Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AjmZsqqUy14bbxZBwhfRRrWs8Aw.roa
File: AjmZsqqUy14bbxZBwhfRRrWs8Aw.roa (raw, json)
Hash identifier: zrjTGgHqrW+OHPU0DPscHicoYsocpPPkFcgXBpy9KTc=
Subject key identifier: 02:39:99:B2:AA:94:CB:5E:1B:6F:16:41:C2:17:D1:46:B5:AC:F0:0C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B27
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AjmZsqqUy14bbxZBwhfRRrWs8Aw.roa
Signing time: Wed 29 Sep 2021 02:46:13 +0000
ROA not before: Wed 29 Sep 2021 02:46:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6951 (0x1b27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=023999B2AA94CB5E1B6F1641C217D146B5ACF00C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:70:0b:11:84:e9:92:75:51:9f:ac:e2:29:cd:
a8:f3:61:04:fb:e6:d6:1e:d1:68:5f:a1:73:93:60:
bd:91:64:0b:55:e2:96:7c:8d:95:1b:56:43:93:07:
af:e2:87:79:5a:53:ca:f8:c1:85:23:22:41:7e:f3:
77:23:e8:40:ef:d5:b3:2d:7d:96:cc:4d:86:cf:37:
34:06:52:2a:92:70:2f:19:d8:96:f7:f0:dc:4e:d9:
14:0d:05:79:db:0d:4a:3b:42:86:60:30:25:47:15:
63:36:cd:f4:e1:5b:c6:38:ba:76:56:b1:1a:6d:1a:
51:54:dd:9a:ac:9a:e4:d8:15:8d:f7:e4:27:75:d3:
15:a5:9a:ec:e5:17:4a:c5:99:2f:ae:5c:d5:99:ab:
02:14:ab:f8:e0:e1:f5:f8:f3:d5:ad:95:02:5b:aa:
78:dd:c1:ff:bc:fd:33:91:0c:75:d6:c2:94:82:1e:
1b:02:69:1e:14:48:f5:e0:31:5e:de:9d:97:ab:21:
d4:d7:aa:34:e9:3f:0c:a3:b8:89:a4:78:d3:1c:4e:
03:eb:4e:8d:3e:1e:ad:61:cd:ae:82:5e:af:81:57:
39:65:bd:34:d1:0c:2d:1e:a5:f1:ac:0e:05:67:b1:
27:e8:d7:74:41:2c:fd:19:69:28:28:f2:d2:bc:22:
6b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:39:99:B2:AA:94:CB:5E:1B:6F:16:41:C2:17:D1:46:B5:AC:F0:0C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AjmZsqqUy14bbxZBwhfRRrWs8Aw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.20.0/22
Signature Algorithm: sha256WithRSAEncryption
58:d2:da:6b:bd:52:06:85:d9:ae:6b:1b:61:a3:ac:88:66:00:
0f:7b:f3:60:9c:ef:cf:d8:9e:7e:29:4f:5e:59:69:41:16:08:
2b:44:15:76:59:de:63:d1:ef:ec:1e:fb:9d:d9:29:bb:42:22:
a8:7c:2e:bd:cb:b7:ce:cf:4e:9b:d3:59:bf:2a:03:7f:44:45:
c5:90:58:15:56:31:ea:87:2f:0a:ea:a3:0c:27:df:18:0a:6c:
da:76:bc:e0:b3:1d:f3:08:be:93:bd:90:1c:79:e5:54:ce:eb:
99:26:c6:4c:0f:57:43:23:cd:e8:ed:0c:53:5e:51:c4:b7:8f:
4a:7a:bb:ee:f7:a4:46:64:5e:b7:ac:4b:f5:46:a3:fa:4f:13:
06:73:72:16:2a:d6:c4:eb:1d:b3:0e:5a:9c:c0:9d:fe:77:8b:
92:ba:40:2e:3f:93:04:58:a8:52:27:1b:6c:52:df:08:de:1e:
8e:51:a8:c5:74:e9:c9:59:1a:fb:2e:9b:b1:d6:fb:8a:94:5f:
3a:c8:08:02:ae:07:25:eb:25:0d:e2:97:a2:d4:8f:87:48:97:
a2:91:9b:cb:d9:53:9a:0d:c2:f4:5e:f0:5b:a6:2d:cd:44:2f:
fa:8d:19:a0:b1:f3:a1:6c:7d:f2:db:af:51:5a:93:eb:bc:c2:
4f:75:77:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org