Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8umHTp3uJRHuBPg9IchKZHZTEvs.roa
File: 8umHTp3uJRHuBPg9IchKZHZTEvs.roa (raw, json)
Hash identifier: l4+sFTU718zzj3uqRGqC80jiRG4O4BKk5yT/EJz1Bew=
Subject key identifier: F2:E9:87:4E:9D:EE:25:11:EE:04:F8:3D:21:C8:4A:64:76:53:12:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8umHTp3uJRHuBPg9IchKZHZTEvs.roa
Signing time: Thu 15 Sep 2022 02:45:24 +0000
ROA not before: Thu 15 Sep 2022 02:45:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F2E9874E9DEE2511EE04F83D21C84A64765312FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e8:08:fd:04:75:f5:23:96:a9:a8:71:52:30:
e6:59:14:1a:f0:10:5d:39:47:fd:2c:37:03:fe:cd:
4a:a4:ab:df:1e:96:43:4c:af:f6:3c:ee:aa:6d:74:
08:49:b4:41:27:a6:15:b8:4c:1d:a3:b7:6b:93:22:
94:e9:aa:38:d7:8a:41:36:7c:45:36:cf:2a:be:c5:
79:0d:5d:e7:f8:60:f5:34:2a:7b:e2:3e:30:a0:a5:
ce:dc:e4:a7:be:5f:80:63:cf:6d:03:b5:a2:57:23:
66:81:23:96:ce:47:c7:eb:d9:eb:3f:ca:74:c9:c2:
a7:20:ce:c1:80:db:d8:a2:b4:3e:bf:bb:09:f3:b7:
af:5c:10:68:ce:3c:84:b9:34:56:aa:bf:7c:94:5c:
a5:49:88:96:e8:d1:64:8a:59:a2:c1:9e:de:7c:91:
8b:56:5f:4b:36:8e:3c:68:3d:a4:ce:79:15:08:9f:
bd:95:00:5b:f8:58:36:5f:45:d1:07:b1:66:59:f0:
c1:e5:b5:57:5f:61:3b:7b:4a:7f:a8:44:f2:d1:2d:
60:2c:18:d1:bc:b5:ba:fc:e4:3d:46:36:8e:17:19:
ca:11:4a:29:2a:3b:bc:2c:45:49:41:ff:ab:41:40:
65:bd:dd:62:6f:88:a6:ff:d6:ec:02:0b:d1:d8:96:
c7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E9:87:4E:9D:EE:25:11:EE:04:F8:3D:21:C8:4A:64:76:53:12:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8umHTp3uJRHuBPg9IchKZHZTEvs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.72.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:63:29:ba:b9:66:bc:aa:18:58:ea:17:82:f3:91:6b:00:4f:
3a:da:12:ce:35:60:22:8a:b0:b7:3a:1f:fe:34:cc:72:41:75:
ed:33:7a:31:84:f6:75:ea:35:41:0f:9f:c6:d9:0c:87:c9:9e:
e4:c9:fa:c9:72:c6:81:8a:16:61:fc:1f:21:83:5f:e9:93:08:
62:43:7f:ab:58:6a:ec:48:86:a8:27:3a:70:a7:20:94:1f:1d:
71:35:00:12:a6:97:48:ed:08:37:61:d2:92:11:83:1a:f8:52:
f7:00:51:ff:a2:56:89:d8:ef:a0:d4:e1:ad:3d:78:06:e9:d0:
f7:91:3e:d4:15:ca:56:3b:6b:cb:62:ea:d0:16:3e:16:b9:f2:
75:f4:07:10:7c:bd:b6:92:da:fe:1f:59:45:df:17:47:d2:0a:
e5:72:f2:05:52:55:0a:e9:1b:73:ac:b1:e0:92:66:f7:b3:0e:
3f:60:bb:0d:64:fe:20:3d:14:b2:4e:9f:21:dc:e9:14:69:13:
fd:09:32:70:a6:28:b1:bc:a6:23:42:65:59:f8:e0:07:d1:ef:
81:50:56:e0:af:c6:16:66:7e:d9:d9:67:f5:48:45:f0:b6:86:
bc:af:1d:5b:41:63:92:cb:53:ab:e0:4e:6d:39:8c:b5:ae:62:
dc:b2:0f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:24 2024 by rpki-client on console-ams.rpki-client.org