Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2E7o9nzPMEgxkxNdwzFICnNHfWQ.roa
File: 2E7o9nzPMEgxkxNdwzFICnNHfWQ.roa (raw, json)
Hash identifier: oc+d3FQNCP3PtwfXzbRTEM+7xwU2xTBdc1S9ytOdY8Y=
Subject key identifier: D8:4E:E8:F6:7C:CF:30:48:31:93:13:5D:C3:31:48:0A:73:47:7D:64
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 18E9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2E7o9nzPMEgxkxNdwzFICnNHfWQ.roa
Signing time: Sun 07 Feb 2021 12:55:04 +0000
ROA not before: Sun 07 Feb 2021 12:55:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.194.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6377 (0x18e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:55:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D84EE8F67CCF30483193135DC331480A73477D64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ea:24:76:a2:fe:0c:b2:c0:c5:88:d2:37:71:
7e:53:16:b0:88:7c:4b:cf:75:2d:dc:80:29:2c:e1:
6d:31:bd:66:fa:fd:4e:e5:f9:ac:de:05:7b:e5:11:
61:b7:47:42:3d:eb:57:c4:85:a8:37:dc:a6:39:09:
8e:09:ad:1a:05:ee:c7:67:e9:a8:54:74:20:be:64:
7f:b1:6d:8a:c7:fe:f8:50:95:b8:2d:f1:fd:6a:2d:
cf:6b:5b:36:70:ca:84:53:df:17:5d:82:0f:ac:dc:
c4:c4:f0:ac:37:27:5a:3c:32:d3:41:87:c7:d8:f6:
18:bb:2e:a2:fe:a2:68:5e:24:2a:b7:22:80:bd:66:
36:68:2a:3e:17:b4:6e:7c:58:ee:fe:ad:72:b4:52:
d3:6e:25:be:5c:35:c2:e2:4b:94:35:6f:e8:e3:c9:
ac:c0:63:3f:48:5b:62:a5:51:fc:64:9a:91:11:72:
ff:30:c7:04:eb:3d:76:11:ff:b9:7f:cf:5d:5e:9a:
44:e1:de:0f:cd:96:13:80:02:8d:48:58:ea:21:05:
a3:f6:80:0c:40:2c:7c:06:db:10:9a:52:57:18:1c:
c6:8e:2f:bc:cd:44:50:c6:89:6b:dc:20:ec:ae:1f:
cd:6f:96:13:67:32:5c:0e:70:e7:16:e5:b9:e1:fe:
82:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4E:E8:F6:7C:CF:30:48:31:93:13:5D:C3:31:48:0A:73:47:7D:64
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2E7o9nzPMEgxkxNdwzFICnNHfWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.254.0/23
Signature Algorithm: sha256WithRSAEncryption
25:f4:0f:6f:3c:82:4e:ff:cc:fc:31:b2:db:8f:e3:13:a5:76:
a7:87:9e:0c:3f:9a:cd:87:2a:84:90:1b:4e:ef:ba:e7:10:02:
46:3d:f9:c5:1f:0b:af:f7:a2:3c:4b:9c:2d:55:f9:cc:a6:3b:
9f:e2:86:24:10:c0:8d:f7:5b:77:86:c9:e0:71:02:d5:86:58:
03:63:87:c8:40:42:50:06:97:2a:fd:e1:21:9e:40:b1:4b:10:
20:4b:b3:fb:ab:e8:de:6d:da:22:a0:3e:00:5c:4d:2a:74:5d:
f6:92:8d:1e:f7:af:70:0c:14:76:9a:45:a7:85:fb:31:9e:91:
53:4b:09:5c:ac:79:fe:e9:73:56:55:a9:d1:8d:56:01:e3:fc:
8f:89:8a:c6:e9:5c:34:76:6f:6f:de:49:df:68:62:63:64:33:
c6:96:25:da:1b:3c:80:b9:a9:43:b4:f3:7c:ca:9d:59:6d:7f:
59:1a:2d:a9:bb:1e:8d:c5:db:e2:e7:97:9c:4f:66:9d:fd:a1:
95:62:60:dd:70:0b:3f:13:6e:fa:4e:ef:3e:4c:08:f6:5e:b2:
fe:bb:2a:eb:d5:2c:cd:80:fd:0e:a9:8c:b8:c0:52:0b:65:97:
19:64:15:1a:42:63:07:83:36:6c:f7:27:d9:4f:b8:3d:47:22:
3f:b2:28:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:20 2023 by rpki-client on console-fra.rpki-client.org