Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GuABtK-lVqC80H_2AYl6d1hWDOA.roa
File: GuABtK-lVqC80H_2AYl6d1hWDOA.roa (raw, json)
Hash identifier: y7GVY00SJyXdd4bVR2fyGfRi/vGpAYgNHvskeIxhbjU=
Subject key identifier: 1A:E0:01:B4:AF:A5:56:A0:BC:D0:7F:F6:01:89:7A:77:58:56:0C:E0
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 078F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GuABtK-lVqC80H_2AYl6d1hWDOA.roa
Signing time: Tue 29 Sep 2020 09:52:51 +0000
ROA not before: Tue 29 Sep 2020 09:52:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1935 (0x78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1AE001B4AFA556A0BCD07FF601897A7758560CE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ec:1a:07:35:d2:df:6f:2b:46:cf:61:60:57:
26:6c:7d:29:8f:23:5c:b2:44:2f:c0:3c:f5:6a:8d:
89:a1:31:83:35:36:aa:a4:00:40:7f:e2:cd:f5:8f:
dc:f5:a9:d7:b5:55:c0:c3:c7:7b:d1:86:bb:91:10:
f1:ac:59:df:85:df:e8:18:81:a0:0b:b0:2c:3b:3b:
94:48:82:e7:49:6c:d0:4d:32:95:4d:8e:27:53:40:
83:d8:28:9c:75:3a:f3:c0:19:c2:42:aa:26:b5:6e:
fb:61:f4:fe:8c:e0:c2:b2:3f:1e:0b:a5:fc:ea:ff:
30:41:80:be:e7:8b:75:d1:a3:a1:ca:8b:b1:65:d5:
44:ee:98:73:7e:fb:ff:5a:03:a0:ad:99:06:da:60:
4b:c3:64:9f:61:5a:25:90:c5:47:79:a9:ba:c8:43:
b7:3c:bc:26:55:e1:f5:ba:9d:22:d2:ac:91:d1:63:
17:ec:b5:3d:3a:07:81:44:94:18:a4:a3:59:9f:11:
0f:cb:e0:0b:7f:2f:94:1d:21:de:96:75:fe:49:df:
75:ae:f1:e8:04:4e:9f:37:57:7e:fe:12:ef:cb:4b:
a7:cf:c5:5c:2c:ed:de:46:de:ff:78:ed:d6:d4:b8:
dd:bc:97:e4:91:43:18:50:f1:2e:2b:24:0f:a8:ad:
8c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E0:01:B4:AF:A5:56:A0:BC:D0:7F:F6:01:89:7A:77:58:56:0C:E0
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GuABtK-lVqC80H_2AYl6d1hWDOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.240.0/21
Signature Algorithm: sha256WithRSAEncryption
50:0b:fb:82:d9:e6:b2:0f:be:24:bd:f2:83:8d:c7:96:cb:9f:
77:12:f4:85:e1:36:54:c4:0b:d7:1e:b8:57:54:10:d1:d0:5d:
91:59:62:45:14:35:85:22:5e:aa:8a:52:92:e7:de:3c:8c:99:
f4:1b:ea:94:3d:07:b0:d3:3b:60:39:90:91:92:ca:a0:b8:60:
d0:f0:03:5a:18:f4:d5:97:59:bd:fd:c5:8a:2e:36:f5:44:7c:
50:99:29:71:e6:8f:2c:70:69:20:b3:4e:4e:10:4c:70:3e:b4:
75:f8:12:82:ca:87:0b:68:fa:6b:16:48:51:97:f3:4d:aa:48:
19:81:1d:83:28:05:48:b9:f9:1c:f7:d2:dd:6e:fd:83:e3:23:
ec:a4:96:77:57:06:31:7b:b0:5e:3a:30:d1:b7:a4:82:b5:1c:
1a:e0:8c:9b:a9:90:9c:c4:87:e1:84:2b:a1:86:47:be:a5:cc:
5e:6e:2f:3c:98:c0:67:10:4b:8d:2e:62:fe:15:b0:31:45:66:
dd:99:bd:0b:3b:39:ef:72:6b:d5:a1:af:4c:a7:bf:19:7c:eb:
2d:f0:00:05:70:13:9c:0d:b3:7d:26:2c:cd:ca:14:36:e6:66:
ee:14:d2:64:6b:a2:c0:f1:4a:ee:b2:be:1c:38:c7:6b:3e:3f:
09:6c:5d:e7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICB48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMDA5Mjkw
OTUyNTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFBRTAwMUI0QUZBNTU2
QTBCQ0QwN0ZGNjAxODk3QTc3NTg1NjBDRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC77BoHNdLfbytGz2FgVyZsfSmPI1yyRC/APPVqjYmhMYM1Nqqk
AEB/4s31j9z1qde1VcDDx3vRhruREPGsWd+F3+gYgaALsCw7O5RIgudJbNBNMpVN
jidTQIPYKJx1OvPAGcJCqia1bvth9P6M4MKyPx4Lpfzq/zBBgL7ni3XRo6HKi7Fl
1UTumHN++/9aA6CtmQbaYEvDZJ9hWiWQxUd5qbrIQ7c8vCZV4fW6nSLSrJHRYxfs
tT06B4FElBiko1mfEQ/L4At/L5QdId6Wdf5J33Wu8egETp83V37+Eu/LS6fPxVws
7d5G3v947dbUuN28l+SRQxhQ8S4rJA+orYwnAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUGuABtK+lVqC80H/2AYl6d1hWDOAwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvR3VBQnRLLWxWcUM4MEhfMkFZbDZk
MWhXRE9BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BI8DAN
BgkqhkiG9w0BAQsFAAOCAQEAUAv7gtnmsg++JL3yg43HlsufdxL0heE2VMQL1x64
V1QQ0dBdkVliRRQ1hSJeqopSkufePIyZ9BvqlD0HsNM7YDmQkZLKoLhg0PADWhj0
1ZdZvf3Fii429UR8UJkpceaPLHBpILNOThBMcD60dfgSgsqHC2j6axZIUZfzTapI
GYEdgygFSLn5HPfS3W79g+Mj7KSWd1cGMXuwXjow0bekgrUcGuCMm6mQnMSH4YQr
oYZHvqXMXm4vPJjAZxBLjS5i/hWwMUVm3Zm9Czs573Jr1aGvTKe/GXzrLfAABXAT
nA2zfSYszcoUNuZm7hTSZGuiwPFK7rK+HDjHaz4/CWxd5w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org