Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/un7C9AO6etWlEZzL-dzfbzp641U.roa
File: un7C9AO6etWlEZzL-dzfbzp641U.roa (raw, json)
Hash identifier: kar7t6QykKOczqon6Lr3EeZjpjndCXiRLYCvdFY7m2c=
Subject key identifier: BA:7E:C2:F4:03:BA:7A:D5:A5:11:9C:CB:F9:DC:DF:6F:3A:7A:E3:55
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 08AB
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/un7C9AO6etWlEZzL-dzfbzp641U.roa
Signing time: Tue 24 Nov 2020 09:19:34 +0000
ROA not before: Tue 24 Nov 2020 09:19:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Nov 24 09:19:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BA7EC2F403BA7AD5A5119CCBF9DCDF6F3A7AE355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2d:7f:94:bc:60:2d:45:49:59:33:05:a8:ae:
34:23:44:43:e4:48:2a:2a:27:3f:d2:46:88:e4:d3:
86:57:dc:b2:fc:44:3e:16:16:8b:ce:31:c6:fb:35:
55:c3:d3:21:cf:8f:f1:ee:97:37:11:2a:e3:44:ea:
df:63:4d:49:9e:3f:e9:89:bb:72:0c:59:50:a5:dc:
93:d1:a8:1b:c6:7c:89:57:25:5d:f8:47:58:23:9b:
a7:3e:1f:75:0f:46:cb:b1:dd:45:f0:27:1b:b3:9d:
48:d6:17:f1:a6:13:85:eb:aa:02:20:39:b8:c5:7c:
8a:e1:f0:59:1e:cb:d0:3a:25:81:6f:d9:3a:c1:86:
a5:04:8f:f0:be:03:88:2b:50:95:20:f3:cd:aa:92:
40:7e:8f:60:63:96:cc:57:af:ca:94:0e:41:80:2f:
77:de:a7:bd:db:a8:3d:33:4b:cc:66:77:66:8d:b0:
1a:bf:b5:81:35:6a:b7:c0:27:a9:c6:1d:3b:6c:eb:
52:aa:5b:26:a3:53:f9:82:8c:62:02:f1:ff:05:7f:
1c:24:40:c7:cc:88:e8:4f:1a:63:db:f8:59:a3:80:
f1:e8:96:a6:44:be:06:78:97:ff:29:8b:7b:c0:07:
fc:45:13:76:85:f3:d2:dd:3c:82:4e:c7:27:90:b4:
12:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7E:C2:F4:03:BA:7A:D5:A5:11:9C:CB:F9:DC:DF:6F:3A:7A:E3:55
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/un7C9AO6etWlEZzL-dzfbzp641U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.8.0/21
Signature Algorithm: sha256WithRSAEncryption
17:6b:ef:17:52:fe:75:7a:dc:d0:3e:05:62:ac:2e:26:ff:9f:
5f:86:8b:11:4b:a9:90:50:82:a1:2d:65:20:fa:c3:f5:c2:4f:
19:75:1a:0a:69:d4:11:da:54:45:1d:e8:8a:6a:aa:d3:6c:ff:
1a:6f:5c:16:1c:45:48:82:49:0e:f2:30:a0:68:d6:f2:e5:39:
e2:e8:17:b1:fc:bc:56:40:20:8b:7b:09:17:5e:2f:25:f1:56:
50:db:c5:61:b1:a8:b8:72:65:30:94:2a:8a:56:e0:03:a7:59:
00:6d:58:fe:72:ac:88:2e:6b:b4:a4:e7:52:bd:81:64:1f:36:
ad:35:0a:5c:7d:34:5b:3b:a0:33:72:b9:25:d9:87:be:60:4b:
57:22:34:ac:c6:04:49:7a:bb:5e:1d:5b:2e:0f:e4:ff:b4:44:
95:df:cd:94:df:dd:c6:3f:7c:eb:78:ef:9e:e5:44:80:5d:cd:
c4:3c:cf:e0:51:4e:25:4a:b7:c1:40:f4:0f:36:b0:8b:be:e7:
07:39:28:ab:fa:b7:3b:5b:1a:b2:c0:d2:c3:91:ea:2f:b9:f7:
8e:f9:2a:db:86:6f:5e:e9:10:09:9f:b9:34:c4:72:12:f1:8f:
81:20:24:92:fe:d1:d4:ef:a5:59:8c:02:ca:0f:6b:b5:d1:c4:
ba:98:c8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org