Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/W8imaxUjNxkZh_zDTn6ttqKXOc8.roa
File: W8imaxUjNxkZh_zDTn6ttqKXOc8.roa (raw, json)
Hash identifier: S9JArHnY5Zc1KmnMODXoQ9X+VFhdE0Vi2+IXoNoG2E4=
Subject key identifier: 5B:C8:A6:6B:15:23:37:19:19:87:FC:C3:4E:7E:AD:B6:A2:97:39:CF
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09EC
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/W8imaxUjNxkZh_zDTn6ttqKXOc8.roa
Signing time: Sun 07 Feb 2021 06:34:00 +0000
ROA not before: Sun 07 Feb 2021 06:34:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2540 (0x9ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:34:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5BC8A66B152337191987FCC34E7EADB6A29739CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1f:86:61:2c:62:07:a2:ee:a5:28:de:cd:d0:
9d:7d:0e:f8:ba:9c:51:f4:e9:89:9a:89:cd:a5:c9:
f4:36:7f:8a:28:9c:58:05:17:41:b4:d3:d4:04:26:
b4:08:5d:82:ae:cb:55:73:e1:33:d8:1d:5f:e7:a2:
1e:e7:2f:b9:8e:c4:35:14:78:2b:a4:bf:f6:a2:7c:
95:4b:69:a3:63:07:de:3e:70:29:48:d5:5e:4c:5e:
7e:5e:ef:d4:80:32:bb:49:ea:a0:88:71:7c:20:7b:
dc:3f:2a:05:57:8b:e0:4b:bd:9a:f7:0f:8e:b4:39:
a4:81:d6:0b:cf:83:46:d8:5d:6e:40:61:fb:6d:56:
64:71:cd:e1:86:60:70:d6:b9:e0:a8:40:a3:7a:08:
b9:98:f7:97:45:aa:f2:e2:79:05:a1:32:1e:ae:24:
ef:16:a7:c8:8b:42:87:de:3c:60:f3:cc:1c:12:d5:
73:45:c4:68:4b:65:46:4d:07:a9:24:10:aa:77:da:
46:64:cf:fd:8a:ca:07:b9:44:78:88:fa:41:14:3e:
43:6e:c2:67:8a:72:51:0b:10:b7:a5:e4:72:90:b2:
24:67:6c:72:8f:11:e1:1f:11:3b:45:93:85:82:da:
ab:d1:99:07:8f:43:f2:48:8b:b6:68:a2:a7:b7:86:
dc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C8:A6:6B:15:23:37:19:19:87:FC:C3:4E:7E:AD:B6:A2:97:39:CF
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/W8imaxUjNxkZh_zDTn6ttqKXOc8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
14:b0:9b:65:0a:04:fb:fa:3a:b6:55:78:73:14:c0:38:44:a8:
86:e6:d8:6d:e1:a4:39:66:a1:96:c6:88:a0:44:da:36:09:5f:
9d:0c:56:4d:57:62:7a:dd:21:44:ac:76:e4:58:0d:28:17:ec:
08:34:c9:bc:11:64:09:a7:68:f6:90:1d:eb:a3:9c:9d:b2:c9:
38:e0:69:ce:1d:b5:e1:70:db:4a:58:f1:60:bf:a9:b3:68:23:
24:96:e8:41:88:e3:4f:ca:de:81:1e:0a:78:0a:e8:51:3e:72:
e9:59:e8:df:d8:8e:49:d1:37:6d:0e:79:e9:56:0c:d7:10:bd:
1f:e4:09:95:f1:5e:2e:cf:2b:05:1b:22:88:be:54:c2:a3:bb:
2e:f9:54:c3:dd:db:7c:d2:6a:9f:54:d7:86:fb:78:b3:94:85:
17:74:bb:c1:27:ec:25:61:de:5a:b3:e8:1a:3d:84:ae:80:2e:
06:30:f5:fe:0d:f6:f8:7f:c7:7b:bc:af:af:b8:57:85:5f:d6:
34:c2:a0:f4:25:2a:7e:e7:a7:a3:a1:e3:e0:1b:95:fb:72:94:
87:ed:a5:67:2b:a4:49:8f:4d:64:73:71:f4:47:64:17:b0:af:
78:68:60:6e:14:f3:50:6b:88:0d:23:40:fa:92:8e:11:d0:e9:
ea:62:e7:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org