Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/x9w2xmmQ3xnqzce3rcNxcVj2XPA.roa
File: x9w2xmmQ3xnqzce3rcNxcVj2XPA.roa (raw, json)
Hash identifier: AZUmkrfrE1avaMpSv+VnYmp10UGCycK8+qyCas52PmM=
Subject key identifier: C7:DC:36:C6:69:90:DF:19:EA:CD:C7:B7:AD:C3:71:71:58:F6:5C:F0
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B6E
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x9w2xmmQ3xnqzce3rcNxcVj2XPA.roa
Signing time: Wed 29 Sep 2021 02:44:11 +0000
ROA not before: Wed 29 Sep 2021 02:44:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2926 (0xb6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C7DC36C66990DF19EACDC7B7ADC3717158F65CF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e1:e3:16:31:4d:56:9e:d4:d9:28:21:44:ff:
44:a6:2a:1c:2e:d8:40:dd:7c:44:2d:73:f2:8d:cf:
c7:19:5f:6b:3d:f4:61:35:d6:fc:83:43:c8:51:8f:
7c:76:81:9b:60:f2:b4:20:af:ac:38:19:ff:c2:1c:
ce:68:56:8c:ef:51:48:88:29:db:40:68:b7:bc:c1:
ea:6e:b2:d1:75:c1:d1:d6:52:b0:51:a9:b6:be:87:
ae:5f:5d:cc:50:40:d8:ea:0d:e4:b3:ce:a4:46:fd:
72:df:2c:58:f2:b8:b0:58:b0:e2:63:20:2b:1c:6e:
a9:0c:bf:f5:04:72:a6:18:2a:60:70:0b:ef:f3:d1:
cf:23:0d:cf:19:92:f5:8e:05:fe:d9:a0:63:de:4d:
f2:38:98:d5:4e:ac:3e:7a:68:d8:7c:d1:9a:d6:e3:
d0:78:be:45:7a:c0:7b:7d:60:b0:99:3a:9b:a5:cd:
08:d1:3c:7b:95:16:49:db:dd:f1:86:19:ba:c7:fa:
d4:df:73:ae:8e:b4:3a:07:bc:06:fb:d7:3c:ed:24:
3d:a5:c2:49:ea:e9:e7:8d:26:15:0a:07:24:15:14:
c6:12:90:c5:58:10:a3:bd:2b:ea:67:6b:4b:57:64:
18:18:e0:c2:d0:ef:e3:e6:15:83:20:82:78:cb:c9:
d4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DC:36:C6:69:90:DF:19:EA:CD:C7:B7:AD:C3:71:71:58:F6:5C:F0
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x9w2xmmQ3xnqzce3rcNxcVj2XPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
29:6c:30:e5:b0:96:8f:b5:ee:97:fb:ae:8f:87:0a:1b:a4:c0:
16:93:e2:03:20:26:01:50:4f:92:b6:c8:16:eb:d0:0b:61:bc:
74:7f:09:45:73:aa:04:dd:b0:89:e2:85:ea:48:68:02:f1:66:
f6:82:dc:7d:e3:13:0f:a6:51:0b:84:26:a7:b2:7c:67:1f:84:
40:f2:e9:7d:d2:0f:f4:77:80:c2:42:a8:47:9f:ea:ce:f8:f0:
2f:3b:a3:20:3e:42:ba:58:e9:9f:e7:79:e9:17:5d:29:16:55:
c4:de:7a:37:33:b9:04:31:49:89:13:75:e8:99:f9:49:7e:ab:
fd:3c:07:c6:10:00:6a:6c:03:f3:4a:fe:54:75:22:f6:32:ac:
f8:fe:69:b0:5f:a7:8d:88:7a:8e:21:77:81:bf:91:91:d4:60:
11:b5:79:8f:5d:00:35:6a:ea:81:9a:63:31:24:c6:53:e1:c1:
d7:1c:76:9b:98:d2:82:30:e1:a1:c2:4a:19:e6:1d:61:e2:b2:
1b:49:a7:75:68:a3:b7:0e:48:9a:04:87:f0:a5:1b:bc:8b:cc:
b6:82:0a:5c:9d:23:71:76:75:c3:e8:b2:f2:2d:17:dd:b8:0c:
f0:f9:74:eb:42:f2:31:04:47:4f:2d:de:95:b8:d7:15:aa:51:
0a:91:a9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org