Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3iBQskntOO31fAEeFzBU8hL0Nr0.roa
File: 3iBQskntOO31fAEeFzBU8hL0Nr0.roa (raw, json)
Hash identifier: bM9vKARqn6vq5QraepsAbpkBYC+kBLyxEgy6xQcVMwA=
Subject key identifier: DE:20:50:B2:49:ED:38:ED:F5:7C:01:1E:17:30:54:F2:12:F4:36:BD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 15B5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3iBQskntOO31fAEeFzBU8hL0Nr0.roa
Signing time: Sun 07 Feb 2021 12:06:05 +0000
ROA not before: Sun 07 Feb 2021 12:06:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5557 (0x15b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:06:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DE2050B249ED38EDF57C011E173054F212F436BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:d1:ab:53:63:7e:ad:25:09:14:19:0f:11:
f1:e0:39:1a:26:97:7f:bf:df:f8:55:47:60:94:5b:
4f:3c:4b:4d:de:12:8e:44:42:71:a3:bd:07:37:f2:
f2:3d:01:12:3d:c3:1e:cf:39:34:c9:a7:99:10:46:
6b:3a:9d:02:a5:02:e2:5d:24:be:9a:e5:29:9d:ff:
d8:12:4f:3f:fe:95:42:53:2c:5c:f4:06:2c:9e:87:
6d:20:91:62:64:9c:b3:4c:bb:d1:ae:f5:ac:b7:ef:
30:51:54:8e:32:aa:c0:81:2f:fd:43:23:4a:1b:38:
0c:2e:14:0e:20:1a:fe:4e:d0:e0:a6:44:4e:d9:b1:
25:00:48:00:f8:3a:18:a0:1f:ae:c7:cb:9e:2f:ad:
67:a9:4c:eb:91:13:22:f4:5e:a8:bb:33:d5:a5:c4:
c0:82:59:aa:77:5d:29:e9:10:ab:09:85:4c:08:69:
0e:c9:fb:d8:fb:84:56:93:f5:31:69:4b:99:bd:fd:
02:5c:00:b6:f0:e5:34:29:7e:31:30:bb:22:31:3d:
33:47:95:79:de:cc:35:6f:f6:ae:14:0a:38:de:c8:
cf:29:1a:0e:ac:98:ee:39:0c:05:72:88:ee:e3:83:
e7:88:7d:a5:84:de:1f:1f:f8:2a:bf:87:e6:5a:14:
d7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:20:50:B2:49:ED:38:ED:F5:7C:01:1E:17:30:54:F2:12:F4:36:BD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3iBQskntOO31fAEeFzBU8hL0Nr0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.212.0/22
Signature Algorithm: sha256WithRSAEncryption
51:6e:56:92:7f:56:96:1c:6c:f1:76:42:83:c7:65:47:20:93:
65:2f:4a:6a:cf:d3:8d:31:6e:dc:64:d8:77:ad:b9:7a:21:61:
ea:86:0d:b0:95:90:e8:c8:81:16:ae:3f:8e:18:ab:71:b0:24:
08:ab:f9:d5:18:e2:dd:fb:13:cd:ec:09:ef:e5:42:b0:26:34:
c7:fd:6e:d1:78:cb:e1:fe:58:ef:35:b5:07:da:56:39:b5:f7:
b6:d8:fb:d8:bb:46:ec:98:eb:8d:a4:00:78:56:92:ac:0d:cd:
ae:7b:73:52:35:62:77:30:a1:91:31:56:12:ce:fa:c0:2b:26:
6b:73:68:a1:f5:e4:70:32:a8:06:ef:3f:ae:fd:e7:b0:fa:64:
f4:ba:a8:a6:59:a5:11:86:bc:4e:8e:ba:b2:73:ce:46:f7:78:
fd:b4:f4:3b:04:dd:3d:bb:bd:2c:f0:c9:b5:a8:88:4c:98:49:
2f:ee:0e:5c:e0:ef:30:97:a1:66:6f:86:91:84:aa:41:0f:53:
4a:82:5f:44:8b:c8:9a:1d:95:cf:e3:8a:a4:15:b0:eb:1d:40:
b8:45:5e:25:57:8a:84:70:6e:36:0f:04:fd:fc:5e:aa:f6:e2:
20:44:ae:ee:b3:67:0b:ca:22:eb:89:7f:89:78:9c:5a:c7:f4:
b0:4d:cb:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:20 2023 by rpki-client on console-fra.rpki-client.org