Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Wf73tvNHRzaFkdW1nQjFzCAoRs.roa
File: 5Wf73tvNHRzaFkdW1nQjFzCAoRs.roa (raw, json)
Hash identifier: CX2eeZwfRlE+NKJ48UfcH1BWivRCssKJMPRtkyhmAts=
Subject key identifier: E5:67:FB:DE:DB:CD:1D:1C:DA:16:47:56:D6:74:23:17:30:80:A1:1B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E1D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Wf73tvNHRzaFkdW1nQjFzCAoRs.roa
Signing time: Tue 29 Sep 2020 09:55:21 +0000
ROA not before: Tue 29 Sep 2020 09:55:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3613 (0xe1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E567FBDEDBCD1D1CDA164756D67423173080A11B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f9:b6:33:97:13:38:3c:41:c5:70:a0:b8:03:
b5:e9:3c:0b:25:e0:e5:f6:35:81:23:59:73:2f:bf:
8a:e5:c9:ae:b8:a9:04:82:67:34:5d:c9:89:c6:01:
62:da:28:89:0f:b4:3e:d9:06:8a:c3:78:7e:c2:47:
1e:29:9c:5e:5d:0a:a1:4b:10:66:79:d0:93:25:e5:
6a:ee:32:78:77:23:36:93:c1:2c:36:f6:38:5d:cb:
a4:75:b0:ab:eb:0d:e3:e1:23:10:ae:90:02:23:ee:
c3:ef:e4:d4:29:3f:48:f6:27:82:b8:7d:51:72:66:
e6:ca:2f:9f:fd:a8:b5:e6:6b:a4:54:e5:e7:3e:f9:
2b:2f:93:29:58:a9:9a:04:14:98:c3:83:0d:74:bb:
2e:ff:05:40:75:73:52:19:17:42:a9:8d:77:9e:2e:
a0:cb:26:66:e2:06:04:30:f5:15:22:eb:79:63:67:
69:39:9f:72:36:ed:70:4b:68:b4:3b:c5:06:be:ea:
4b:28:23:ed:1c:f6:73:08:e2:c1:c5:c2:30:0c:86:
7c:8f:e8:af:27:5d:2d:6d:47:77:a0:9f:c7:98:40:
76:c2:46:8d:51:24:3d:64:80:a7:11:72:5e:93:b3:
e4:39:78:79:c2:b2:2c:8c:52:4d:01:75:bc:6e:2b:
9f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:67:FB:DE:DB:CD:1D:1C:DA:16:47:56:D6:74:23:17:30:80:A1:1B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Wf73tvNHRzaFkdW1nQjFzCAoRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.172.0/22
Signature Algorithm: sha256WithRSAEncryption
41:d3:24:12:f7:72:c8:20:24:74:83:66:fc:99:97:16:21:19:
93:d7:29:c8:28:fb:34:4a:20:12:15:9c:75:2d:91:17:d4:ff:
16:7f:6b:df:87:ec:f3:73:2f:bf:be:63:2a:31:ad:04:fb:70:
65:d8:50:9d:2a:c3:d4:90:07:70:0f:97:fc:1c:dc:36:94:6f:
5e:82:d5:55:74:48:b5:ec:f2:57:46:43:d4:59:3d:52:b7:eb:
55:e7:9d:32:56:55:99:d4:09:18:14:79:a6:c9:9b:3f:41:9b:
70:fb:2d:75:ff:fd:05:d5:d0:ab:b6:81:4c:a5:ef:0b:06:b9:
70:80:82:86:cb:8a:c6:46:65:11:ac:66:e0:07:93:22:b0:d8:
2a:92:fb:e4:53:5d:ac:ca:26:4f:b6:57:d8:1c:d0:31:6c:9a:
27:ac:1a:da:b0:33:f3:98:3e:3a:81:a1:64:40:12:00:d3:12:
36:fb:3d:2b:1a:65:15:76:b7:fe:e2:bc:3f:a5:2b:16:6d:8b:
c2:4d:74:d9:da:fb:c4:24:00:9c:79:17:73:46:6b:5a:43:b7:
8f:96:d8:aa:3b:33:70:00:b9:ba:d0:b3:5e:27:d2:86:ea:a0:
0c:3c:06:c1:02:7f:31:50:e1:2e:30:f4:be:72:2e:14:9f:02:
1f:bd:66:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:24 2024 by rpki-client on console-ams.rpki-client.org