Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Le5XagPDg5QXEajg9SuMaakY0ys.roa
File: Le5XagPDg5QXEajg9SuMaakY0ys.roa (raw, json)
Hash identifier: KqvNpGdAPO05xJWbyul5oFDsAPibkLIIWnvXz1OMfuc=
Subject key identifier: 2D:EE:57:6A:03:C3:83:94:17:11:A8:E0:F5:2B:8C:69:A9:18:D3:2B
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B73
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Le5XagPDg5QXEajg9SuMaakY0ys.roa
Signing time: Wed 29 Sep 2021 02:44:13 +0000
ROA not before: Wed 29 Sep 2021 02:44:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2931 (0xb73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2DEE576A03C383941711A8E0F52B8C69A918D32B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:32:23:ef:56:07:bd:f0:0c:bb:60:86:63:23:
a7:a9:4d:ea:d0:56:9c:1e:4f:4c:15:21:7a:96:77:
8f:5e:4f:83:c6:db:af:99:82:be:fd:bf:8d:c4:56:
37:39:b9:79:0b:39:98:9e:41:eb:e2:61:90:bb:fd:
18:1a:a5:79:15:3f:bb:8b:30:b5:c4:39:61:48:3f:
41:2a:10:e9:28:c0:b3:5c:5f:97:92:00:c9:a7:c0:
ed:34:0b:42:a0:51:a4:4b:6d:92:bb:38:d4:42:78:
36:09:c4:fc:14:6d:8e:93:ed:cb:4d:49:95:82:8f:
a9:94:23:7b:50:76:81:09:c7:fa:0c:77:16:cf:0d:
26:dd:0c:2d:bd:30:f6:05:e2:bd:03:c2:87:e6:59:
55:9e:47:49:26:31:8d:35:67:91:6c:b5:73:36:a0:
4b:75:46:0a:8f:19:2a:4c:b8:fd:99:d1:8c:70:cd:
4d:bd:10:8b:c6:4e:97:79:8a:98:b6:a4:9d:33:b7:
bd:c6:14:83:c4:91:ab:58:d4:2c:8e:d6:53:3e:6f:
97:5d:43:26:a6:25:32:4d:59:d5:58:4f:01:72:45:
59:1a:19:fe:bf:69:b6:91:1c:f0:12:47:c2:a2:ee:
d2:0b:6f:81:cb:dd:ff:0e:ff:f2:cb:78:34:fc:a0:
5e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EE:57:6A:03:C3:83:94:17:11:A8:E0:F5:2B:8C:69:A9:18:D3:2B
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Le5XagPDg5QXEajg9SuMaakY0ys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:cf:a0:cb:15:2b:f1:cf:ca:98:bf:ff:8d:63:38:d7:e3:85:
1c:e7:93:ce:2c:d5:77:6a:5b:e0:f0:cd:80:cf:ba:23:74:f0:
82:f6:ea:32:ee:00:66:a3:f7:6d:24:8b:51:6d:23:f6:ff:51:
4b:27:ad:a7:1d:2f:17:5e:a7:15:0c:4c:75:dc:e2:5e:81:ec:
16:50:57:81:09:22:74:6a:f2:ee:90:cb:5e:4a:bc:7e:59:f7:
65:45:85:66:f6:84:a6:d5:db:35:f9:86:d8:74:0b:62:d0:b8:
99:cf:b4:5d:91:e2:1e:0c:5e:b5:86:8a:83:1b:f6:18:22:57:
4d:07:a3:ab:7d:c3:92:3e:64:99:63:5d:da:03:24:bf:33:a4:
87:75:c3:45:4e:2d:5a:58:99:a6:cb:9d:be:3e:1f:a3:5a:e7:
14:c8:cc:a1:41:1e:2f:88:50:56:87:53:28:ee:1a:de:a1:11:
6a:07:ed:e2:15:25:05:6d:9d:ef:64:40:ac:1d:9f:e6:27:94:
20:00:e8:f7:5b:b5:ab:a2:d5:b0:c9:6a:f0:ef:73:c6:bb:04:
34:89:94:22:0c:c5:af:5b:0c:ff:3f:8d:a7:3a:05:72:66:3d:
ba:86:64:d9:76:e9:33:dc:14:b0:a9:ce:37:eb:a6:18:a3:c8:
51:67:bc:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org