Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08VheTvwcQnRrCMZ79uLvm38bWI.roa
File: 08VheTvwcQnRrCMZ79uLvm38bWI.roa (raw, json)
Hash identifier: 0XArh/oyTqVOZpPiDed539EI6wXXKRj9G+L9s0kapE8=
Subject key identifier: D3:C5:61:79:3B:F0:71:09:D1:AC:23:19:EF:DB:8B:BE:6D:FC:6D:62
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2354
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08VheTvwcQnRrCMZ79uLvm38bWI.roa
Signing time: Fri 25 Nov 2022 04:43:27 +0000
ROA not before: Fri 25 Nov 2022 04:43:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9044 (0x2354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:43:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D3C561793BF07109D1AC2319EFDB8BBE6DFC6D62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4f:db:9e:c4:4b:0c:f9:20:17:47:6f:ca:4f:
c4:17:86:63:27:00:78:6f:8b:5b:09:c8:77:c2:44:
05:f7:a7:3e:6a:85:cb:4e:3a:6f:08:55:af:82:bb:
e3:16:45:09:78:82:41:b3:df:b3:d7:50:3d:38:b4:
8e:17:11:67:78:54:74:d1:ea:27:ad:5d:d1:10:6f:
85:a2:bf:7f:97:0f:45:6a:6c:6e:fb:f5:2b:d4:b5:
14:ae:e3:fd:c9:91:df:16:9b:5f:72:f4:38:e7:7b:
49:75:37:19:05:f2:de:ba:e2:48:f2:1f:50:67:e8:
76:e8:db:c1:81:7a:af:81:e1:c5:c6:8f:ad:d5:45:
96:f4:86:9b:a8:6b:4a:72:42:1b:38:66:cb:82:11:
8e:b9:c3:b6:9a:e0:f4:82:cf:1b:31:4c:10:f4:68:
86:39:3d:78:97:12:57:28:07:65:9c:38:d7:83:89:
c2:29:fd:cd:ff:96:15:de:07:2a:be:6a:a2:75:17:
f9:90:11:a8:b0:64:d4:e6:93:0b:d5:13:de:a7:ca:
f4:de:80:8d:4e:fa:51:bb:e7:66:ac:0a:08:89:ca:
4f:11:73:f3:48:f6:c9:75:de:20:8a:a2:33:0b:80:
96:87:7a:ba:15:db:17:10:d6:15:10:77:13:fb:ea:
52:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C5:61:79:3B:F0:71:09:D1:AC:23:19:EF:DB:8B:BE:6D:FC:6D:62
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08VheTvwcQnRrCMZ79uLvm38bWI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.76.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:04:08:ca:4e:10:39:69:2c:5c:b4:02:a7:09:3c:a4:b0:9b:
74:a7:82:48:29:a8:60:81:b1:9f:bf:f4:a8:ec:16:b6:3c:53:
1b:e3:e4:df:a9:53:e0:f0:d1:7d:c5:f2:69:c8:24:6d:67:66:
0c:d4:87:0e:e3:58:6f:74:7f:8c:96:6c:29:2e:65:09:90:d6:
92:aa:ec:1b:5c:ce:da:73:0f:ec:46:8d:81:d2:df:5f:b4:fc:
fe:29:95:d5:01:08:8e:e8:91:05:ea:3c:a8:57:1e:d2:79:3f:
b5:3f:3f:26:46:e8:3e:df:60:79:6d:9a:5c:75:a6:1a:f3:06:
a7:ac:8c:e2:02:fd:81:10:fb:0b:c1:55:d5:23:a7:ee:69:25:
89:fb:75:ae:5f:d0:a0:dc:46:cf:5a:9d:7f:9e:53:b1:af:79:
13:ec:3e:9c:35:af:ba:2f:0c:43:04:e6:8f:45:7a:13:45:87:
d2:d0:f7:81:84:8d:f7:e0:84:b1:c6:d0:fd:ce:9c:41:61:25:
49:e0:07:3c:96:1f:e7:15:03:d6:13:7b:cf:83:36:69:94:a0:
36:d1:6b:17:03:25:51:49:85:8f:2d:8e:be:c4:41:53:fe:12:
0b:79:a7:06:4a:ea:8b:85:d1:1f:78:4a:9b:25:26:f0:c8:bf:
d9:f7:a5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org