Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0OUm8E-0rtnniCi8XfkG_5fuYYw.roa
File: 0OUm8E-0rtnniCi8XfkG_5fuYYw.roa (raw, json)
Hash identifier: 6NbnIvbCNngZnDVC87rwvOyoUZFLOWoIQhjijIUx8HE=
Subject key identifier: D0:E5:26:F0:4F:B4:AE:D9:E7:88:28:BC:5D:F9:06:FF:97:EE:61:8C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0CDE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0OUm8E-0rtnniCi8XfkG_5fuYYw.roa
Signing time: Tue 29 Sep 2020 09:53:54 +0000
ROA not before: Tue 29 Sep 2020 09:53:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3294 (0xcde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:53:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D0E526F04FB4AED9E78828BC5DF906FF97EE618C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:34:2d:16:39:19:0b:59:c7:f6:7e:58:b6:86:
99:dd:1a:2e:59:aa:ed:29:03:de:35:49:5c:97:11:
d8:e8:5f:7c:90:2c:a5:40:94:da:43:4c:80:8b:2a:
f0:82:44:1e:4d:7f:74:39:e6:08:d3:b6:72:4a:d7:
6d:3f:e6:25:27:41:31:a7:ea:a6:d0:71:a4:6c:28:
95:f8:0c:ce:8d:a0:09:b4:21:d6:3d:db:38:32:28:
3c:3c:48:cb:30:39:a4:d8:30:ec:5e:3e:df:a8:b6:
08:28:46:50:cd:b4:54:7d:84:93:d2:ea:f1:4d:68:
08:43:1f:83:5e:20:0a:79:7b:ee:da:ca:ac:5f:48:
04:86:50:b4:e6:be:43:48:8e:26:4b:0e:97:79:bd:
8b:9d:17:b0:01:df:d7:8b:2c:38:df:34:a3:ca:e4:
d9:83:6a:4e:47:10:38:22:34:7a:f4:ac:bc:23:60:
e9:18:70:a9:e3:6c:15:4d:34:bb:dd:a7:f3:05:13:
df:e2:84:2d:1e:65:7a:b9:bd:fe:84:21:35:32:a1:
8e:1a:af:a0:6f:6b:a6:08:3c:fd:79:28:16:83:e2:
85:6a:74:69:2e:cb:12:02:a3:0f:00:f8:79:fc:80:
76:d9:88:9b:2a:47:8a:b0:15:d5:c0:53:bf:0a:cd:
cb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E5:26:F0:4F:B4:AE:D9:E7:88:28:BC:5D:F9:06:FF:97:EE:61:8C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0OUm8E-0rtnniCi8XfkG_5fuYYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.72.0/21
Signature Algorithm: sha256WithRSAEncryption
76:37:0d:ff:e8:dc:8b:23:2f:1e:61:24:ce:7a:98:1b:be:00:
3e:83:a5:bc:6b:71:76:b1:cf:36:8e:ae:03:29:5a:64:86:92:
d2:ae:79:de:b3:66:22:7d:b9:db:e4:0a:21:4b:ad:67:26:ec:
b2:0b:17:5c:6c:2b:f5:22:e6:05:65:79:f6:c9:94:a0:21:48:
75:11:9d:dc:03:52:48:2d:66:2b:07:e0:bf:2e:c5:34:ee:65:
bf:41:dd:b9:fe:27:bd:52:3d:e9:87:c9:ba:37:a1:e6:ef:ae:
75:1f:c2:fb:d6:9b:20:cf:2f:b4:dc:06:a1:d3:9c:37:5d:60:
f5:7f:09:81:88:8c:23:f2:93:bc:a2:bd:b0:c9:d2:3c:e2:d9:
0a:d4:2f:52:4b:49:55:f9:e6:1f:b6:f9:28:0d:d7:b7:91:29:
17:41:c7:e3:8b:c6:23:64:27:5f:c0:37:88:0e:4d:56:63:6e:
83:eb:8f:e1:60:61:05:af:2d:15:8f:a8:cf:9a:73:c8:8f:30:
98:cc:5e:23:fd:2a:dc:7e:56:ab:fa:72:d7:e2:1b:25:3c:18:
8d:fe:f4:54:f9:00:2f:26:c2:9e:0f:73:14:c1:cc:ee:4b:d6:
b5:c6:bc:e5:f3:db:b2:0c:2b:d2:04:84:e8:96:19:55:03:0d:
72:ab:56:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org