Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UwT8T2Ffm2NMd4htjjW5KxKYaQk.roa
File: UwT8T2Ffm2NMd4htjjW5KxKYaQk.roa (raw, json)
Hash identifier: 8NjAUA/vKl6iYuFQfoVkywiuV4Z55BYL2pMwzrSiKBA=
Subject key identifier: 53:04:FC:4F:61:5F:9B:63:4C:77:88:6D:8E:35:B9:2B:12:98:69:09
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 08A6
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UwT8T2Ffm2NMd4htjjW5KxKYaQk.roa
Signing time: Tue 24 Nov 2020 09:17:19 +0000
ROA not before: Tue 24 Nov 2020 09:17:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2214 (0x8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Nov 24 09:17:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5304FC4F615F9B634C77886D8E35B92B12986909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f4:10:64:79:8e:6d:79:ae:4e:60:42:47:49:
a5:9c:3d:71:9d:a4:fb:db:6f:60:37:de:ca:eb:3f:
19:74:18:77:79:d3:26:c2:b6:4b:4c:f7:94:45:e4:
f1:e5:dc:39:ef:c5:74:4e:3e:a9:3b:0f:46:26:73:
f7:21:b4:82:10:2e:3f:b2:32:2e:30:f1:65:d5:da:
7e:86:c2:00:98:7d:4a:02:7b:7c:15:b7:c7:c5:f8:
d2:08:ca:99:ef:81:17:f9:fb:6e:a9:2b:dd:d9:0a:
85:80:56:d2:4d:5b:dd:cc:ca:c5:56:76:63:21:59:
96:8b:fb:b0:93:1d:05:37:77:1a:33:48:e3:6a:bb:
32:0c:59:53:a5:c2:37:20:85:7e:80:24:46:30:3b:
d5:68:3e:e9:9b:46:83:44:23:a9:70:d6:5a:0d:bb:
c4:a8:2a:10:91:e1:6d:ea:0e:5f:2b:6c:43:c5:8e:
4f:18:7d:6b:68:09:db:6c:21:92:c3:00:7a:84:08:
20:0c:71:6a:9c:43:c3:e5:a2:76:83:b1:ca:4f:2f:
a9:78:9b:c0:bc:b9:4a:69:c8:ec:3c:a7:e7:94:46:
8e:57:19:47:cd:d0:06:72:9f:b0:6a:62:e0:83:9d:
91:39:ae:2a:ac:fe:ed:a3:16:dd:64:d5:c5:4d:21:
70:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:04:FC:4F:61:5F:9B:63:4C:77:88:6D:8E:35:B9:2B:12:98:69:09
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UwT8T2Ffm2NMd4htjjW5KxKYaQk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:73:2d:e1:7d:9c:87:1b:48:bf:d8:24:6c:dc:17:8e:0d:85:
bb:5a:52:70:eb:a7:ac:45:44:cb:c3:5a:5b:e0:66:04:62:16:
7a:85:26:29:5b:98:d6:bb:5d:bc:5e:d2:58:3f:40:04:31:ae:
81:5c:42:05:1c:c4:36:b1:1a:a5:be:4f:0f:87:ce:dc:39:80:
56:62:e9:e0:21:93:92:5e:c0:01:d8:f1:82:ba:4a:8d:a5:6d:
19:be:d2:d4:57:0a:2a:96:6f:7a:b0:c0:af:b2:fc:c3:18:92:
56:71:d3:85:6f:d4:68:0f:4d:14:56:6d:77:3e:cc:62:40:7d:
87:a0:cd:37:64:4e:87:9f:a2:78:ac:92:0e:89:ac:85:fb:6e:
66:58:ba:7e:53:3d:38:e3:37:28:69:4e:02:4f:64:5b:10:a0:
9d:d0:c3:75:f5:ba:06:50:3f:a9:92:fb:53:91:77:4f:33:0f:
ce:76:d3:6b:82:6c:77:b2:8e:e2:90:8c:8d:b7:02:74:3f:5c:
60:35:89:46:b0:b6:f1:40:2a:35:82:d5:2b:5f:6f:fd:b2:7f:
0a:ef:11:ac:f1:01:39:16:79:2c:dc:e1:71:08:7c:a1:22:8e:
ab:2b:9c:c0:94:ef:24:18:48:18:0d:49:59:82:06:4a:f8:29:
27:2f:2d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org