Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8Ta-0xHd5BuuLRNwfMy5Zmv1Q9Y.roa
File: 8Ta-0xHd5BuuLRNwfMy5Zmv1Q9Y.roa (raw, json)
Hash identifier: x7WsX5IjRwYBIexaQcRlUAjZyBZYXG+qdzn5l4OiO2o=
Subject key identifier: F1:36:BE:D3:11:DD:E4:1B:AE:2D:13:70:7C:CC:B9:66:6B:F5:43:D6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8Ta-0xHd5BuuLRNwfMy5Zmv1Q9Y.roa
Signing time: Thu 15 Sep 2022 02:52:40 +0000
ROA not before: Thu 15 Sep 2022 02:52:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F136BED311DDE41BAE2D13707CCCB9666BF543D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:2a:68:ba:3d:ed:a3:ba:01:cd:b6:dc:f4:
5d:b9:64:20:cd:70:cf:6e:30:9f:31:d2:61:1e:1d:
bc:4e:f8:54:ac:aa:31:70:a4:84:2f:2a:83:b4:87:
b2:36:33:5c:0f:7b:ab:7f:6c:d7:54:15:08:f8:3e:
29:ba:d3:34:d9:f3:b0:36:a8:97:27:c3:cc:a1:22:
37:b0:ab:70:83:cb:db:9d:e9:a3:eb:17:31:10:98:
ae:d9:3e:58:91:e7:cc:1c:7c:14:eb:53:dc:1f:74:
e7:c2:bd:b1:8c:99:15:3d:9c:3c:4a:10:ec:a4:ca:
5e:5a:19:8c:4d:7a:eb:3d:62:c0:29:75:56:85:fc:
29:9e:03:e1:8e:94:25:ca:ce:3f:87:68:06:72:12:
8a:36:1b:9b:e0:c1:88:28:2a:2e:61:fb:31:86:48:
7b:34:36:d6:48:a2:28:3e:dc:6f:91:9a:11:e3:0e:
ad:78:3a:b5:1f:41:af:1b:78:ae:bd:88:ef:f7:2e:
fa:40:5a:f2:96:db:1b:31:55:16:29:88:5c:56:bf:
42:03:22:6f:72:1b:f4:44:8f:aa:3a:af:dd:f1:56:
74:bf:9a:5d:d4:7d:9c:37:74:fe:d2:af:d5:37:3f:
c1:43:e6:0a:77:ea:17:50:ce:50:0a:f1:be:e6:fe:
22:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:36:BE:D3:11:DD:E4:1B:AE:2D:13:70:7C:CC:B9:66:6B:F5:43:D6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8Ta-0xHd5BuuLRNwfMy5Zmv1Q9Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.20.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:46:5d:04:f0:24:4e:38:58:3e:23:ac:8e:e4:92:37:d8:3c:
29:42:5b:4f:02:df:ad:2a:da:33:20:5e:93:48:a9:21:b4:d2:
9b:91:cf:4d:76:29:f4:17:82:a9:6b:7b:5b:34:31:66:fa:f3:
ab:54:1c:5c:d8:f5:c4:2d:28:e1:c1:10:4a:15:02:79:75:bc:
d7:61:4f:63:6c:c9:5d:a0:2b:fc:7e:b4:1c:5a:c0:4e:09:18:
c7:a6:f4:9e:1e:e3:da:c2:0f:e6:24:0e:c9:d1:8e:18:8a:9c:
30:87:e9:be:fb:7d:47:03:d0:c6:c5:89:4e:9b:94:95:12:71:
d9:35:75:18:36:b0:f5:03:81:68:0e:70:4d:71:94:75:74:15:
bd:1f:38:8a:f8:1d:e9:30:94:a8:1c:fc:5b:78:74:40:2f:d5:
1e:bb:8b:44:9d:41:7e:6c:48:60:28:53:41:bb:b3:df:dd:3d:
1e:f9:fc:be:74:73:7b:6b:b4:11:59:1d:6c:6a:bb:27:92:0b:
cf:dc:ac:c1:3a:a8:51:13:7a:6c:77:7c:6e:87:c0:cc:14:d0:
e8:07:c6:88:0c:d5:b1:5a:0d:ee:9b:c7:32:5d:93:74:bc:fc:
15:3a:b4:b1:9e:cd:51:d3:21:91:5f:39:b3:45:05:6f:6e:3b:
80:c5:25:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:24 2024 by rpki-client on console-ams.rpki-client.org