Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WIPxPHq8kJDE6P-ySrzA_FMb4PE.roa
File: WIPxPHq8kJDE6P-ySrzA_FMb4PE.roa (raw, json)
Hash identifier: 1G8zbsqw0pi8/0+6y2hpfvaS026SueI36GJgUBUxZt4=
Subject key identifier: 58:83:F1:3C:7A:BC:90:90:C4:E8:FF:B2:4A:BC:C0:FC:53:1B:E0:F1
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 078B
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WIPxPHq8kJDE6P-ySrzA_FMb4PE.roa
Signing time: Tue 29 Sep 2020 09:52:51 +0000
ROA not before: Tue 29 Sep 2020 09:52:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1931 (0x78b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5883F13C7ABC9090C4E8FFB24ABCC0FC531BE0F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:77:88:18:6a:47:41:34:df:e9:44:26:02:b6:
08:66:65:c1:f3:3c:4f:2f:f1:56:36:f5:55:be:2f:
73:7f:0d:ca:b6:0f:0e:ee:1d:b8:54:7f:c8:3c:c6:
e9:3a:67:74:0e:db:59:c1:0b:34:96:e9:d0:da:c9:
99:d0:9c:fc:b6:46:f6:26:11:58:95:8f:d4:0f:68:
1a:ac:13:cf:4b:6e:8d:38:41:8f:41:f5:34:46:16:
3d:64:89:af:52:70:cd:2b:28:07:37:29:1e:62:db:
27:4e:79:84:14:9c:57:2f:05:16:5a:bf:0b:dd:41:
0a:ef:1c:1e:9a:78:29:27:41:6c:cd:db:3a:fb:14:
42:39:f6:df:e4:85:89:4a:74:d6:5e:10:08:23:94:
99:97:88:b4:5a:10:a9:82:2d:b1:cf:d6:f4:12:e6:
87:82:2a:26:b4:9a:4f:f6:d9:20:69:6a:59:58:cb:
9a:db:7b:b6:4c:6d:fe:b4:43:2b:36:53:30:c9:81:
42:13:86:92:2c:d7:c1:cb:f9:76:12:ff:45:2d:fb:
c1:8a:0f:8f:44:81:6c:c9:4b:cd:56:df:d0:2b:ce:
ba:74:fb:4c:7e:bc:12:84:b3:aa:df:48:25:fd:39:
2f:b3:97:c8:7c:e8:ad:3d:09:ad:50:64:f6:9a:f7:
ed:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:83:F1:3C:7A:BC:90:90:C4:E8:FF:B2:4A:BC:C0:FC:53:1B:E0:F1
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WIPxPHq8kJDE6P-ySrzA_FMb4PE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.16.0/20
Signature Algorithm: sha256WithRSAEncryption
98:12:a3:0e:20:96:b7:4a:ad:62:79:83:52:09:87:80:fb:47:
38:30:73:d8:7b:97:c8:d1:5e:39:21:88:44:67:9d:ab:50:dc:
fc:c6:b9:f3:66:25:22:2a:ed:0c:18:43:ad:b7:09:83:23:44:
ed:1b:49:9f:c7:04:d1:ee:31:e4:14:76:42:cd:6e:ff:f2:d5:
8c:ac:fa:d7:60:2e:19:d8:8c:30:4a:18:10:f3:92:a3:d0:97:
86:3e:a5:fd:7b:be:65:eb:63:14:c1:c3:27:c1:d0:ea:c1:0b:
53:91:58:0f:f3:e3:b0:92:b6:87:b7:5b:1e:91:e0:d9:b6:fc:
b6:23:c3:5a:46:95:09:53:bc:a4:00:7e:ac:49:e5:78:14:76:
c5:3f:42:99:f3:5f:4f:6f:fb:6a:50:c9:45:7e:e1:4d:b0:57:
0c:19:84:ab:d9:22:5b:91:d8:d1:03:8e:1d:be:56:05:27:59:
75:7c:e3:98:26:e4:ce:c4:f7:fb:37:12:ef:4e:3e:e6:31:ec:
52:88:25:f7:70:f0:ac:17:3b:ca:07:eb:b9:26:5b:f0:14:4c:
d7:0d:21:8f:86:8a:93:24:3b:79:fe:2e:dc:19:b9:14:65:b3:
ce:4c:ee:06:38:30:10:8f:2f:5f:ba:da:e4:9b:2c:18:2c:b9:
6a:84:ca:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org