Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/S4WzhhwRVVuQAhFpMj94lHdi9Pw.roa
File: S4WzhhwRVVuQAhFpMj94lHdi9Pw.roa (raw, json)
Hash identifier: uOurUyKgyv79RZonphVCsu7U9NwmXnBg0M1VTjXHMgQ=
Subject key identifier: 4B:85:B3:86:1C:11:55:5B:90:02:11:69:32:3F:78:94:77:62:F4:FC
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 078D
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S4WzhhwRVVuQAhFpMj94lHdi9Pw.roa
Signing time: Tue 29 Sep 2020 09:52:51 +0000
ROA not before: Tue 29 Sep 2020 09:52:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1933 (0x78d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4B85B3861C11555B90021169323F78947762F4FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:00:f6:ad:89:e0:0b:07:34:b4:40:d5:12:e5:
c5:3e:57:e4:28:b8:e8:2d:05:df:b8:08:f0:f7:06:
1b:6f:fe:16:5b:62:c4:ff:5e:7a:52:98:fa:8c:08:
9a:57:88:d9:2e:f5:f8:48:c1:31:22:89:32:f3:e7:
70:4f:9c:fe:fe:58:ba:18:63:dd:92:da:de:d6:a2:
84:54:29:5b:1d:e0:97:bf:c9:bb:e8:98:42:96:17:
f5:ca:be:dc:b0:7f:da:58:0e:82:26:47:43:96:35:
72:db:ab:bd:ec:28:8d:80:0e:c7:0a:59:df:5a:b1:
2a:56:62:aa:51:02:68:1f:ae:be:a5:26:45:f8:0c:
38:6f:d5:42:c5:a6:b3:cf:de:73:c6:e0:cb:f4:84:
f8:91:56:bd:d7:66:33:b0:ee:1a:4e:e2:d6:e6:b4:
4b:4c:7e:df:0a:de:27:4f:44:bb:ae:e0:10:ef:2a:
d9:54:01:aa:ac:d8:84:bc:15:f4:a5:01:96:b2:82:
1b:de:4e:7d:56:c1:28:43:ed:3a:53:98:bb:a5:6e:
cb:c0:fb:a4:af:bc:1b:58:cf:e7:85:b7:1b:a8:1e:
67:1c:59:c3:b4:36:26:a1:3c:96:73:7f:5a:c9:91:
7b:9e:20:5c:99:f3:05:33:52:26:ac:e5:75:39:0f:
0e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:85:B3:86:1C:11:55:5B:90:02:11:69:32:3F:78:94:77:62:F4:FC
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S4WzhhwRVVuQAhFpMj94lHdi9Pw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:ce:5c:c3:7e:65:06:74:4f:2b:46:86:2e:7b:01:da:c2:22:
7d:92:63:93:cd:ea:c7:55:76:19:12:7b:07:51:96:77:d7:8a:
24:35:01:19:d7:76:af:2c:11:09:9f:02:c1:28:c2:e6:b8:63:
8a:e6:82:c9:d8:d5:7a:d2:cb:3f:a0:1b:28:71:f1:33:09:12:
be:4b:cf:f9:c0:f7:c5:b1:e0:ab:10:80:57:b3:5d:ce:54:7f:
ff:9d:68:cd:40:f4:cd:b9:bd:9e:9b:c7:13:5f:6f:06:86:43:
40:c6:20:b0:53:9c:b5:f7:58:3f:2f:b3:5e:c5:7e:82:40:f7:
64:db:7b:25:60:d4:6a:28:b9:2b:20:c7:41:11:8c:99:79:43:
f5:10:b1:71:23:e0:2e:79:fb:52:e4:98:91:e3:5f:68:25:89:
ee:cb:65:6d:ce:43:40:f6:db:bd:e7:c1:a2:73:be:e8:b7:f5:
d1:73:9c:5f:89:4f:69:77:7b:60:6f:86:53:6e:9f:00:c8:bc:
a5:84:7d:1e:56:c8:e1:e8:aa:c9:af:e3:8a:ca:1b:d6:22:b4:
9e:ff:b5:94:be:cf:c9:d2:55:c4:29:c9:1d:6e:2f:10:7c:0a:
8e:d5:cc:2b:7d:e7:1d:d3:49:e2:80:4b:c3:31:9c:82:cd:44:
79:52:ef:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org