Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4ljnZUpEVLoBFVNE3AMusaDPMc0.roa
File: 4ljnZUpEVLoBFVNE3AMusaDPMc0.roa (raw, json)
Hash identifier: wAANb6VlDU3Urp/s3egwUZhqlUcObOO1tz2ZQT+Oxtk=
Subject key identifier: E2:58:E7:65:4A:44:54:BA:01:15:53:44:DC:03:2E:B1:A0:CF:31:CD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 177B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4ljnZUpEVLoBFVNE3AMusaDPMc0.roa
Signing time: Sun 07 Feb 2021 12:19:36 +0000
ROA not before: Sun 07 Feb 2021 12:19:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6011 (0x177b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:19:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E258E7654A4454BA01155344DC032EB1A0CF31CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1d:f2:31:e2:b5:8d:14:4d:2a:18:0f:02:c9:
e8:02:aa:fd:da:fc:cf:a3:30:1d:0f:82:80:93:e0:
47:0a:49:ff:18:88:3f:2b:31:8a:fa:3b:5e:fd:da:
06:ae:d6:bc:74:c6:4f:9a:bd:96:de:97:f2:d1:73:
37:67:1b:40:fc:d4:38:5a:c5:b5:4f:80:f0:cc:02:
90:c0:41:ac:e6:11:8e:e2:78:55:20:e3:ce:54:8b:
3d:6c:c3:ee:91:1a:c0:f8:c4:2a:84:48:8e:fe:cc:
4d:1c:e8:15:a6:02:b1:55:07:cc:be:df:9e:ce:14:
17:25:43:4e:8b:3c:12:55:fb:49:5f:f7:a5:14:5d:
4d:ea:e5:d5:de:88:6a:8e:02:50:70:bc:7a:ac:b1:
40:66:45:fa:c8:6f:2a:e1:80:82:7b:83:9d:e1:26:
9f:ff:d1:94:15:6d:f8:e8:12:d0:34:48:bf:9c:5a:
aa:fb:bf:3f:87:d2:8b:b0:45:56:3c:c6:ee:85:2b:
27:c8:b3:05:7f:76:9b:94:ba:fd:29:03:4e:27:45:
ec:26:b8:00:65:b5:6a:a8:1b:dd:15:59:29:ed:67:
f9:40:1c:06:a0:d7:04:07:75:97:33:52:a8:87:38:
2a:59:ae:90:92:2b:71:80:89:cd:6d:69:83:38:2b:
35:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:58:E7:65:4A:44:54:BA:01:15:53:44:DC:03:2E:B1:A0:CF:31:CD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4ljnZUpEVLoBFVNE3AMusaDPMc0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.248.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:e1:6c:f2:ca:97:16:e0:3a:a3:29:8f:8d:0e:4b:22:d4:9e:
74:66:c5:8e:7a:28:fc:47:72:2a:06:09:e7:5a:78:01:d6:31:
b7:c3:cc:21:db:cd:6d:ca:bc:80:81:ce:1b:74:b5:1f:b3:71:
15:f7:ac:a6:44:2e:8c:5f:4d:a8:a0:7e:84:10:45:08:ad:a1:
90:fd:c9:b6:8e:79:9b:f1:8b:a9:bb:97:b0:02:a6:8f:78:6a:
d6:33:80:92:11:0a:ac:f7:10:0a:0a:6e:3b:02:42:72:c8:e6:
ca:9f:10:ff:93:49:28:41:ba:53:6d:12:83:40:67:5f:9d:35:
db:8b:19:ab:7e:89:f8:5e:ce:f9:a3:fb:59:26:0b:76:7e:fc:
b1:5d:54:02:56:73:6b:8a:41:03:cd:a2:f1:fb:b1:e6:b0:6b:
e1:be:d3:4c:5f:57:40:60:64:b2:e3:dd:ba:69:47:40:57:bb:
09:ab:0e:d6:0c:55:4a:18:cc:9a:b8:1f:e9:f0:70:e2:84:63:
18:63:5d:86:44:dd:73:df:f8:ec:dc:45:66:ff:e3:4e:9a:a7:
f9:c3:2f:e4:85:03:8f:41:33:f8:56:d7:93:29:82:83:21:05:
46:ef:49:45:14:9a:d2:f0:c1:69:b9:7a:85:96:f0:4e:a8:a2:
52:b8:4e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org