Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pWl8705t0Mdh7aYlLglTAmiRwC4.roa
File: pWl8705t0Mdh7aYlLglTAmiRwC4.roa (raw, json)
Hash identifier: ESIBggV/GzQnTHwB8qUxtdzIihOM8SXD++TM2v7hLXQ=
Subject key identifier: A5:69:7C:EF:4E:6D:D0:C7:61:ED:A6:25:2E:09:53:02:68:91:C0:2E
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 09FF
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pWl8705t0Mdh7aYlLglTAmiRwC4.roa
Signing time: Sun 07 Feb 2021 06:36:10 +0000
ROA not before: Sun 07 Feb 2021 06:36:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2559 (0x9ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:36:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A5697CEF4E6DD0C761EDA6252E0953026891C02E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:10:c6:c0:16:e7:b5:6a:d0:79:69:b4:c0:df:
95:03:b6:51:03:50:a8:de:05:92:df:d2:eb:29:3e:
f0:97:52:66:8e:51:d4:fd:20:cd:55:94:de:af:ce:
3b:fe:4f:f0:f1:ae:9e:33:69:c6:26:9c:a3:f2:df:
6a:4f:17:bb:34:28:2f:6f:7d:7d:db:18:73:90:00:
6d:bc:5d:99:10:39:df:a6:fe:b5:9e:36:11:4f:8b:
aa:56:8f:4f:89:ee:9a:da:7e:ee:b7:2c:44:f6:ac:
dc:99:eb:3f:b0:d7:34:c1:b5:42:49:21:04:34:3e:
42:0e:d5:06:c9:ed:83:1a:2b:41:92:3f:96:2f:8c:
70:b7:0d:5d:1a:06:ff:eb:81:23:fc:87:9b:f8:24:
30:a3:2d:17:27:f1:83:2a:b0:d8:e4:99:13:6f:bc:
1f:c2:5e:e2:fc:d5:f6:97:93:7a:eb:25:93:48:f3:
6b:17:86:90:4b:2b:18:42:97:2e:88:5e:bc:67:9d:
08:2e:15:5b:5d:da:8a:d5:20:78:5b:8c:c5:71:d1:
ea:0a:b2:c8:01:50:c4:6a:a8:3d:3a:c6:3a:af:e1:
3c:61:35:58:d3:c5:82:86:74:f6:3c:20:81:d4:37:
84:ac:ed:79:c1:a9:a8:1b:70:00:fd:ff:f8:d8:9e:
86:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:69:7C:EF:4E:6D:D0:C7:61:ED:A6:25:2E:09:53:02:68:91:C0:2E
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pWl8705t0Mdh7aYlLglTAmiRwC4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.192.0/19
Signature Algorithm: sha256WithRSAEncryption
5c:3a:09:79:8f:6d:be:0f:83:c6:aa:29:38:a4:20:77:4d:c1:
10:f5:25:94:7f:03:28:d8:f6:2b:8a:11:56:17:05:e6:f1:f8:
0c:82:89:a1:0c:7e:5c:98:06:c9:e9:cc:07:98:b0:ea:25:a4:
97:2a:ed:24:73:f8:8e:0f:8a:cd:97:69:53:c1:cb:94:36:89:
2c:90:7d:cf:46:59:06:05:e4:d3:24:f3:99:a2:d8:0f:b2:18:
79:04:c4:25:b5:45:2c:55:e4:69:57:80:89:a1:64:09:17:39:
9e:e1:e4:a1:c8:0d:0d:9a:7d:60:37:9b:34:4d:2a:69:22:b8:
fb:4d:b6:51:f3:31:d5:7f:b6:54:9b:e1:59:51:47:cb:76:3d:
a8:71:7f:29:05:71:52:92:d8:3c:da:d0:8d:54:ba:36:89:58:
99:87:55:6f:ef:85:12:7a:f5:37:a2:f5:90:4b:4c:69:9b:62:
8e:0a:5d:4b:97:6c:0c:f2:58:7f:36:1a:2e:ad:ac:5a:44:c9:
ea:d5:45:80:81:2f:5c:b6:8b:d3:3a:c6:ad:01:18:c1:c1:4b:
0b:87:b8:a6:8a:b7:35:1f:71:6e:1c:69:38:7e:97:86:d6:13:
55:07:c9:9e:7a:40:50:f6:da:9e:5b:75:06:5f:05:65:53:21:
2f:75:08:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org