Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/oNjD4e7fp4NLid70IK4oydFOm_8.roa
File: oNjD4e7fp4NLid70IK4oydFOm_8.roa (raw, json)
Hash identifier: 1eU8x/Z3tkAVJHTe3D0LsgLlJMUa8HGIseztTJ85Nns=
Subject key identifier: A0:D8:C3:E1:EE:DF:A7:83:4B:89:DE:F4:20:AE:28:C9:D1:4E:9B:FF
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B6C
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oNjD4e7fp4NLid70IK4oydFOm_8.roa
Signing time: Wed 29 Sep 2021 02:44:11 +0000
ROA not before: Wed 29 Sep 2021 02:44:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 192.72.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2924 (0xb6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A0D8C3E1EEDFA7834B89DEF420AE28C9D14E9BFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ce:4e:39:34:ef:0e:b5:4a:26:6f:c9:4d:a4:
8a:e9:a7:5f:9f:28:81:b7:d2:59:65:21:0a:2d:ef:
b4:4f:b1:6d:95:05:a0:8f:90:5d:4e:a4:65:c3:fd:
2b:89:78:b4:a9:83:55:e6:fc:03:02:93:3e:2a:84:
0a:7d:75:31:8c:58:af:7b:c3:d2:c7:c4:b7:63:27:
e6:6e:91:a8:29:10:66:ce:d0:57:ac:57:79:ea:ea:
2e:91:09:58:a0:96:a6:b8:ce:82:1f:00:d2:a6:2f:
9b:96:d4:49:36:4d:38:89:08:98:af:ba:97:1e:8f:
4f:ed:82:f8:9a:44:94:d5:08:91:a6:8f:6c:71:70:
99:35:0c:69:37:97:bb:7f:e0:b9:a8:36:e3:82:03:
13:60:34:62:fb:d4:3e:b0:64:57:63:a5:15:43:c3:
07:e9:2e:95:7c:c2:f1:6a:85:e8:e6:c4:3c:c5:5e:
51:31:16:3e:ef:21:d8:49:6d:32:0e:93:bd:28:c5:
8a:e5:b8:dc:96:d7:e5:b8:58:60:4e:0c:df:88:ae:
be:fb:77:cb:dc:ac:e0:27:38:e1:16:4e:3e:1d:a8:
31:f6:4a:47:7e:f8:15:3a:a5:fc:e8:39:28:e9:25:
55:a7:41:6f:86:f7:6e:f0:b6:70:10:41:c0:5a:d6:
ca:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D8:C3:E1:EE:DF:A7:83:4B:89:DE:F4:20:AE:28:C9:D1:4E:9B:FF
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oNjD4e7fp4NLid70IK4oydFOm_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.8.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:bc:c1:fa:37:69:ed:92:6b:72:2f:2f:b5:a0:f0:18:c6:cb:
69:20:ed:e0:4f:49:ac:1b:e6:d5:95:16:12:71:b8:e1:7a:48:
35:9a:e5:96:30:7e:70:c2:60:7f:1f:eb:11:dd:de:2f:53:d7:
8b:cb:c6:d6:b7:ba:bb:ad:b7:b0:a7:44:1f:f5:77:dc:f1:0c:
e9:52:96:6e:e0:ce:7c:09:6a:ad:f5:74:cb:a3:a2:1b:4d:da:
32:2c:8c:9a:d0:64:22:be:03:74:84:8b:69:31:b5:b9:c5:e0:
51:46:ad:5d:36:bb:3d:e0:09:ef:b5:eb:50:b1:9a:3a:97:1d:
42:54:d7:77:2b:45:16:74:5c:e9:0b:6a:df:77:23:3d:f0:59:
35:c1:54:35:b9:44:03:51:c9:54:b3:e8:56:68:39:e0:55:15:
78:e4:32:c1:4c:9e:fa:90:5b:e1:ca:05:fb:16:3f:8a:2d:80:
36:de:34:e6:ed:3a:bd:54:a6:8c:04:e7:5d:2f:03:7d:53:f3:
a3:3e:ae:58:f5:53:57:53:07:4e:42:04:17:27:c6:14:40:cf:
b2:3c:36:ea:bb:47:5e:12:bf:8e:f7:16:fb:dd:70:ea:87:7d:
8c:bd:d7:d7:d8:51:fe:5d:8b:31:7b:df:db:d7:2d:01:a5:c7:
89:76:7f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org