Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GhmZLaIESNHWVWUSVNNU5MDGKRo.roa
File: GhmZLaIESNHWVWUSVNNU5MDGKRo.roa (raw, json)
Hash identifier: nZf2kBvCZRV9C5YEy6rrcfHZcsfIiRmRPVMSM9TFWVk=
Subject key identifier: 1A:19:99:2D:A2:04:48:D1:D6:55:65:12:54:D3:54:E4:C0:C6:29:1A
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B81
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GhmZLaIESNHWVWUSVNNU5MDGKRo.roa
Signing time: Wed 29 Sep 2021 02:44:16 +0000
ROA not before: Wed 29 Sep 2021 02:44:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2945 (0xb81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1A19992DA20448D1D655651254D354E4C0C6291A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:af:0c:52:1e:2b:29:f1:3f:67:48:75:bb:
71:b5:3f:63:6a:63:2f:df:44:b3:33:b1:fa:bf:2b:
97:aa:05:b4:ea:d0:48:bb:c4:a3:08:f3:3c:0e:91:
c8:ef:4d:59:e3:e0:c4:06:85:d4:56:39:04:81:2c:
41:59:3a:6a:26:7a:43:6a:83:7a:a9:33:41:26:4d:
86:e6:11:79:69:ab:da:97:7e:62:0b:21:52:68:80:
60:9f:d5:92:32:b2:0a:9a:74:56:29:75:83:46:a4:
4e:d3:bc:34:52:ec:cd:3f:02:1b:35:ca:05:da:cd:
9f:96:d2:77:1d:bf:7b:55:13:7a:34:ec:8d:fc:b2:
50:31:a7:b4:0a:a8:01:57:af:fc:20:89:97:67:1d:
93:ae:94:53:6e:7b:9c:ae:50:5d:1d:56:58:f4:35:
35:78:91:62:fe:22:bf:fc:94:b6:12:d6:1b:99:45:
9d:aa:33:c0:f0:26:b1:4f:cc:75:20:04:4b:f6:aa:
93:24:64:0c:2d:1f:22:6e:31:aa:4e:82:ce:14:4a:
0d:58:b1:46:ee:29:41:d2:06:e6:e2:47:e4:f6:a6:
b9:7a:f5:df:1e:ec:46:15:a5:82:9b:a6:14:96:a7:
cb:de:4c:31:60:f6:0b:48:4c:70:77:43:20:33:31:
7f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:19:99:2D:A2:04:48:D1:D6:55:65:12:54:D3:54:E4:C0:C6:29:1A
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GhmZLaIESNHWVWUSVNNU5MDGKRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3f:e0:8e:a4:03:bf:15:97:72:58:7c:95:2c:dc:a0:23:f3:b8:
b9:37:94:1c:49:dd:c9:a7:cb:ac:17:18:3a:4f:33:51:e1:b0:
83:93:18:6b:44:a7:4f:4a:b6:45:bb:9e:5e:22:17:7e:a6:fd:
a4:18:3c:c5:9d:9e:1b:d2:ed:8b:6a:85:6f:0e:4d:a9:c9:2d:
d7:6b:0e:c7:6b:5b:74:49:b2:4b:fc:92:7b:d8:bd:0f:43:69:
68:5a:f8:be:b8:bf:90:06:19:41:4e:61:8a:d2:7a:bb:d9:f0:
2a:27:d8:19:f0:c1:08:45:ce:40:e1:0c:d0:06:04:49:2d:e6:
ce:0e:08:05:4c:a2:85:a5:ea:5a:20:96:23:ba:27:d8:7c:b1:
be:33:98:e9:f7:7d:4d:3d:cc:b1:f4:33:9a:03:f1:62:6a:bf:
80:d1:25:8f:72:cb:86:fa:f8:7c:00:0f:14:74:62:5e:74:73:
3a:3c:27:0c:94:52:dc:36:b0:6e:ac:43:30:78:32:ec:6d:4e:
30:1f:1e:8b:8e:be:7a:d0:6d:7f:15:aa:1a:0e:d8:80:a9:22:
69:e6:3c:d6:1a:b7:d8:db:ef:a2:67:7c:ad:92:cf:8e:a6:59:
ea:ac:37:af:a4:b0:0f:1c:da:51:96:40:89:17:fd:e9:e0:d5:
b0:e7:2a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org