Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/eXw4Vm14JsbpNCC_-IIaf-CFehg.roa
File: eXw4Vm14JsbpNCC_-IIaf-CFehg.roa (raw, json)
Hash identifier: SwMh8olIEp2rciSxWs9ZqtLXpGt3RUWWkk5/ch2SA4k=
Subject key identifier: 79:7C:38:56:6D:78:26:C6:E9:34:20:BF:F8:82:1A:7F:E0:85:7A:18
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eXw4Vm14JsbpNCC_-IIaf-CFehg.roa
Signing time: Wed 29 Sep 2021 02:44:11 +0000
ROA not before: Wed 29 Sep 2021 02:44:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2927 (0xb6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=797C38566D7826C6E93420BFF8821A7FE0857A18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1c:73:1d:cd:2f:2e:84:4c:9d:2f:ad:94:82:
a7:b6:e0:99:d1:46:ed:6e:70:cd:89:e6:56:0c:54:
7d:37:e7:b3:46:27:02:b5:37:22:80:1f:96:28:dd:
b4:9d:f4:3a:27:ac:5c:53:75:80:b3:68:4e:cd:b3:
51:2d:cb:22:5c:80:69:9c:9b:a2:4a:51:d9:15:9a:
46:7a:ea:39:23:ca:01:60:c6:42:60:1f:0a:4b:3f:
01:45:d6:44:17:2a:39:28:2f:6a:78:87:99:b8:fb:
f2:15:74:47:67:6c:18:f7:af:2a:5a:84:ce:68:4c:
22:24:02:43:e8:aa:6a:72:3b:be:e6:9e:94:45:d5:
81:e2:26:11:11:84:7b:95:4a:31:5f:08:51:22:7b:
50:ed:f3:64:86:69:22:5f:a7:6c:9d:a4:75:1a:4f:
07:ae:de:8b:d2:08:c1:4b:fa:80:b9:24:cc:65:92:
c1:9b:3b:ab:ad:f0:52:25:8d:69:d8:b9:99:49:cb:
f9:cd:e8:fc:a8:60:52:a6:24:d6:fd:de:7f:83:37:
7d:e3:95:33:c1:e3:a1:8b:62:22:fe:31:7d:02:bc:
22:a1:80:2c:c2:3c:3f:ea:7a:32:19:aa:b2:a1:e4:
88:e7:6e:c0:26:10:b3:a9:89:0e:0c:ef:e6:aa:2a:
6a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:7C:38:56:6D:78:26:C6:E9:34:20:BF:F8:82:1A:7F:E0:85:7A:18
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eXw4Vm14JsbpNCC_-IIaf-CFehg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.4.0/22
Signature Algorithm: sha256WithRSAEncryption
68:cc:40:03:1d:d5:27:b5:36:40:98:ef:59:9e:fb:8f:a7:93:
66:e9:94:95:c8:94:17:79:67:52:a8:16:ea:18:b8:fe:eb:b5:
8a:16:a5:4e:1b:bc:e5:17:91:0c:19:b6:c5:17:7f:0e:a4:50:
75:84:8e:8c:96:a9:7a:2c:b5:f0:56:f0:a8:72:52:82:4c:a1:
cf:aa:61:96:3c:16:1a:93:eb:0b:c9:b8:03:21:38:dd:7b:92:
fa:d4:9c:0a:a0:fc:80:a0:15:b9:e5:67:74:a0:1b:27:dd:3b:
ff:69:de:93:91:65:dd:18:f7:df:83:f1:9a:bf:ef:74:33:da:
d3:68:52:4a:b0:d2:46:bb:63:db:ff:05:9b:7b:98:1e:28:57:
aa:f2:55:39:ed:94:23:48:25:46:cb:85:43:d4:fd:bc:e4:db:
7c:8a:b3:1b:96:9c:e6:c6:fa:c8:69:ae:06:64:42:4f:be:21:
5d:63:75:39:5a:55:39:6e:da:81:d5:7e:ef:13:32:11:24:39:
f8:2b:e5:8e:ae:7c:48:48:7e:3b:43:47:b4:5d:3c:0b:5d:a9:
70:b1:e8:4b:b4:82:f6:2f:6b:56:f5:13:41:11:a8:c4:49:c7:
67:46:83:8e:39:37:7f:c5:d4:bd:16:3a:cc:a2:ac:37:25:d0:
a6:2b:cc:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org