Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-4Y5aC72JCT5a7OkAFGBIGDxEgs.roa
File: -4Y5aC72JCT5a7OkAFGBIGDxEgs.roa (raw, json)
Hash identifier: BsnXx4JGAA6RpAd9EDjhInWlepPEBjpVv2ySWi+Nes0=
Subject key identifier: FB:86:39:68:2E:F6:24:24:F9:6B:B3:A4:00:51:81:20:60:F1:12:0B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0CF4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-4Y5aC72JCT5a7OkAFGBIGDxEgs.roa
Signing time: Tue 29 Sep 2020 09:54:00 +0000
ROA not before: Tue 29 Sep 2020 09:54:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3316 (0xcf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FB8639682EF62424F96BB3A40051812060F1120B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4f:fc:57:f4:b0:e3:15:59:50:d5:99:27:3a:
27:3d:b3:a4:3b:8f:20:5d:3c:8c:50:16:12:7a:1a:
d0:be:28:00:ad:47:ed:01:1f:55:d6:be:38:94:88:
3f:d4:d7:dc:1c:20:7d:28:13:8a:7b:80:a0:3f:2f:
d2:69:dd:9f:8f:86:b6:de:0e:77:07:48:8e:0a:9a:
15:0e:1a:43:e6:1c:94:77:58:98:ea:fc:fe:a7:33:
1b:1b:ad:af:30:83:1c:ac:72:f9:bd:79:e8:52:97:
79:6c:70:6f:13:9f:54:50:06:6e:91:1b:f0:5f:71:
13:a2:b2:4a:ce:12:73:5f:38:be:b4:d9:58:00:f5:
c0:1a:75:36:54:de:af:3e:91:0c:ba:9b:4d:73:1a:
4d:09:20:99:41:0d:2d:75:c5:4b:7b:25:2f:a2:74:
0b:99:8a:2d:4b:1f:50:f5:9e:eb:d1:a9:c4:4d:e3:
90:b1:16:bb:f9:ec:e4:a5:30:02:85:73:36:4c:82:
63:ad:6f:7c:d3:bb:ef:8e:71:3f:28:06:c2:8c:f1:
41:dd:75:77:6b:df:55:ee:cb:3c:6e:7b:41:3a:85:
18:38:53:27:09:59:08:57:5c:18:01:00:05:61:07:
3f:f6:7f:e2:38:81:77:f3:dd:e4:8a:e9:3e:c0:4d:
fc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:86:39:68:2E:F6:24:24:F9:6B:B3:A4:00:51:81:20:60:F1:12:0B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-4Y5aC72JCT5a7OkAFGBIGDxEgs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.24.0/21
Signature Algorithm: sha256WithRSAEncryption
b1:18:e0:1c:08:80:7f:b2:04:5b:18:a3:2c:86:84:6a:fd:e3:
13:ee:74:c5:d3:90:e6:b4:2d:09:22:fc:a5:bd:a0:7c:be:dc:
d8:d6:97:10:6b:3c:d7:04:ad:74:e1:fb:53:91:c3:9e:d0:b6:
c3:b9:bd:88:9f:85:d3:c3:de:07:31:10:81:d9:3c:90:e3:a1:
40:08:28:1e:d2:0d:62:2a:39:13:7c:aa:78:f8:c7:98:07:e5:
6b:16:9a:42:26:7e:23:fc:bd:af:8b:21:2c:4f:35:a8:72:1a:
83:75:9f:11:38:ab:34:96:ba:f2:39:74:8e:82:16:11:76:d5:
bb:95:7c:01:12:90:df:b8:ed:8b:35:21:4e:e6:17:64:25:d9:
d4:dc:f0:f3:12:1c:ef:2f:5f:aa:25:08:33:74:92:1a:3d:4e:
0a:1f:55:2b:4c:65:7b:b8:79:56:9c:f1:37:d4:c1:a8:be:6e:
48:48:f0:80:11:79:1e:56:54:0e:d0:8e:f1:35:5f:91:f3:23:
32:45:c2:8e:51:e6:78:28:3d:49:ac:ed:6e:93:57:9c:6c:da:
e0:fa:3a:91:fb:f4:f7:c9:0c:b2:bf:71:ad:fd:d7:08:2f:08:
cc:fd:76:ab:ca:3f:21:28:62:c0:5e:83:5f:7d:81:c2:3e:62:
30:39:4c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org