Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pO1sI2Hq-shtqNzwGJnjCRo1FAo.roa
File: pO1sI2Hq-shtqNzwGJnjCRo1FAo.roa (raw, json)
Hash identifier: bFI+ZhQH97AvL5LK5tBbeROXKMC+V2OelWvq1ZPuEUU=
Subject key identifier: A4:ED:6C:23:61:EA:FA:C8:6D:A8:DC:F0:18:99:E3:09:1A:35:14:0A
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A12
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pO1sI2Hq-shtqNzwGJnjCRo1FAo.roa
Signing time: Sun 07 Feb 2021 06:38:55 +0000
ROA not before: Sun 07 Feb 2021 06:38:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2578 (0xa12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:38:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A4ED6C2361EAFAC86DA8DCF01899E3091A35140A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f6:57:8b:a4:cd:27:81:6f:bb:2a:16:47:32:
f6:20:21:16:49:ca:a1:2b:cd:14:5a:2c:73:31:e8:
ad:49:be:2e:00:ae:00:fc:0e:1a:b9:0c:2f:ed:7d:
a4:06:67:4e:37:1b:10:10:e4:0e:06:e1:94:7c:ae:
d2:2f:ee:c2:91:28:55:90:99:64:fd:c8:5d:7f:5e:
11:16:76:b9:e8:9d:3e:f3:47:72:2c:04:79:15:9f:
e4:6b:46:7e:c7:bd:a7:c0:d1:ce:7e:ed:70:8d:08:
82:8b:d7:d1:92:ee:4d:91:4b:82:aa:95:ed:69:73:
50:da:85:6d:79:58:d3:92:d7:7d:7a:3c:24:06:3b:
57:94:46:9d:06:8c:db:d7:2b:1a:c4:91:fe:d9:54:
f8:03:bc:6c:e4:e9:50:46:aa:ad:38:07:ac:b9:42:
65:32:bf:cd:a9:72:68:ce:00:57:87:d1:74:8b:f7:
df:13:d1:eb:dd:ee:96:ad:58:31:d6:15:a8:e2:03:
27:e3:eb:19:ac:2c:68:bd:56:c2:f6:fa:36:76:c2:
c9:70:6d:09:77:41:46:b2:8e:10:54:b9:55:6d:2e:
e9:db:30:b6:a2:3b:e0:11:82:04:d3:99:06:ef:6f:
99:8e:d5:11:8f:ac:05:aa:54:d3:25:4d:ce:84:01:
df:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:ED:6C:23:61:EA:FA:C8:6D:A8:DC:F0:18:99:E3:09:1A:35:14:0A
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pO1sI2Hq-shtqNzwGJnjCRo1FAo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.4.0/22
Signature Algorithm: sha256WithRSAEncryption
45:8b:4c:0e:7b:c1:b7:9e:d9:57:58:82:f3:0a:9b:e5:58:54:
5a:1c:be:5b:95:d5:c0:14:13:b0:fa:79:5a:ca:15:7e:70:e2:
ef:94:17:ab:e5:90:a2:ab:3e:a2:1f:6b:ee:ba:07:fa:38:14:
b8:b9:24:bd:72:e2:5d:ff:75:96:77:54:93:74:43:64:8c:94:
f8:07:5c:a4:30:83:43:4f:92:7d:8f:00:ee:f6:66:b3:08:19:
60:84:2b:f6:d4:95:e9:82:a8:c5:6a:bc:aa:c5:75:31:85:33:
6e:7b:78:da:14:14:b9:7a:00:8b:40:33:9a:16:df:62:17:de:
fc:73:aa:fe:1b:44:6f:1a:8d:f0:e6:07:09:4b:52:2d:60:fd:
cc:e5:3d:cc:e9:9c:95:f4:93:ba:31:d4:5c:4b:bf:26:db:fc:
78:11:94:75:4d:31:56:42:1f:9b:9e:91:ba:f1:9d:85:84:45:
c5:35:fe:ce:c4:71:b2:0b:43:27:38:f6:97:ec:b2:49:b4:74:
c0:1e:39:62:c9:bf:b4:a0:98:df:38:5e:f0:56:cd:8d:0a:d1:
68:57:56:21:a9:1d:68:13:d3:ab:2f:23:c0:44:e4:ab:55:b9:
d1:f6:92:fb:26:95:e7:22:d1:ce:e6:0b:0b:d9:15:dc:f1:e7:
93:7e:12:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org