Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SvHmR2zcXv5t9o1Eo-jmOrb9BXs.roa
File: SvHmR2zcXv5t9o1Eo-jmOrb9BXs.roa (raw, json)
Hash identifier: Zvexa44wSF+oPCnMClFn02F1RoysgockcPrKRL+jc5U=
Subject key identifier: 4A:F1:E6:47:6C:DC:5E:FE:6D:F6:8D:44:A3:E8:E6:3A:B6:FD:05:7B
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A17
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SvHmR2zcXv5t9o1Eo-jmOrb9BXs.roa
Signing time: Sun 07 Feb 2021 06:39:24 +0000
ROA not before: Sun 07 Feb 2021 06:39:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2583 (0xa17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:39:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4AF1E6476CDC5EFE6DF68D44A3E8E63AB6FD057B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8e:df:9c:bd:15:28:0f:4f:e1:e3:43:34:e9:
3e:bd:72:7a:76:6d:80:a1:6f:c5:55:87:25:7f:50:
36:fc:ce:1b:a2:85:a8:ce:9a:75:86:3c:84:90:c2:
c7:09:e4:4d:cc:af:fe:f3:38:e1:57:64:1f:53:74:
65:0a:94:64:08:2e:35:10:52:20:7a:97:b8:96:75:
18:5c:11:22:5c:20:ed:3d:29:07:75:73:24:28:5c:
18:13:db:d1:08:86:15:2c:3d:3c:fe:ae:9d:1e:ca:
60:0e:37:2a:2f:13:8e:66:9a:b4:d8:6a:40:a2:c7:
c4:28:a3:b2:cd:25:51:4a:4c:d1:9c:df:bd:76:3c:
05:80:76:c1:70:f9:6a:3e:55:8f:61:be:4d:db:4b:
08:1a:ff:d2:16:ef:0c:02:da:53:9d:8a:31:48:eb:
d7:eb:a8:9b:18:4e:de:c3:b4:35:30:b9:87:bb:59:
ee:0e:55:f5:24:40:a0:d2:e0:c5:9e:a2:b2:ea:f0:
0c:ac:c6:fb:21:97:51:7f:1a:a8:cc:e0:e4:d5:f8:
96:de:e7:7c:bd:48:13:a4:0c:ba:a9:b5:bc:e6:5d:
1f:fb:8c:6b:25:5d:56:b0:e5:a0:88:f2:b2:de:9d:
99:a9:10:c6:73:e9:42:81:93:2c:a6:80:20:60:b4:
65:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F1:E6:47:6C:DC:5E:FE:6D:F6:8D:44:A3:E8:E6:3A:B6:FD:05:7B
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SvHmR2zcXv5t9o1Eo-jmOrb9BXs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
08:f6:2f:03:4c:d7:4c:d9:ea:7a:b5:4e:fd:1a:0d:cf:c7:9b:
b6:b0:55:f6:88:d9:ba:3a:5a:a7:4c:b2:f6:f2:ca:5f:2e:e3:
3a:d8:a2:51:37:69:65:f2:fc:36:55:54:4b:64:bf:5c:11:d8:
b0:80:c4:58:40:ea:97:78:46:8d:7b:5f:36:8f:0a:be:f2:98:
56:cb:ff:05:75:fe:9b:19:c2:8d:36:06:82:80:93:a6:e1:77:
f1:71:5e:60:26:40:c8:d8:a2:6b:68:64:12:3e:f3:c2:75:c0:
b5:cc:3d:3d:42:0c:15:f1:ec:ce:6a:ea:99:47:66:c5:26:93:
04:34:c4:67:19:2e:13:54:48:f8:2b:e1:3c:98:00:06:03:99:
16:f3:cb:50:16:a0:09:a5:f8:2a:19:cc:9e:25:03:8a:51:57:
b8:dc:73:32:32:7d:b0:ac:ef:56:cf:d5:71:f1:db:6e:ec:5c:
31:c5:51:d0:81:40:07:2a:7f:f9:73:ed:bc:e9:ea:15:01:d2:
ac:5b:4f:62:7f:9e:69:62:63:8c:d6:b0:31:13:62:3c:81:f1:
60:32:9b:22:15:14:da:6f:11:a9:0a:34:65:70:25:80:c9:16:
a7:08:45:2f:ed:8b:34:e9:ab:c1:58:b8:e3:f2:2b:f5:54:90:
29:93:d5:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org