Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_YLkEa7hIrKJgJ7U-J8UCxON9JU.roa
File: _YLkEa7hIrKJgJ7U-J8UCxON9JU.roa (raw, json)
Hash identifier: we31ba+87727Gk/25YE/Gufg+EhC2SlRiePRHg7WF5k=
Subject key identifier: FD:82:E4:11:AE:E1:22:B2:89:80:9E:D4:F8:9F:14:0B:13:8D:F4:95
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0785
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_YLkEa7hIrKJgJ7U-J8UCxON9JU.roa
Signing time: Tue 29 Sep 2020 09:52:49 +0000
ROA not before: Tue 29 Sep 2020 09:52:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1925 (0x785)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FD82E411AEE122B289809ED4F89F140B138DF495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:57:71:32:f0:3e:01:e5:29:12:c0:28:cb:
4e:bf:57:1b:38:cf:ef:3e:f1:14:dc:fc:66:04:e6:
20:d3:17:9d:18:69:1c:0c:d0:d2:ec:8a:90:93:0e:
4b:fe:d0:5a:19:29:c6:bb:df:1e:05:6b:56:bc:0b:
9d:86:18:ae:e9:12:6a:f8:8b:e1:29:67:6c:02:44:
f0:40:58:fa:b8:f4:cc:8c:94:d5:99:c7:90:b6:7b:
5e:3f:33:9c:28:81:6c:31:2e:13:66:af:37:8f:67:
64:35:be:06:2a:a8:c1:df:ee:ba:9d:b6:bf:fa:05:
f1:20:51:72:5d:e1:86:5b:e9:77:7e:05:fa:c0:b5:
92:77:88:ce:62:31:05:7f:3c:d7:6f:b6:c2:96:6a:
d1:a7:b5:a9:78:1b:92:6f:cb:db:e2:32:9a:18:2a:
02:ed:2b:3b:ed:12:53:bb:96:f8:c0:59:ec:4b:46:
88:33:a4:7c:17:eb:45:94:f8:30:75:d0:7a:00:2a:
95:61:27:ab:9e:e7:c8:30:2d:db:2c:e3:6e:44:ad:
63:7e:05:c2:2d:19:89:c3:bd:2e:3d:2c:09:ac:64:
c3:4f:55:6a:39:25:2d:10:2f:7d:7e:92:78:0d:0f:
31:e5:53:74:8e:ed:05:c1:04:d9:86:d8:05:4d:7b:
ba:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:82:E4:11:AE:E1:22:B2:89:80:9E:D4:F8:9F:14:0B:13:8D:F4:95
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_YLkEa7hIrKJgJ7U-J8UCxON9JU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
37:ee:ef:08:eb:b3:81:c0:74:fb:ae:a7:65:94:00:08:98:a6:
cc:18:7c:43:b7:bb:e1:06:61:e8:57:3c:bb:c0:84:b7:e6:20:
1b:6d:56:71:08:e5:ae:64:54:de:3d:0d:36:67:13:64:63:9b:
bb:c5:d7:ad:32:f6:d0:9a:28:d8:bd:ca:5e:3e:7f:ad:d7:41:
22:f5:9b:6b:90:d9:b1:c2:e8:da:47:87:fe:a1:a9:5a:f3:55:
c4:db:43:80:fe:f7:44:d6:5e:b1:99:a8:7a:c1:24:68:ce:09:
3d:9e:51:01:e1:5e:b7:56:cb:2f:c4:e0:a7:ee:a5:d4:dc:05:
dd:e8:9c:90:3b:29:e6:1e:d1:d1:de:19:a9:18:d0:03:c4:27:
36:59:54:37:27:f0:92:1a:07:a0:85:7b:79:a2:dc:c3:b4:08:
3f:a6:92:cb:e2:fa:53:98:0e:a6:74:23:a5:ac:f0:7e:52:ef:
ba:49:0b:ac:1d:60:73:82:3d:dd:ef:60:74:cd:79:41:34:b1:
db:81:f7:bd:31:4b:35:d1:96:6e:35:26:ae:be:0c:ec:24:0c:
40:b8:7d:7c:8b:d7:f5:6e:02:08:ee:af:a9:df:76:61:56:6d:
ed:27:c1:b9:d3:77:ff:72:9d:b2:de:a6:55:e7:a8:e6:4c:2b:
b4:35:f2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org