Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/f-RbnaDrll90E-8fiFqZE2IjJHY.roa
File: f-RbnaDrll90E-8fiFqZE2IjJHY.roa (raw, json)
Hash identifier: /elnFCUk0l7nqBMw9Dm+S+FdimXm1avgZ17KxHXSd90=
Subject key identifier: 7F:E4:5B:9D:A0:EB:96:5F:74:13:EF:1F:88:5A:99:13:62:23:24:76
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 078A
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/f-RbnaDrll90E-8fiFqZE2IjJHY.roa
Signing time: Tue 29 Sep 2020 09:52:51 +0000
ROA not before: Tue 29 Sep 2020 09:52:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1930 (0x78a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7FE45B9DA0EB965F7413EF1F885A991362232476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f3:9c:30:31:70:48:63:56:55:ea:6b:60:b3:
1f:b7:12:6f:2f:e3:80:b1:c0:36:31:d0:2c:70:c5:
22:6d:74:a3:04:12:8a:c2:0d:b3:88:71:0b:dc:75:
ef:00:2b:9e:ef:83:32:80:b8:f9:98:69:0e:80:55:
08:a2:1b:07:b2:eb:b8:7b:af:23:b6:d9:86:73:84:
df:48:9a:17:05:10:0b:a1:52:33:36:2e:db:df:8e:
66:9b:e6:b5:1d:45:bb:d8:e4:75:d2:0c:26:d1:85:
02:d6:76:9b:a2:72:11:4b:25:dd:02:1e:4b:af:55:
b6:18:35:23:50:6e:4f:f8:c7:a4:df:02:37:51:85:
6f:5d:88:da:5a:ca:9f:e4:71:df:29:68:ec:a2:af:
85:aa:80:69:7f:aa:1a:0b:18:57:b4:a7:fe:3c:5a:
3a:46:e3:bb:10:d1:a3:e7:1a:44:d8:4b:28:71:2b:
89:69:8b:15:6d:9f:39:0e:84:73:3a:dd:0b:c5:dc:
5d:00:65:db:10:6f:30:c7:81:6b:60:70:99:4c:67:
c1:24:51:f7:82:9d:a1:09:2d:0f:34:22:90:d9:21:
6c:55:15:de:0c:0b:0f:e3:83:0f:97:0f:f0:bd:1f:
b9:2a:c4:20:76:31:34:7b:9a:44:7c:1a:0b:d6:1d:
e3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E4:5B:9D:A0:EB:96:5F:74:13:EF:1F:88:5A:99:13:62:23:24:76
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/f-RbnaDrll90E-8fiFqZE2IjJHY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
a1:a6:e2:c4:3a:14:5a:ef:0b:d1:23:b5:7b:d6:b7:da:fa:49:
d4:d5:f2:31:e8:2f:bc:5a:a2:b7:22:a9:69:b3:c8:ed:7c:8d:
54:e0:e7:ab:9a:7e:c1:f7:23:75:44:48:2f:b4:08:b4:cd:b6:
71:d3:26:a8:15:2a:d8:f5:f7:63:01:aa:be:24:13:7d:17:67:
5c:35:ab:ce:7b:c6:bd:be:d4:55:66:6b:b3:b5:b6:d3:20:d5:
80:32:c5:23:23:25:f3:b9:cd:05:42:45:28:d0:c3:e8:b3:6b:
74:ad:ac:3a:e1:6c:f3:eb:2b:ea:3f:d1:6a:a3:f8:f6:33:9c:
e3:ab:35:e2:00:54:e6:6b:36:5d:f5:58:69:98:30:4d:92:90:
e6:48:ca:a1:04:5c:d5:b0:72:69:fc:c6:2a:21:0e:14:18:82:
63:04:2c:f6:75:44:39:2a:9d:ac:dd:ec:65:21:2e:38:61:82:
58:75:f1:dc:55:dd:c1:6c:20:e5:80:6a:e8:ef:97:6e:ee:9d:
76:ea:21:28:fc:4a:78:6f:f0:67:5a:b0:03:6b:9d:33:d8:b4:
af:df:67:a7:a8:dd:a7:ff:86:29:fb:2e:46:f3:c5:e8:0c:17:
5c:2d:46:af:d0:4c:5d:30:2b:44:57:ca:d2:9a:33:fa:96:23:
ff:a1:7a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org