Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rt1xpkMxvKqSEp39Ayb25SEh7vw.roa
File: rt1xpkMxvKqSEp39Ayb25SEh7vw.roa (raw, json)
Hash identifier: EpYfmid5jttHrko+PhjVuo5rF6+W18tYVxQXGZNpNcA=
Subject key identifier: AE:DD:71:A6:43:31:BC:AA:92:12:9D:FD:03:26:F6:E5:21:21:EE:FC
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A1C
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rt1xpkMxvKqSEp39Ayb25SEh7vw.roa
Signing time: Sun 07 Feb 2021 06:39:45 +0000
ROA not before: Sun 07 Feb 2021 06:39:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2588 (0xa1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:39:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AEDD71A64331BCAA92129DFD0326F6E52121EEFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:47:84:b8:73:db:4b:6b:cd:e9:7f:e9:92:76:
f4:5e:e1:92:89:f8:61:81:38:a1:99:79:d9:e6:3d:
d5:04:90:16:19:6a:9e:99:2d:42:9d:5f:b0:18:e5:
58:1b:3a:a2:3f:38:bb:bd:4e:92:d7:ea:79:03:d4:
b5:db:9b:d7:69:78:7b:aa:14:36:73:55:2a:6f:98:
19:31:4c:00:79:c7:ba:82:7a:20:34:72:27:05:40:
f1:e0:2a:41:a9:bf:85:7d:57:42:33:f2:48:95:32:
01:63:47:a3:5c:a9:38:0c:ce:da:dd:86:c3:c2:c4:
c9:a0:73:6d:f1:4d:7a:b9:74:51:01:1d:c0:fa:91:
7b:9b:e8:0d:0f:b0:07:b3:26:13:b0:f6:6c:4d:5c:
ba:33:cb:c0:5b:7a:82:38:32:81:8b:8b:fa:64:94:
70:68:2d:6b:80:89:0e:b4:b4:ab:90:ad:98:20:67:
18:5c:8c:00:06:59:46:c1:d0:ca:c8:8d:95:2e:28:
d7:3c:6b:6e:fa:a9:c0:99:3a:d7:28:f0:8f:d7:be:
d3:f3:dc:4f:8c:d6:ff:30:1e:fa:9e:8e:56:b1:9b:
5b:1e:19:c7:c2:94:81:23:2d:e7:10:c9:c8:63:75:
c0:8a:af:e8:1b:7d:17:33:47:da:13:ff:24:a0:d8:
c9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:DD:71:A6:43:31:BC:AA:92:12:9D:FD:03:26:F6:E5:21:21:EE:FC
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rt1xpkMxvKqSEp39Ayb25SEh7vw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.8.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:cb:8f:f8:c6:e0:ff:b1:6b:bc:75:9d:14:57:cb:4a:df:88:
ed:b5:07:74:38:95:6d:38:06:fd:a9:00:b3:1b:34:3f:87:e9:
04:3b:ed:70:82:4d:c8:63:c0:43:d1:f9:52:bb:2d:b0:7c:71:
c4:47:6d:67:b4:ae:83:a7:ac:3c:95:fa:df:a2:75:61:fa:ca:
bd:8a:57:37:1e:4a:65:47:c4:2f:02:43:92:58:bb:82:2d:a3:
4b:d0:c3:48:a4:12:1a:cc:1b:8c:e2:b2:25:bd:68:be:a4:ba:
3d:a9:55:37:f1:09:e4:f2:72:d5:ec:eb:9d:62:2c:20:c8:d7:
8f:19:fa:f7:12:f9:85:e1:16:9f:e2:a8:73:f9:26:5d:bf:2a:
60:03:f3:25:37:c5:24:74:7a:c8:13:05:1a:13:c8:64:e4:77:
2c:81:f2:9e:cf:e1:29:66:06:0f:8a:43:31:f1:3c:be:dd:de:
d7:f7:a4:c0:5e:cc:ae:a3:3d:cb:cd:e6:02:e2:6c:01:67:21:
64:46:f5:f6:72:82:be:dd:f3:85:17:cd:38:17:e3:cd:ee:09:
a6:e3:42:1a:27:b9:22:4d:82:bb:7d:f4:91:5e:eb:50:a6:7a:
10:e8:6a:23:ff:3d:e4:cc:a7:01:24:f6:18:94:3e:86:ee:d0:
c6:1c:3c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org