Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LGZ2JPkOLDls9Vr77ErPUwsdRqY.roa
File: LGZ2JPkOLDls9Vr77ErPUwsdRqY.roa (raw, json)
Hash identifier: bjdP2MunaWpgB2WW6rTNCd4v8VAvlu4h+WCU7IWjLeo=
Subject key identifier: 2C:66:76:24:F9:0E:2C:39:6C:F5:5A:FB:EC:4A:CF:53:0B:1D:46:A6
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A08
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LGZ2JPkOLDls9Vr77ErPUwsdRqY.roa
Signing time: Sun 07 Feb 2021 06:37:41 +0000
ROA not before: Sun 07 Feb 2021 06:37:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2568 (0xa08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:37:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2C667624F90E2C396CF55AFBEC4ACF530B1D46A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9b:a6:0d:a2:82:f7:2d:0c:c2:14:2b:75:b6:
77:e0:44:67:07:be:f5:db:54:5a:5b:4c:c0:1b:5b:
77:6c:be:f5:f8:4e:ab:de:2c:28:88:4f:f8:1d:a0:
34:57:0f:89:55:b1:c5:33:98:88:81:62:f2:63:71:
d6:9b:84:38:a8:f6:d0:d5:ae:90:40:35:be:c4:94:
42:a1:d2:5a:bb:b0:d8:65:1b:53:66:74:7b:14:c0:
79:ed:5c:51:f4:1d:95:ab:7f:69:04:84:1f:a3:48:
33:46:bb:08:f4:fd:ce:16:8a:39:bd:fd:bf:04:35:
96:15:25:db:30:fb:4d:a1:05:d4:07:9f:79:fd:a6:
c4:b7:0f:6e:df:8f:62:64:5f:3a:02:3b:5e:57:69:
82:7e:cb:29:6f:0f:5e:d5:f3:97:cc:41:ae:f7:0f:
d7:f6:df:78:1b:a7:07:87:67:60:40:9d:38:36:73:
03:d3:25:bd:81:9d:b2:d0:95:58:ca:bd:32:09:0e:
dd:30:1f:f9:51:42:2a:18:5c:83:25:a3:20:43:2c:
bd:b7:e4:b7:ca:fc:5d:b2:f4:ae:53:34:d4:b2:dd:
31:85:c3:72:9f:87:55:44:a0:41:50:3e:bf:68:68:
4d:06:94:44:29:83:3a:45:33:79:3d:df:e0:39:20:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:66:76:24:F9:0E:2C:39:6C:F5:5A:FB:EC:4A:CF:53:0B:1D:46:A6
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LGZ2JPkOLDls9Vr77ErPUwsdRqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.3.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:b7:e0:1d:05:3d:4d:3c:9f:26:8e:da:30:4d:22:d1:91:84:
ef:de:08:3f:c5:af:eb:3d:e8:62:3b:5b:ad:8c:9b:09:30:01:
29:a9:4a:91:f5:e6:51:f5:84:82:0d:37:81:72:21:fc:46:ea:
de:b1:0a:ca:95:5f:00:6c:cd:96:b3:a4:f9:50:53:46:49:c5:
3d:d8:21:d3:a7:89:61:98:e3:d8:2c:cb:5d:d7:73:f9:de:27:
02:0f:5c:c0:22:4d:14:3a:e9:7f:45:64:01:69:71:1e:48:8b:
52:7a:2f:2c:b8:6e:97:f3:a0:ca:73:da:6f:6f:7f:08:21:ce:
eb:eb:c0:ad:18:cc:e1:aa:87:a9:c6:24:48:25:bc:6a:1c:c8:
67:53:7c:38:d5:0a:23:fb:4e:bd:51:d4:82:9e:fa:87:c7:54:
0d:12:91:3f:d6:b6:ed:ce:c4:71:67:89:66:a4:26:3a:f1:05:
4b:b9:a1:82:6b:b0:e1:ed:09:4f:ee:6c:b6:65:0e:f5:ce:56:
9c:76:3c:a4:1e:e4:83:d3:5a:6b:0b:5a:d7:f2:b3:c2:23:c7:
a7:5b:c7:9a:cc:20:ec:92:d7:cd:da:3e:c7:eb:36:48:12:36:
8a:38:46:98:c2:6a:70:d9:7e:cb:69:60:6e:33:f7:8b:45:bd:
d6:4c:ca:c2
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCggwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjM3NDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJDNjY3NjI0RjkwRTJD
Mzk2Q0Y1NUFGQkVDNEFDRjUzMEIxRDQ2QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDim6YNooL3LQzCFCt1tnfgRGcHvvXbVFpbTMAbW3dsvvX4Tqve
LCiIT/gdoDRXD4lVscUzmIiBYvJjcdabhDio9tDVrpBANb7ElEKh0lq7sNhlG1Nm
dHsUwHntXFH0HZWrf2kEhB+jSDNGuwj0/c4Wijm9/b8ENZYVJdsw+02hBdQHn3n9
psS3D27fj2JkXzoCO15XaYJ+yylvD17V85fMQa73D9f233gbpweHZ2BAnTg2cwPT
Jb2BnbLQlVjKvTIJDt0wH/lRQioYXIMloyBDLL235LfK/F2y9K5TNNSy3TGFw3Kf
h1VEoEFQPr9oaE0GlEQpgzpFM3k93+A5IK3PAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQULGZ2JPkOLDls9Vr77ErPUwsdRqYwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTEdaMkpQa09MRGxzOVZyNzdFclBV
d3NkUnFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBIAzAN
BgkqhkiG9w0BAQsFAAOCAQEAjrfgHQU9TTyfJo7aME0i0ZGE794IP8Wv6z3oYjtb
rYybCTABKalKkfXmUfWEgg03gXIh/Ebq3rEKypVfAGzNlrOk+VBTRknFPdgh06eJ
YZjj2CzLXddz+d4nAg9cwCJNFDrpf0VkAWlxHkiLUnovLLhul/OgynPab29/CCHO
6+vArRjM4aqHqcYkSCW8ahzIZ1N8ONUKI/tOvVHUgp76h8dUDRKRP9a27c7EcWeJ
ZqQmOvEFS7mhgmuw4e0JT+5stmUO9c5WnHY8pB7kg9Naawta1/KzwiPHp1vHmswg
7JLXzdo+x+s2SBI2ijhGmMJqcNl+y2lgbjP3i0W91kzKwg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org