Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RqBJKl2yNEcZ2aFfYodFT4paqGA.roa
File: RqBJKl2yNEcZ2aFfYodFT4paqGA.roa (raw, json)
Hash identifier: xAwwZcO6utMQZASHFTXbkVO5QnLHaw+pG84m7I86uHY=
Subject key identifier: 46:A0:49:2A:5D:B2:34:47:19:D9:A1:5F:62:87:45:4F:8A:5A:A8:60
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B84
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RqBJKl2yNEcZ2aFfYodFT4paqGA.roa
Signing time: Wed 29 Sep 2021 02:44:18 +0000
ROA not before: Wed 29 Sep 2021 02:44:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 192.72.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2948 (0xb84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=46A0492A5DB2344719D9A15F6287454F8A5AA860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:dd:37:76:d4:8d:c4:02:91:1a:5e:e8:9d:3b:
dc:7e:00:4e:ac:c9:34:5b:e8:73:d6:c3:3f:47:e9:
83:3d:f5:fe:47:31:e2:ed:0c:19:21:48:7a:6b:ce:
64:08:c4:e2:99:8c:23:63:15:e5:c5:65:20:f5:86:
99:8e:ab:56:a6:58:95:b7:5d:76:e4:3e:58:cc:27:
6a:5d:b8:ce:2e:28:9e:34:4d:67:29:8d:14:e4:5b:
08:e3:de:5d:f9:ef:f2:16:9a:5d:10:9f:e4:10:58:
e4:5a:0a:10:ac:f6:c2:13:ed:1e:df:63:5d:b8:f0:
ed:53:70:37:8f:4e:be:01:40:2b:d2:b3:0c:5a:24:
16:a7:d9:f9:21:61:f3:72:42:7b:05:91:58:32:93:
5c:25:ff:ac:2e:77:d1:ad:da:bb:70:f4:1e:e6:5b:
16:89:52:bb:ef:2c:6b:6c:47:8b:a4:de:a6:55:76:
52:19:a1:47:1e:bc:b2:37:3c:ad:75:51:d4:ec:dd:
b0:ff:95:73:8e:54:e2:39:49:9c:bd:12:51:91:75:
02:9f:0a:95:74:fc:d7:fc:71:9d:57:82:6a:05:44:
43:bb:ef:5f:dc:24:cb:77:53:5b:49:ce:18:a1:5e:
78:3a:a2:18:4d:e1:03:39:49:f3:3d:97:09:d4:9f:
23:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A0:49:2A:5D:B2:34:47:19:D9:A1:5F:62:87:45:4F:8A:5A:A8:60
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RqBJKl2yNEcZ2aFfYodFT4paqGA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.240.0/21
Signature Algorithm: sha256WithRSAEncryption
40:7c:3d:66:df:2f:6d:a7:28:97:30:ad:30:f5:e9:ff:dc:70:
12:b2:24:06:85:9e:f0:f9:f2:6c:13:2e:46:a5:31:11:ca:e1:
5f:01:86:5d:64:49:f5:26:b0:46:94:83:29:88:31:da:85:c4:
6a:94:1d:a8:dd:67:90:32:82:8f:16:13:b3:cc:87:0d:a7:ed:
20:e7:4c:a9:70:bb:93:04:eb:15:cf:17:db:3c:2d:1f:d0:36:
d6:ad:35:86:b2:ab:aa:f4:48:b0:bb:61:40:46:64:d9:34:80:
17:1a:34:9a:6c:98:ac:8c:35:8b:fd:88:3d:b1:4c:2d:5e:60:
3d:8e:e5:a9:8e:7f:2c:23:e2:a1:93:31:b0:cb:a2:81:b9:e3:
80:fe:a1:55:e8:23:be:fb:e6:9f:29:cf:b1:53:f2:06:11:2f:
f6:91:f6:bb:3c:ec:ab:ed:57:17:f3:f8:f8:bf:7d:6f:97:df:
5d:76:3c:ce:11:8f:1e:3d:67:f2:b5:98:2a:53:c8:b3:90:36:
52:1c:83:12:fb:85:c9:d0:d2:7a:28:23:22:38:c0:de:b5:83:
8d:7c:6a:06:0c:a5:47:4a:85:76:dd:ef:40:e1:95:dd:29:2d:
42:da:b4:5f:aa:b0:84:66:ad:aa:bc:97:a7:4f:fa:a2:03:44:
e9:75:da:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org