Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0t4KuT0calmcn3sGbrLW0MbSmvk.roa
File: 0t4KuT0calmcn3sGbrLW0MbSmvk.roa (raw, json)
Hash identifier: +/ZC7O9jmqRJL07kM7SI3GIdJWLZZe0IA19roJRc4+U=
Subject key identifier: D2:DE:0A:B9:3D:1C:6A:59:9C:9F:7B:06:6E:B2:D6:D0:C6:D2:9A:F9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 234A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0t4KuT0calmcn3sGbrLW0MbSmvk.roa
Signing time: Fri 25 Nov 2022 04:42:17 +0000
ROA not before: Fri 25 Nov 2022 04:42:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9034 (0x234a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D2DE0AB93D1C6A599C9F7B066EB2D6D0C6D29AF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:53:75:5f:d8:5f:b7:81:01:1d:38:fc:83:43:
cc:72:18:5c:20:0b:94:eb:66:f2:a5:99:b4:3b:65:
f4:80:74:41:ca:3b:d1:03:20:d9:e3:db:57:a7:01:
66:a5:a3:c5:ed:60:02:1f:2f:25:21:00:1c:30:82:
66:c7:8c:15:d2:e0:28:1c:f2:b6:ca:92:73:3d:8e:
67:ea:31:da:0d:e6:b4:d6:f3:77:39:fb:6c:2b:40:
18:97:16:d1:1a:9d:d5:85:17:9f:99:e4:f8:ab:80:
80:5d:bb:15:e3:81:ae:a1:2b:04:3f:c5:c9:29:fc:
32:05:04:ee:49:cd:d6:a8:bd:33:4c:16:86:48:7d:
20:8d:c3:fd:df:41:ae:5c:e5:d9:0f:a5:d5:41:0a:
5b:ea:08:dd:5f:73:91:ec:0d:4f:f9:e2:a9:5d:2f:
f0:a8:5c:b6:06:63:07:2b:db:9c:0e:92:5c:86:bc:
18:a9:86:0c:12:96:28:66:6f:8a:39:60:b2:52:70:
cd:8a:9a:b8:e1:e1:29:4c:ed:00:f0:1e:33:0c:6c:
58:4b:40:2e:e9:5c:d9:dd:f2:79:11:36:2b:49:79:
b1:46:9c:03:df:16:65:02:0d:b3:dc:ad:58:54:ec:
fa:4d:56:fc:9c:b7:d1:64:f0:5d:91:e5:cf:8a:e2:
10:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:DE:0A:B9:3D:1C:6A:59:9C:9F:7B:06:6E:B2:D6:D0:C6:D2:9A:F9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0t4KuT0calmcn3sGbrLW0MbSmvk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.68.0/22
Signature Algorithm: sha256WithRSAEncryption
72:cf:6b:a7:18:60:1a:8e:7b:b8:58:33:f5:63:e4:ad:0b:45:
26:ea:8f:c1:38:62:d5:ce:bf:f2:23:94:e3:f1:78:e6:00:5d:
c4:4d:22:42:66:80:1f:d2:6c:16:01:75:23:82:38:25:23:63:
7c:74:f0:f6:0f:e1:de:a2:e8:e0:3b:46:9a:68:f0:22:12:56:
31:b7:a7:ec:d5:b4:cb:5d:ae:30:db:3f:8f:a8:e3:17:27:68:
e7:54:59:2a:63:47:19:17:cc:7d:87:56:41:1f:86:f6:22:b1:
e3:67:d6:94:74:1f:a3:96:32:25:45:ea:9f:e3:2f:95:2d:56:
4c:37:6e:de:9e:c4:33:c8:17:35:a3:c4:35:e8:65:5c:70:1b:
3a:dc:5e:2f:e6:4c:be:84:5f:78:d6:69:48:65:12:6a:c2:46:
2f:98:c0:be:57:ea:47:6f:8b:73:43:d3:b5:7b:cf:38:02:52:
47:13:a9:e6:7e:ee:ad:f4:1f:7a:47:17:fb:d6:ea:ec:7d:34:
d8:89:b2:0f:18:dc:6b:4f:1e:35:1b:a1:c5:2d:34:0e:3a:fa:
47:41:5a:cb:bb:5f:96:b4:79:2e:50:96:47:6d:a3:39:85:dc:
a2:ac:e5:86:12:c5:1c:fc:1f:ae:94:b1:47:2c:fe:88:03:e0:
35:91:6a:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org