Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hVL7R31U_j5yy6i0d4GRd2WqZO8.roa
File: hVL7R31U_j5yy6i0d4GRd2WqZO8.roa (raw, json)
Hash identifier: wcofx0/VxQwXo4lzqgN/L5VtG3k6ImylV3RVB9rZmvY=
Subject key identifier: 85:52:FB:47:7D:54:FE:3E:72:CB:A8:B4:77:81:91:77:65:AA:64:EF
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B83
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hVL7R31U_j5yy6i0d4GRd2WqZO8.roa
Signing time: Wed 29 Sep 2021 02:44:18 +0000
ROA not before: Wed 29 Sep 2021 02:44:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2947 (0xb83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8552FB477D54FE3E72CBA8B47781917765AA64EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a5:52:f5:54:b6:0a:e5:cd:a6:8d:21:10:2f:
eb:e3:e3:01:09:44:40:d4:fc:c1:cf:ec:16:81:d2:
51:68:23:0a:71:0f:23:f6:25:3d:ee:dc:b3:cf:49:
f3:c6:93:76:67:d6:bc:55:bb:08:42:56:3f:d0:d9:
99:be:55:d3:88:bd:7a:84:fd:de:3f:ce:6a:36:c1:
4a:89:e9:84:cc:25:68:6b:db:82:28:c6:71:7e:fc:
dd:01:6d:41:eb:2a:e2:ce:2a:ea:48:fd:7e:a6:52:
08:c5:f5:70:76:0d:63:61:0b:72:85:26:65:b7:69:
13:65:79:a9:45:8b:37:5d:88:c4:30:29:63:7c:ff:
36:98:21:0e:f9:56:21:fe:58:d9:b0:57:14:43:47:
e1:d5:80:80:1e:00:0e:8c:8f:d5:6a:41:7d:b4:a0:
f3:f6:8f:a5:ee:d6:8d:80:13:91:e9:88:b2:ac:cf:
1b:8a:10:7c:43:a0:c0:8a:76:37:ac:38:d0:c0:c8:
ec:a8:c3:df:ff:2c:53:72:0f:df:39:e9:7f:5e:a6:
6d:5e:99:ea:b7:12:ae:d8:6e:11:75:e6:79:ca:33:
c8:40:aa:3f:d3:fc:91:22:bb:f1:21:6c:74:6b:43:
73:37:9c:a7:f5:21:e3:9a:ad:78:ea:f7:f6:52:29:
b2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:52:FB:47:7D:54:FE:3E:72:CB:A8:B4:77:81:91:77:65:AA:64:EF
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hVL7R31U_j5yy6i0d4GRd2WqZO8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.240.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:ea:23:d3:57:d2:70:d0:4b:f2:53:7a:11:03:35:c7:b7:ae:
b9:07:c2:9c:58:5c:f0:03:b0:4f:51:75:d6:84:c7:ea:f2:11:
a4:16:ee:9b:81:35:ea:5a:f9:50:1a:76:a9:11:19:ca:75:60:
b7:ee:c7:7a:5c:ba:be:52:6e:72:ee:7c:31:51:35:a8:35:ce:
3d:17:c2:3e:d2:0c:95:dd:33:33:38:80:28:ef:f9:dd:0f:05:
cc:6d:dd:c8:36:9f:56:2e:4f:bd:c4:b8:52:79:e0:75:a8:5c:
3d:8b:58:19:69:cc:6d:92:ab:c6:61:43:64:87:7b:f4:3e:0a:
1a:dd:77:ca:28:18:4f:67:d6:ce:50:5e:e5:d4:9c:52:4e:26:
f0:94:61:13:6e:44:09:00:ea:f3:67:07:40:bc:2e:45:82:31:
09:20:c0:54:65:4a:8f:9d:ab:ec:c1:39:7f:19:33:95:b8:5f:
ff:77:54:b4:fd:20:f1:f9:7e:3b:d5:93:cf:32:50:3b:29:d9:
53:58:fd:18:4d:5d:b4:57:ec:59:81:64:a8:d3:5f:d9:2c:88:
46:9e:c1:40:52:5e:13:78:dd:62:76:01:d9:b0:44:8d:86:b5:
b9:cd:4a:bf:f7:5b:dd:70:16:82:69:b1:7d:16:71:06:99:e9:
19:d9:53:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org