f6:bc:43:f8:1a:6f:f0:52:eb:a5:20:c8:
ce:46:54:ba:e6:ef:ad:83:30:42:e3:80:e4:db:05:4b:78:d5:
ca:16:60:68:49:53:8e:92:3c:85:56:e3:fc:c2:f3:aa:6c:84:
0d:02:e5:b2:2a:ab:81:62:8e:f8:b9:96:22:2b:15:d0:04:29:
e2:36:61:c2:a8:7f:ef:cb:56:41:f2:2c:47:e3:1a:bc:a2:4c:
11:f8:b1:85:3c:5c:a7:f7:48:d4:1b:ea:cd:99:c5:d5:be:b4:
24:22:9a:55:3e:52:80:9b:6a:93:7e:36:ba:4c:18:89:b1:00:
6a:d1:b0:ee:53:14:35:d2:44:79:80:cb:96:a6:63:e3:a3:8d:
62:f4:0f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org