Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pq_3u0ZvmRHrMcxbyypJS6d14c.roa
File: 2pq_3u0ZvmRHrMcxbyypJS6d14c.roa (raw, json)
Hash identifier: eVYFHUZA3Y5qH3+JeiiuEO0CKFcAWLSQxy9883srAuM=
Subject key identifier: DA:9A:BF:DE:ED:19:BE:64:47:AC:C7:31:6F:2C:A9:25:2E:9D:D7:87
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AFF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pq_3u0ZvmRHrMcxbyypJS6d14c.roa
Signing time: Wed 29 Sep 2021 02:46:00 +0000
ROA not before: Wed 29 Sep 2021 02:46:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6911 (0x1aff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DA9ABFDEED19BE6447ACC7316F2CA9252E9DD787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9f:82:42:56:e5:5f:53:5e:bc:f1:9e:26:13:
97:af:0d:68:b7:e1:43:28:1d:33:b5:3f:6d:5a:8d:
b2:0d:16:e3:dc:32:34:b8:5d:46:79:3e:1d:36:61:
d9:2f:9d:57:ed:cd:1f:eb:9d:5a:5f:e4:ad:6b:f9:
4c:1c:63:2b:85:1d:3c:e3:81:73:69:61:55:99:7b:
ed:b0:0f:05:81:6e:03:12:65:8d:25:03:36:78:72:
ea:65:69:a3:60:4f:3f:ba:a7:18:e6:27:b3:b3:54:
65:e5:dc:81:91:df:cd:d2:1a:97:80:64:cd:6e:06:
be:d7:5f:73:cb:83:27:74:e7:e2:c2:35:63:5d:13:
58:fd:83:82:d1:7b:ca:46:60:f0:d0:fe:ff:42:7b:
41:0f:17:c0:68:a6:62:a4:aa:02:68:79:47:7d:0d:
0a:9d:be:a6:3f:3e:2b:7b:1a:65:4a:d5:84:d3:5b:
74:10:ec:6a:30:2c:97:4c:e7:fd:b7:86:63:11:ac:
a5:eb:6f:4d:b6:ab:d5:b3:ef:68:58:c6:65:d8:14:
37:a0:e2:d6:4d:86:fb:7e:ae:04:d6:6c:4d:82:06:
a5:83:64:92:b3:df:f5:c0:8a:58:3b:a0:a0:4d:bc:
61:b4:1c:76:04:05:41:94:3c:09:e7:12:fa:24:59:
6f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:9A:BF:DE:ED:19:BE:64:47:AC:C7:31:6F:2C:A9:25:2E:9D:D7:87
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pq_3u0ZvmRHrMcxbyypJS6d14c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.168.0/22
Signature Algorithm: sha256WithRSAEncryption
81:33:4e:de:d6:97:d9:c8:7d:f5:de:b7:94:fb:81:5c:15:a9:
f2:25:8b:3a:1a:b9:52:3d:c4:4f:10:ec:65:ec:c5:9a:40:ca:
c7:ba:96:50:cf:a4:62:f6:ec:94:17:46:c8:04:e4:d4:d7:75:
0d:69:24:bb:b7:c2:03:93:3f:7a:02:dd:3d:47:8d:ac:09:06:
8b:20:18:d0:9f:22:4a:5e:6e:dd:28:bc:cd:2b:eb:6f:06:a6:
e6:22:ba:4a:c0:94:75:18:43:cc:40:5e:4e:f9:86:39:34:33:
fa:c7:68:61:f7:fa:06:d0:c6:72:f8:8a:61:03:8d:d4:6b:b4:
5c:27:c2:ae:44:47:a6:c8:bd:b5:fc:5a:f8:3e:bc:30:55:a9:
aa:a1:f0:e1:ff:64:af:90:46:19:41:c2:39:eb:3c:0a:54:84:
a3:02:27:72:75:3c:86:c6:f1:b8:b4:8b:d5:f8:00:d9:e3:1c:
c0:ef:e5:2f:19:0f:ef:5a:e9:4c:49:24:86:51:3f:c9:c2:7b:
41:7c:76:73:25:e7:82:b1:49:97:87:f8:ea:94:0d:92:66:0b:
b2:2a:cb:85:5c:93:9d:4d:1a:b8:24:4b:7e:49:ef:1d:e5:28:
83:b5:19:bf:63:3a:ac:74:9a:eb:3f:cd:41:b9:d1:76:a8:ff:
97:7b:f8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org