Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8hZZMcYJT1I_8UhNZ2igcbokOlc.roa
File: 8hZZMcYJT1I_8UhNZ2igcbokOlc.roa (raw, json)
Hash identifier: c9drb7Zv+kOOSKeTnE8pqOsHPDRIxW32voleOImSXJ8=
Subject key identifier: F2:16:59:31:C6:09:4F:52:3F:F1:48:4D:67:68:A0:71:BA:24:3A:57
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8hZZMcYJT1I_8UhNZ2igcbokOlc.roa
Signing time: Thu 15 Sep 2022 02:52:56 +0000
ROA not before: Thu 15 Sep 2022 02:52:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F2165931C6094F523FF1484D6768A071BA243A57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7c:7f:cb:14:85:63:b4:70:72:36:44:aa:a1:
40:c9:cb:ca:65:b6:a5:ed:a6:02:aa:00:2f:ff:48:
34:d7:ad:c6:01:c9:ec:c9:49:4b:00:21:59:c8:e0:
21:1b:ee:25:a6:96:c2:70:fd:9f:ab:fd:7f:ee:f3:
dd:ad:ff:b4:94:35:42:7d:8e:d0:b3:4a:70:c3:77:
79:cb:51:88:e0:b6:5f:1a:7d:24:34:79:5a:49:db:
53:6e:5f:bb:7c:1d:4a:5f:6a:99:bc:2d:c1:09:4b:
7f:f6:66:4f:e8:db:69:27:5f:5f:ee:01:61:a5:d1:
fa:11:13:4e:42:1c:84:ff:24:4c:3c:0b:6f:d2:77:
0f:6f:08:6f:1f:b6:f4:c2:22:66:1f:fb:1e:0a:47:
26:33:8a:14:e9:af:57:29:ad:a5:9d:d0:33:25:6b:
6e:7d:0d:66:ce:99:47:e4:bb:1a:ea:41:52:f1:b0:
32:e9:f5:60:e0:e5:5f:71:a9:eb:bb:6a:62:bc:8e:
6e:9e:e7:4c:dc:11:c6:36:22:fa:8b:69:15:dd:da:
a9:69:3a:9d:65:fa:52:31:49:ed:97:d7:cd:26:63:
09:0c:83:90:3a:a8:71:0d:b3:86:c1:1a:7e:35:31:
0b:59:c4:2c:fa:49:80:38:7c:bd:ad:f1:e9:e6:52:
24:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:16:59:31:C6:09:4F:52:3F:F1:48:4D:67:68:A0:71:BA:24:3A:57
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8hZZMcYJT1I_8UhNZ2igcbokOlc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.44.0/22
Signature Algorithm: sha256WithRSAEncryption
86:9a:4f:c3:7f:6f:db:ba:3c:60:6d:dc:a7:7d:f5:5a:cc:f4:
d3:2f:57:0c:21:93:e9:b3:5b:db:b9:ad:ed:5a:b3:fe:35:93:
71:a9:94:c2:a7:4e:49:73:36:f3:25:80:6d:a2:07:39:52:94:
32:88:3f:c1:c1:7f:71:2a:30:e0:67:e6:79:81:97:10:be:4c:
d7:99:05:8b:b6:18:45:fa:71:0a:c3:86:37:5a:6e:48:32:e5:
7f:ca:a2:63:74:b5:a8:01:c7:5c:17:b5:cc:8a:cc:e6:f5:c7:
b2:43:94:ef:74:b5:b8:d5:f0:af:db:fd:3e:c6:08:55:52:fd:
4e:95:6a:74:de:75:a4:ec:18:a3:48:5e:97:25:a2:ba:0a:7b:
ec:79:f5:98:a6:e9:ca:fe:40:3c:0d:22:c4:c4:ed:36:45:3e:
60:13:5f:b7:b3:00:97:e4:b4:33:48:69:a7:92:95:ba:37:23:
0a:c7:62:e0:fe:1c:de:0b:ed:db:f2:9d:d8:e5:a1:30:5d:2c:
3b:33:1e:a1:92:fc:c2:9f:b8:70:1a:45:13:b5:c3:7d:04:e9:
a9:ec:20:08:62:b6:fc:fd:01:eb:53:de:c7:72:59:fa:95:81:
fe:c7:d1:11:2f:57:ab:02:d9:ee:49:80:62:4e:ce:c0:18:3f:
a6:06:a4:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:24 2024 by rpki-client on console-ams.rpki-client.org