Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5KhQwqwzrRHNvsHvAo_OWuckAsA.roa
File: 5KhQwqwzrRHNvsHvAo_OWuckAsA.roa (raw, json)
Hash identifier: 2jb7uTamW6Je9avKkk1SLQlA0WSPwjdK2FNWfcYh810=
Subject key identifier: E4:A8:50:C2:AC:33:AD:11:CD:BE:C1:EF:02:8F:CE:5A:E7:24:02:C0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5KhQwqwzrRHNvsHvAo_OWuckAsA.roa
Signing time: Thu 15 Sep 2022 02:52:54 +0000
ROA not before: Thu 15 Sep 2022 02:52:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E4A850C2AC33AD11CDBEC1EF028FCE5AE72402C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:20:89:e3:e9:a7:8d:21:c4:7f:31:fe:d1:d8:
8a:cc:05:9e:27:56:6a:a6:d3:f4:12:ea:07:01:50:
bd:85:11:c0:5e:17:e2:b4:c6:0a:06:73:04:a2:42:
5d:c9:79:3b:07:3b:47:5b:59:5c:26:b7:dc:a1:a2:
b2:6a:9b:a7:54:9c:a0:a4:b2:2c:ba:46:41:a4:05:
55:20:35:5b:f2:bc:f6:ab:1b:83:15:c2:8f:09:ce:
b3:c4:85:51:59:c1:8b:ea:ca:fa:03:b0:96:2f:64:
41:1b:3e:c9:31:07:1c:1c:b7:6d:f8:77:65:a9:50:
0b:b0:94:31:97:ac:03:58:dd:30:a9:88:43:89:49:
74:41:bd:78:bf:7a:2b:7a:51:2b:11:cf:e5:b7:5f:
28:d9:d6:9d:32:33:8a:ca:b9:1b:40:15:d9:b4:89:
d4:bd:5f:c5:e1:7b:fe:2a:93:0d:da:e7:c7:e6:11:
c1:ec:0b:73:3d:27:f9:d0:c1:15:b4:df:10:63:cd:
27:1a:2f:bb:b2:0c:53:a0:df:c0:fb:fa:fb:8a:47:
0a:37:dd:a9:d1:76:bb:c3:6f:39:fb:45:01:42:9f:
d9:3d:9f:6f:ff:05:4f:d1:da:91:f5:70:46:fd:1c:
d1:3a:c2:22:d0:3b:2a:4c:a5:f2:66:3e:2d:a0:cc:
ac:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A8:50:C2:AC:33:AD:11:CD:BE:C1:EF:02:8F:CE:5A:E7:24:02:C0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5KhQwqwzrRHNvsHvAo_OWuckAsA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.232.0/21
Signature Algorithm: sha256WithRSAEncryption
77:6b:8d:94:64:db:00:14:72:2a:cb:3e:cf:64:4f:6f:c3:37:
e0:18:83:1a:96:d8:a5:20:45:49:b7:60:55:e4:b1:69:c4:5a:
20:2f:ef:ae:06:5a:f2:1f:b9:0d:e2:81:24:0f:f8:55:2b:44:
2d:29:b6:71:cd:40:1f:7c:c3:9c:c8:51:18:64:c9:62:46:cc:
20:80:66:12:26:2d:25:1b:11:03:e6:ba:22:c5:74:98:c5:84:
00:36:37:09:a4:6e:ab:ec:95:45:6a:97:c0:53:9a:b0:4d:2f:
43:d1:ca:d7:e6:b2:12:43:b5:95:bd:25:a8:d0:57:c9:b5:51:
20:26:82:05:32:61:17:08:68:2c:d5:be:2d:d6:80:b3:37:06:
16:79:8e:c8:0f:35:0b:a7:58:d5:6f:dc:19:8b:fe:34:97:00:
af:88:38:34:b3:28:40:4e:97:ee:21:66:c0:57:95:e2:c3:aa:
fa:c9:ff:3c:aa:2c:e4:b5:78:09:3a:a1:b4:a5:64:e1:17:78:
52:2d:57:55:5e:3a:2d:15:07:9d:f9:67:1e:55:cf:f8:33:14:
d9:0f:ae:77:73:b9:68:bf:23:3b:bd:77:2b:d6:90:75:80:5f:
75:3a:f4:30:ec:6f:00:57:84:c4:87:e9:36:ae:5f:5e:77:e8:
f0:f1:82:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org