Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jS886j3pfaYAmuA_ok-EeNsNJso.roa
File: jS886j3pfaYAmuA_ok-EeNsNJso.roa (raw, json)
Hash identifier: HknXtcCVpv05vZjCLrWAidqXR5m3DUxTVqLVMpTJ7SA=
Subject key identifier: 8D:2F:3C:EA:3D:E9:7D:A6:00:9A:E0:3F:A2:4F:84:78:DB:0D:26:CA
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 078E
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jS886j3pfaYAmuA_ok-EeNsNJso.roa
Signing time: Tue 29 Sep 2020 09:52:51 +0000
ROA not before: Tue 29 Sep 2020 09:52:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 192.72.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1934 (0x78e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8D2F3CEA3DE97DA6009AE03FA24F8478DB0D26CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f4:08:5e:2e:fa:42:7a:1b:63:27:65:2a:ec:
50:fd:21:eb:78:e2:4b:1c:1e:14:5c:70:12:02:cb:
58:58:f0:33:0f:18:6b:ec:b4:fa:af:44:fc:90:e2:
e5:43:50:5a:08:b1:94:17:d5:85:e6:d3:c3:c8:64:
15:aa:14:48:f1:91:f3:4c:ad:19:ce:3c:fd:9e:fd:
53:35:ff:00:43:98:d3:bc:f3:05:40:83:30:33:18:
9d:af:6e:dd:b8:ef:6c:a2:a5:0e:42:84:2b:c8:a8:
6c:ed:b1:e4:64:fe:3b:cd:3a:52:f9:6f:e6:80:2c:
5a:ca:a5:da:1e:08:16:07:ff:d3:2a:b2:b2:ad:b6:
62:f6:7c:f5:7c:70:d1:c2:86:76:38:c7:67:95:65:
df:91:b5:0c:bd:33:18:cc:28:3a:73:be:f7:c2:33:
e2:42:de:66:25:a5:a0:9d:93:c8:50:87:72:c9:2d:
07:c5:92:3f:23:4f:d6:1d:40:1a:c3:3f:80:a0:a3:
1c:e4:eb:0c:41:29:57:4b:5b:aa:f1:78:02:72:31:
f9:92:87:f7:4a:b3:d4:fe:c0:1a:c9:80:bf:93:27:
ca:d9:1b:5b:9d:8b:59:26:b0:9a:50:98:a1:37:b6:
09:dd:d5:81:39:57:d2:b8:95:3e:cb:a6:e8:31:3e:
de:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2F:3C:EA:3D:E9:7D:A6:00:9A:E0:3F:A2:4F:84:78:DB:0D:26:CA
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jS886j3pfaYAmuA_ok-EeNsNJso.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.8.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:6c:f0:bd:31:cd:0e:01:16:11:4e:0b:22:af:f4:c0:01:5a:
4f:22:59:a0:70:fa:4d:59:dc:03:40:3e:b3:72:e0:fb:81:54:
aa:3b:d0:7e:19:25:44:d1:1c:c1:da:31:c4:81:9c:20:72:6f:
03:fa:58:34:82:bc:bb:ea:98:14:fc:3d:37:61:7a:34:e0:11:
ed:65:7d:92:2b:32:7e:d6:68:95:6e:18:cb:27:a2:a6:80:be:
ef:4a:bd:56:e4:ce:3e:10:3b:ca:a3:b1:44:a9:20:89:c4:9a:
90:90:72:e8:cf:34:bd:35:76:47:6c:e3:09:ca:d5:7c:c7:5e:
25:f3:9d:48:76:11:d2:8c:82:80:15:9a:dd:bd:d3:94:bb:91:
b3:b2:ab:70:5e:2d:c4:6c:da:e0:1e:ed:6a:4a:8c:52:2b:cf:
be:d7:06:61:02:09:e7:d6:ce:7d:35:09:9c:5c:f6:93:63:a3:
af:8f:29:ac:3a:5a:aa:71:a6:50:88:49:bd:4a:97:98:db:64:
33:3b:4b:03:43:e1:0e:11:32:9e:26:9e:45:b7:58:b7:f4:7b:
71:60:b1:cc:e5:9b:a9:3a:fc:fb:a9:e4:5a:56:8a:dd:b6:9e:
e4:e3:57:de:67:8f:86:da:b6:8f:b0:bb:5c:ac:31:fd:8c:b5:
fa:c7:15:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org