Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aMx4aV9lQkR7fRsX1WIUuiIj5Kc.roa
File: aMx4aV9lQkR7fRsX1WIUuiIj5Kc.roa (raw, json)
Hash identifier: Y4UuIxBPIoYjW7eslecRaOxSoy+lG6MeAUpFG+QAamE=
Subject key identifier: 68:CC:78:69:5F:65:42:44:7B:7D:1B:17:D5:62:14:BA:22:23:E4:A7
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 08A9
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aMx4aV9lQkR7fRsX1WIUuiIj5Kc.roa
Signing time: Tue 24 Nov 2020 09:18:52 +0000
ROA not before: Tue 24 Nov 2020 09:18:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2217 (0x8a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Nov 24 09:18:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=68CC78695F6542447B7D1B17D56214BA2223E4A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:72:8f:e6:2e:0e:7d:2a:51:31:96:b4:cd:85:
97:c4:56:e0:00:dc:d1:24:28:64:35:75:06:fd:0f:
2f:dc:14:c4:d2:c2:1b:5f:17:5f:86:31:99:86:29:
5f:a1:49:1b:17:94:1a:c6:af:3e:85:06:cf:ce:a9:
24:bf:38:54:f2:2b:f4:27:f8:6d:31:37:11:fd:5d:
48:8e:72:43:b9:82:e3:0b:2d:9b:71:1b:c9:c3:57:
5d:2e:ea:e3:7f:dc:6a:35:54:3c:0b:52:c3:b1:e0:
b0:fe:f5:10:7e:63:1f:88:23:cc:54:46:1a:80:b1:
f7:e3:c7:84:f2:1e:da:b7:eb:1c:d7:bc:52:26:98:
c6:2e:01:c0:78:50:ce:af:48:f7:46:dc:89:7c:fa:
51:47:83:e2:ff:05:da:92:19:5d:2f:61:a0:9a:fa:
f8:52:1c:a5:74:d7:61:83:41:d7:44:e8:8b:74:ee:
ef:89:89:a6:c7:83:47:6d:8b:35:b7:0f:e1:5b:f8:
ec:0d:75:b1:3b:83:d7:03:95:86:df:1e:33:03:80:
77:1d:61:06:83:83:3d:3c:a1:ff:ff:66:78:8e:39:
e7:4f:72:d3:24:fc:4d:7d:b5:71:6f:6a:20:a3:69:
88:cc:ea:e5:a2:f8:2c:93:bb:af:d2:30:30:6c:0d:
50:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CC:78:69:5F:65:42:44:7B:7D:1B:17:D5:62:14:BA:22:23:E4:A7
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aMx4aV9lQkR7fRsX1WIUuiIj5Kc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:ba:1c:0e:7a:b0:2d:31:bd:d2:bc:c2:54:22:fc:3a:45:e1:
61:2d:49:41:05:af:b4:b2:b2:99:08:75:87:c0:51:93:4d:8b:
67:67:97:84:23:02:66:b0:8f:b3:73:28:c0:14:a8:f0:74:e6:
3d:ca:ab:72:ed:1b:e5:bd:4e:51:97:aa:03:4c:2c:64:3e:b9:
51:55:99:10:3c:57:fb:e9:ae:60:ad:ad:f8:d9:86:a8:c3:77:
11:75:2b:6a:75:9e:ba:29:72:db:07:cd:81:97:12:10:75:66:
9a:24:ab:e5:19:15:bd:2b:c5:52:0f:7c:23:21:d8:ff:6d:68:
03:28:6e:0b:ee:ee:f9:8a:bf:85:46:22:fa:76:db:0d:1c:48:
d0:ee:d4:1e:d9:d5:b6:cc:e1:f8:3e:b4:3b:82:ce:c7:5b:6f:
ab:b6:c8:4e:02:24:82:93:02:5a:39:36:4b:ec:8e:c9:aa:0d:
ab:c3:ba:4a:56:0b:79:c5:09:7b:3d:d8:76:e8:f9:58:69:d8:
c0:d6:4f:53:a9:ca:5a:10:76:82:a1:00:68:79:f8:ae:76:00:
21:80:96:13:3f:6f:73:e9:c6:25:cb:ec:fe:5d:42:64:46:10:
8a:d2:49:a6:57:94:cd:72:40:ee:13:8d:83:a5:92:cb:15:de:
6c:ac:2e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org