Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-BB-WmMVKy1XLs_xTmCbTxpaUzw.roa
File: -BB-WmMVKy1XLs_xTmCbTxpaUzw.roa (raw, json)
Hash identifier: LFOcg+AYUztKpef6QpzraEYerpBjErkwpXZj8NdRZIw=
Subject key identifier: F8:10:7E:5A:63:15:2B:2D:57:2E:CF:F1:4E:60:9B:4F:1A:5A:53:3C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1465
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-BB-WmMVKy1XLs_xTmCbTxpaUzw.roa
Signing time: Sun 07 Feb 2021 11:58:29 +0000
ROA not before: Sun 07 Feb 2021 11:58:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5221 (0x1465)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:58:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F8107E5A63152B2D572ECFF14E609B4F1A5A533C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:06:23:5f:ed:95:4a:c4:f9:11:85:5e:9d:c4:
ce:6e:a3:9b:3b:b3:bc:eb:4c:6a:d1:9b:5b:ee:25:
33:1c:75:e1:89:1e:b9:22:f5:7f:9c:91:98:59:a1:
64:05:db:aa:b7:67:66:76:41:54:db:b4:5f:63:77:
f9:d1:c9:39:14:b0:6c:3b:b5:48:e2:e2:11:57:2c:
d9:93:bf:6c:0c:90:d9:10:48:02:35:4b:17:f4:d9:
6e:b2:15:22:cf:2c:3d:3f:dc:a0:b6:c3:f8:6c:62:
b5:88:af:ad:72:33:d1:a9:03:2f:ea:b4:da:9d:0f:
d4:ab:1d:70:69:4e:6f:cf:ca:1a:4e:d6:9b:32:72:
2f:b7:78:63:77:88:88:94:10:87:ae:7f:b3:ba:99:
a4:53:1c:b7:99:30:bf:a2:0e:67:59:20:a9:55:c2:
4f:bf:da:b1:25:de:d7:76:f7:55:63:eb:7d:da:77:
36:51:b9:7d:fa:e0:91:e8:bb:d9:70:7a:85:bc:2b:
32:b9:59:a4:1a:82:1f:91:9f:60:87:6a:e0:f5:a2:
c6:09:98:3a:d6:38:d1:2a:2f:cf:c4:56:76:93:bb:
1c:54:5b:8f:ce:5d:5b:ac:1c:60:5b:9a:c9:ec:dc:
e2:88:a2:15:0f:56:d5:e4:af:88:ab:c2:52:40:78:
65:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:10:7E:5A:63:15:2B:2D:57:2E:CF:F1:4E:60:9B:4F:1A:5A:53:3C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-BB-WmMVKy1XLs_xTmCbTxpaUzw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.128.0/21
Signature Algorithm: sha256WithRSAEncryption
b6:df:4b:49:f9:60:ee:80:c1:21:42:6d:94:bf:a7:2d:1b:0b:
8d:c8:87:24:2e:98:8c:54:49:3a:59:bb:3f:c6:89:d5:41:68:
73:e3:14:29:6e:a9:e7:a5:72:cf:f8:00:db:09:09:ab:8a:db:
da:89:88:42:7b:82:ee:3e:b9:af:0d:22:d9:da:67:70:2e:82:
2c:93:de:4f:f7:99:b4:34:c7:0c:5f:3d:70:eb:e4:8f:1d:80:
ac:01:6d:61:8c:1e:a6:61:86:cb:c3:73:8a:51:79:fa:93:49:
f2:85:1e:e7:cb:f1:b3:1f:ad:e5:a7:7c:0b:65:9b:2d:d3:e8:
a0:41:84:eb:91:f1:6e:21:d7:1a:03:e3:74:8e:ff:ad:ab:b2:
b2:ce:30:99:bd:ed:3e:37:cf:00:45:22:6b:2f:9d:03:05:c4:
c2:58:96:16:d4:0a:64:7a:0e:7f:e0:bb:09:1f:92:8a:8c:1b:
8f:0d:3a:8d:03:5b:5b:4f:91:a0:b8:ac:fd:e2:b4:9a:29:e7:
96:e4:5c:fa:d9:30:9d:63:c7:21:22:57:4e:b2:da:be:3c:fe:
7e:52:e9:32:58:bf:cd:ea:09:8f:ec:a7:12:6f:0b:d5:8b:21:
7e:cc:24:a2:3a:88:9f:11:26:3c:87:fb:aa:91:b3:ab:b3:5d:
5f:41:8c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org