Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/iuZ83br66apBMg9qMFbmRWVxTlc.roa
File: iuZ83br66apBMg9qMFbmRWVxTlc.roa (raw, json)
Hash identifier: 5MUJJibbFudwY638B3B/NZHIWCnqB81yds0v5wvKsPk=
Subject key identifier: 8A:E6:7C:DD:BA:FA:E9:AA:41:32:0F:6A:30:56:E6:45:65:71:4E:57
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0787
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iuZ83br66apBMg9qMFbmRWVxTlc.roa
Signing time: Tue 29 Sep 2020 09:52:50 +0000
ROA not before: Tue 29 Sep 2020 09:52:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1927 (0x787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8AE67CDDBAFAE9AA41320F6A3056E64565714E57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7a:b7:30:3d:53:c3:8d:24:fb:33:cf:14:7a:
3b:4f:01:ca:9b:c2:e5:fd:73:9f:03:84:fe:79:5a:
68:b5:fd:34:a2:f9:02:6b:46:87:48:7b:3f:90:e1:
24:39:29:c5:a6:9f:5a:b7:db:64:5d:7f:41:53:57:
bd:38:21:6a:90:7b:ad:15:b3:ca:2c:ff:b4:bc:0e:
75:4e:33:f9:ff:48:78:f5:85:87:83:d6:95:d3:82:
f5:1a:74:02:9a:a7:82:50:25:c2:5b:bb:08:4f:4d:
11:ee:29:32:05:5b:a3:8b:67:94:37:4b:b6:77:34:
7d:55:25:f4:86:41:e8:5f:f6:06:f2:8e:1d:08:4c:
56:19:7a:f9:72:90:6d:5d:db:0d:02:62:57:e0:82:
a2:b5:af:ae:41:a0:eb:1f:32:3c:65:09:b7:cc:01:
2e:3c:dc:11:16:f0:b0:13:9a:04:8c:0a:d3:31:5c:
fc:c3:4f:4e:0a:1b:c4:4b:79:a1:16:29:b7:a1:42:
fb:f7:66:63:54:55:06:b5:21:91:4d:76:86:ac:3b:
f4:a0:45:ef:14:93:0a:7e:6e:9f:05:6a:df:42:6c:
07:24:3a:5b:a7:1a:1f:f9:c4:78:18:b6:ef:cc:b4:
4f:ff:24:4d:95:2d:e3:aa:98:66:c4:89:e9:3b:c8:
fa:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E6:7C:DD:BA:FA:E9:AA:41:32:0F:6A:30:56:E6:45:65:71:4E:57
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iuZ83br66apBMg9qMFbmRWVxTlc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:ed:30:04:8a:8f:7d:ea:f4:e6:d5:d2:1c:d2:82:f7:29:47:
25:fa:87:5c:80:5f:5c:ee:7a:ff:71:07:0e:10:2c:d4:1e:c7:
50:26:af:02:1f:e6:3a:8e:86:85:d6:e4:19:5b:f1:d3:46:fd:
69:98:3e:6e:0e:32:e3:57:69:09:71:fa:5a:b7:d5:6f:01:88:
ac:2b:d3:0f:7e:8c:be:ea:d0:fa:76:f4:fc:72:a9:6b:d3:05:
00:6e:a8:1d:f2:6c:28:49:5c:a5:c6:6f:92:e8:25:94:7b:4b:
4e:49:1e:44:63:1a:1f:81:16:0a:b3:00:5f:1c:7b:d7:8d:7e:
57:71:e6:49:2c:3a:7f:20:48:ab:75:2d:7c:0f:e9:e6:37:17:
95:d2:e6:20:c0:42:e6:6c:1b:d8:8f:c7:fa:77:49:24:25:25:
49:f7:6b:d7:6c:2b:96:6f:6e:d2:c5:91:79:02:70:e2:b3:44:
b6:50:d1:53:b8:7e:9f:21:59:8f:c8:36:44:c9:ad:f2:42:f0:
16:28:66:59:89:ae:c5:c1:a0:e3:eb:a6:4c:18:50:0e:25:5e:
4f:d5:36:2b:de:6d:d2:0a:a8:3a:6d:2b:62:20:ec:e3:4a:80:
13:37:9b:0f:6f:1c:20:06:40:84:0a:2c:61:51:e5:5c:18:f7:
b8:da:76:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org