Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AHJ3O9hLcghNb7W5Q8w9Ftqca6Q.roa
File: AHJ3O9hLcghNb7W5Q8w9Ftqca6Q.roa (raw, json)
Hash identifier: qz0lowfaGHAYm8YfM048h69SOS3rr3aPlXzwt1RIcw8=
Subject key identifier: 00:72:77:3B:D8:4B:72:08:4D:6F:B5:B9:43:CC:3D:16:DA:9C:6B:A4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A6D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AHJ3O9hLcghNb7W5Q8w9Ftqca6Q.roa
Signing time: Wed 29 Sep 2021 02:45:20 +0000
ROA not before: Wed 29 Sep 2021 02:45:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6765 (0x1a6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0072773BD84B72084D6FB5B943CC3D16DA9C6BA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1e:22:fc:3d:04:c3:4f:cd:1f:bd:d7:47:15:
cf:cc:9f:94:00:6b:85:a4:ff:97:35:40:59:18:72:
d5:47:23:f4:b3:99:64:5e:32:f1:e0:39:80:36:b9:
3a:db:44:1b:80:fc:96:24:99:8a:23:1e:43:6f:1b:
d4:37:26:80:43:b6:9e:9c:78:93:88:bb:a4:df:55:
d0:74:e1:28:f2:40:34:d0:1f:79:2b:47:11:4c:54:
a3:04:3d:dd:e4:15:87:66:ab:a2:6c:6d:8a:60:55:
29:98:e8:79:39:33:59:4f:8c:4f:67:82:86:ef:27:
8e:30:06:b8:0c:84:b8:14:ca:ed:a0:3f:03:16:ce:
74:5d:e1:28:b4:61:71:26:e8:e8:9c:6b:c9:11:9c:
a6:6d:48:50:db:23:98:75:9f:5a:d2:61:f1:6d:d3:
76:fd:8b:f6:16:da:c9:b4:fe:2f:5e:f6:b8:85:af:
c5:96:9f:96:74:bf:be:ac:8a:53:53:64:bc:e8:e6:
90:a0:8b:ec:08:a0:e4:9c:71:fe:7d:1d:67:23:6f:
d6:a5:ee:28:e7:f2:98:fc:13:14:2e:02:41:80:9c:
0d:e7:44:0a:84:9c:b6:89:52:09:f1:80:93:96:b5:
21:b2:8e:bf:a0:15:c2:33:22:8b:93:9c:07:d1:b6:
f3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:72:77:3B:D8:4B:72:08:4D:6F:B5:B9:43:CC:3D:16:DA:9C:6B:A4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AHJ3O9hLcghNb7W5Q8w9Ftqca6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.152.0/21
Signature Algorithm: sha256WithRSAEncryption
4c:b3:4c:00:e9:70:fe:d4:91:4e:13:6a:1b:16:33:9b:97:e2:
6a:bd:d9:6f:ab:c4:fd:92:d7:eb:80:f4:5f:59:bb:c2:0b:1b:
fd:0c:b4:e5:79:76:03:13:d3:7e:28:97:7b:d0:26:3e:3d:49:
34:1a:08:5a:88:de:50:90:ec:05:82:bd:b9:b4:1b:0e:9d:2f:
16:cd:e1:7e:88:48:d2:57:15:1b:7f:3e:7d:bd:60:fb:d9:e2:
00:84:af:4a:c9:79:2a:d9:21:90:fc:6b:75:18:ae:ad:a2:65:
aa:3d:81:47:f9:34:de:f3:e0:11:87:0e:48:23:7f:4c:fc:8b:
97:79:1e:31:74:27:44:b4:be:06:6c:95:17:5f:79:83:fb:a6:
fd:f4:34:15:d2:dc:38:bb:77:04:3b:0e:2f:3c:8c:9d:c7:9f:
17:1f:0a:4a:35:93:7d:a5:f0:58:df:45:f6:71:02:7c:c3:14:
6f:4a:7e:41:54:49:7d:28:da:fd:78:49:0b:bf:f4:e7:fb:4f:
a3:7d:e0:15:5f:90:3e:1b:6d:5e:9b:b7:58:75:71:f7:a4:21:
93:4f:29:75:d9:77:8b:97:6c:cc:26:04:57:7a:9d:8c:f4:ad:
62:c4:80:cf:bc:01:10:1a:6a:aa:f0:37:db:2b:d9:ec:c2:94:
50:29:91:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org