Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/cieNgPO1TLbwcyTc4nHTcAUdRIU.roa
File: cieNgPO1TLbwcyTc4nHTcAUdRIU.roa (raw, json)
Hash identifier: l99B9sxpAYEvXJVEXr3O3xUYiXskEshO1AaYUUVcbBQ=
Subject key identifier: 72:27:8D:80:F3:B5:4C:B6:F0:73:24:DC:E2:71:D3:70:05:1D:44:85
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0A7E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/cieNgPO1TLbwcyTc4nHTcAUdRIU.roa
Signing time: Thu 15 Sep 2022 02:50:05 +0000
ROA not before: Thu 15 Sep 2022 02:50:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131596
IP address blocks: 123.110.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 15 02:50:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=72278D80F3B54CB6F07324DCE271D370051D4485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9c:67:a0:06:b7:2e:49:ec:fe:d2:88:93:ec:
87:2f:c1:04:6f:05:81:70:4a:e5:94:a7:55:90:b2:
96:9b:ff:08:b9:f3:a8:44:2f:f6:bd:2a:29:3c:9a:
5c:77:b3:cf:8d:c8:de:c6:2b:7d:ff:aa:c1:f6:6d:
c9:28:01:f0:64:16:ab:e8:6d:f8:e8:4a:a6:c6:c2:
cd:0c:56:c9:77:b9:0a:e8:cd:18:d9:8a:2c:8d:65:
82:e9:9e:ab:28:e7:13:b6:1c:5d:c6:47:3a:5a:7b:
db:b5:37:7c:9b:18:c4:e4:64:b4:73:b9:73:4f:cc:
b4:dc:42:8b:54:9d:53:45:0e:aa:e7:49:20:80:68:
65:4e:39:ec:02:f4:95:41:cb:70:29:38:3b:c5:c5:
fd:9c:ce:1b:ed:ab:b3:9b:d4:78:d2:72:74:73:a1:
50:7f:42:6c:09:85:c2:90:9e:8c:1f:b8:a8:0c:63:
af:97:f7:5a:27:12:5e:02:d7:95:7a:c3:97:27:7d:
4b:2a:08:cb:af:b4:62:e2:25:c2:91:1c:12:61:86:
73:2c:62:57:c4:61:7b:9e:c9:89:46:c9:62:3b:bc:
67:74:6e:23:15:8c:d3:ad:c8:3f:de:a2:96:19:5c:
e3:f4:fb:ce:c5:c3:0b:be:ca:e4:1f:2a:03:a5:5e:
36:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:27:8D:80:F3:B5:4C:B6:F0:73:24:DC:E2:71:D3:70:05:1D:44:85
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/cieNgPO1TLbwcyTc4nHTcAUdRIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1d:be:94:d3:c1:15:3f:4f:24:a3:9c:7a:45:fa:8f:e5:8c:13:
12:88:d4:e7:0d:c7:45:9e:36:65:3e:f0:10:d9:c9:17:1d:d2:
7d:f9:6d:47:11:10:7f:e5:74:8a:78:3d:2b:ae:42:a9:3b:85:
19:63:83:e5:ef:c7:f1:5c:1a:1a:94:2d:95:d6:81:7e:d6:0e:
48:92:da:3f:c7:31:93:94:ce:96:ac:98:ab:38:e1:08:2f:53:
20:69:3a:90:cd:76:da:2c:a8:98:aa:bb:ce:6b:85:90:37:1a:
23:e4:38:06:72:25:8d:5d:40:97:55:14:ad:66:44:69:54:8b:
dc:04:82:2b:eb:95:60:c5:c0:fd:f4:98:3a:93:b8:08:2a:58:
dc:8c:81:5c:76:2f:52:09:d6:e9:fc:3f:f3:69:50:45:93:4c:
2f:de:86:7b:7c:03:66:99:40:17:e3:0d:77:b4:4c:0d:4d:67:
4a:4d:e2:e4:33:39:f8:f0:2e:67:3a:f7:fb:29:bd:72:32:cd:
44:f4:f2:83:df:fe:14:84:1a:cb:d3:fd:83:68:0c:ef:4f:b5:
9a:38:e8:79:c1:46:33:d7:0e:12:fa:f9:52:eb:9f:82:a3:f2:
8d:16:c0:34:63:ea:4f:b3:e5:0a:83:a6:15:29:88:c2:aa:40:
1e:54:c0:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org