Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UjISmiYI2bsNZ-dmM-Tk0RyPp6k.roa
File: UjISmiYI2bsNZ-dmM-Tk0RyPp6k.roa (raw, json)
Hash identifier: Bxz1TJf610xVy3ecg/JeVN/w7Jn9FspdrKTHOnzr1Hw=
Subject key identifier: 52:32:12:9A:26:08:D9:BB:0D:67:E7:66:33:E4:E4:D1:1C:8F:A7:A9
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A06
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UjISmiYI2bsNZ-dmM-Tk0RyPp6k.roa
Signing time: Sun 07 Feb 2021 06:37:34 +0000
ROA not before: Sun 07 Feb 2021 06:37:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2566 (0xa06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:37:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5232129A2608D9BB0D67E76633E4E4D11C8FA7A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b5:20:73:e3:03:46:00:11:58:9d:cc:c3:cc:
5b:0e:1a:d2:9b:91:e7:eb:cc:35:64:30:69:19:98:
8e:af:5d:95:2b:50:56:3d:fc:a3:95:e0:cf:e8:e6:
f3:58:dc:06:a7:6c:87:1a:b8:1f:08:da:54:bf:22:
c9:b3:b1:49:ff:05:7c:64:3a:be:c3:52:c4:de:8e:
55:36:a5:8e:f1:1e:9f:d5:9c:a3:b9:4f:70:54:54:
dc:78:6d:82:9d:bc:2c:1c:96:cc:ab:9b:73:fa:02:
2e:49:d3:0a:ad:f8:58:b9:ef:20:e0:cd:d0:cb:6f:
66:0b:0d:b3:80:a1:af:bf:1d:26:35:b1:73:a1:1e:
7f:60:1c:fe:d8:77:51:71:a0:e6:05:10:3a:db:1d:
9f:f9:11:3b:2f:53:e7:53:6f:f5:48:3b:1a:8b:c5:
6a:89:78:f5:79:18:8d:04:42:ed:aa:93:7c:92:5c:
3c:0c:00:33:26:30:cf:73:c4:b5:65:bb:6a:10:aa:
a3:f6:5e:0b:24:ce:29:3f:97:b2:b3:06:bc:ae:7c:
ed:94:bd:58:36:90:68:1b:c7:63:66:86:4d:ef:b5:
02:b1:3a:9b:53:ef:22:0f:d6:dd:dc:4c:20:59:b7:
c0:c9:cc:1e:e1:de:43:05:75:91:eb:81:3b:5f:bf:
af:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:32:12:9A:26:08:D9:BB:0D:67:E7:66:33:E4:E4:D1:1C:8F:A7:A9
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UjISmiYI2bsNZ-dmM-Tk0RyPp6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
12:cf:e3:08:94:5b:d9:49:d3:a8:22:41:99:52:23:c5:ee:a8:
22:d3:06:5b:af:c1:bf:58:2b:58:d6:b5:e8:36:fa:9a:01:bb:
26:cb:e0:3d:20:db:d6:71:74:9b:d6:31:7b:6c:31:2e:bb:3c:
73:72:eb:ce:00:87:55:d5:57:11:5f:20:0b:ad:64:7a:3a:28:
d7:b1:9c:cc:30:68:eb:e2:c1:f7:4a:b2:4c:62:79:7f:a0:97:
02:9c:02:a0:2f:32:b0:cd:e0:c1:b6:4e:82:a2:46:65:cc:8d:
c2:51:cf:7f:ea:53:b0:4a:ad:22:32:8b:17:56:1f:82:8f:36:
03:46:a8:71:c9:a2:cc:9d:f7:95:4e:d8:33:73:5f:1e:c8:79:
c0:91:41:ae:a7:19:f2:43:91:21:55:4a:fc:83:e4:d0:25:c1:
6c:3b:80:ee:4e:5e:e0:0e:c8:f3:a2:43:ef:fb:30:38:ee:73:
5b:da:51:f2:02:a9:1d:49:74:89:0c:41:9b:52:ca:66:43:9a:
c0:1e:e3:bd:1f:fa:0d:d7:bc:0d:d2:2c:84:93:fc:42:9e:69:
d6:be:c1:39:31:b5:ee:67:27:b7:f7:6b:17:26:41:d3:4d:8c:
d6:4e:20:20:71:2d:81:8e:30:2f:41:da:4c:68:6b:9e:d3:f4:
97:94:ed:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org