Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fewo_4nDx4PkbvuSZjJHQaG0ANE.roa
File: fewo_4nDx4PkbvuSZjJHQaG0ANE.roa (raw, json)
Hash identifier: fHdKHsQhihKEluU4p5N2oEyEANsjwFkL6BB+QjxGB/s=
Subject key identifier: 7D:EC:28:FF:89:C3:C7:83:E4:6E:FB:92:66:32:47:41:A1:B4:00:D1
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B74
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fewo_4nDx4PkbvuSZjJHQaG0ANE.roa
Signing time: Wed 29 Sep 2021 02:44:13 +0000
ROA not before: Wed 29 Sep 2021 02:44:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 192.72.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2932 (0xb74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7DEC28FF89C3C783E46EFB9266324741A1B400D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:09:ba:60:29:21:95:23:f3:63:dc:82:87:
15:f2:a8:06:0a:1f:f9:c1:5f:7e:e4:9e:6b:a2:2f:
12:c2:02:da:f2:46:0f:d0:13:29:93:e8:5b:99:e4:
91:67:a9:c1:94:8c:ce:71:47:d6:d0:f7:c1:9c:51:
69:dc:9d:ec:b3:d6:6f:ef:9a:76:d4:11:fa:d8:ea:
4b:fe:3b:9d:61:28:70:73:c6:fc:74:92:4a:07:8d:
f0:66:ef:6a:f0:e2:1c:69:e8:a7:41:e1:8f:dc:8d:
42:b9:66:d7:79:1f:f5:36:0c:ad:8e:74:c6:3e:35:
94:68:19:90:13:0f:26:13:e7:8c:ef:d8:76:9e:19:
2f:ca:2a:7e:5c:e5:4c:74:e6:3d:4e:bb:25:7e:1b:
f0:25:6b:34:2f:7e:fa:74:3d:67:75:72:f8:07:0b:
bf:07:de:45:c0:d9:65:0b:9e:c7:44:cf:ae:08:82:
9d:c7:c4:0d:4d:39:63:dc:1c:dd:5a:07:16:46:a1:
b9:6c:db:b2:cd:42:d8:17:62:2f:ae:d1:8b:36:a7:
47:86:a7:c7:00:4e:53:d7:25:ca:02:7d:64:66:dc:
38:a3:1a:fc:1c:e7:a2:93:03:aa:dd:fb:84:4d:8d:
1a:3a:d3:8b:53:3a:2f:d8:d4:aa:b3:59:46:7f:f4:
b1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:EC:28:FF:89:C3:C7:83:E4:6E:FB:92:66:32:47:41:A1:B4:00:D1
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fewo_4nDx4PkbvuSZjJHQaG0ANE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.3.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:65:c4:84:28:ef:01:b3:1f:21:2e:f0:ad:74:42:22:14:bf:
d6:71:1b:fb:9a:f2:01:68:49:6f:ba:18:b0:c7:ca:55:ba:19:
8b:c6:3a:a6:79:b0:f4:35:b8:f4:95:03:d1:4d:ad:da:79:9f:
a5:ad:a6:4e:a9:a0:1f:42:fb:d2:55:78:a2:4c:e9:e0:10:99:
4e:5b:8b:93:dd:dc:fa:e4:f4:1a:06:25:b0:93:ac:15:90:19:
e6:c3:b8:7d:d9:c3:64:2a:56:d0:89:0e:0b:98:bc:7f:d9:0d:
7c:45:19:a8:41:65:66:0d:99:bb:46:de:98:94:94:a2:29:15:
09:28:bc:cf:92:b4:e1:f9:4f:da:55:b2:35:8e:1c:4d:46:cd:
1a:65:43:c5:c0:88:c0:c6:67:e5:91:4b:a7:fb:7e:05:f0:e4:
94:82:f1:fb:94:e0:7a:7f:c8:d6:a6:36:60:dd:62:55:db:10:
53:96:6f:75:32:e7:59:f8:66:d2:d6:d4:47:d2:ef:63:5c:66:
96:af:e1:97:04:54:9c:b8:0f:6e:ab:db:96:dd:f0:9c:0b:57:
bc:35:92:aa:5e:a9:c2:ec:6d:39:36:13:27:6b:3e:1c:40:ad:
30:89:90:2d:ca:54:6c:fe:6a:0a:10:28:68:06:99:d6:17:25:
20:80:d6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org