Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AkdRABmThvYxAJ6G9EniMiMPizU.roa
File: AkdRABmThvYxAJ6G9EniMiMPizU.roa (raw, json)
Hash identifier: P3uU1bTbSpsu6dE3499Bg2WQ9QCVvFuaY4srvRIIjCQ=
Subject key identifier: 02:47:51:00:19:93:86:F6:31:00:9E:86:F4:49:E2:32:23:0F:8B:35
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 177D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AkdRABmThvYxAJ6G9EniMiMPizU.roa
Signing time: Sun 07 Feb 2021 12:19:39 +0000
ROA not before: Sun 07 Feb 2021 12:19:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6013 (0x177d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:19:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=02475100199386F631009E86F449E232230F8B35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:13:da:e3:bc:f1:5a:da:f6:45:bd:ab:f3:29:
f6:6c:8a:77:fe:bb:5d:82:a8:33:8f:1a:97:15:b4:
c8:71:14:9a:8c:ad:48:88:7f:d5:11:a4:9b:e2:d0:
d7:08:91:a3:f3:08:37:9a:6e:01:af:d0:77:98:e2:
5e:53:60:22:db:ab:36:11:c0:86:8a:36:21:13:fb:
d3:6c:c2:b0:24:21:59:b5:bf:0d:85:e8:2f:52:d6:
9d:01:a5:ee:81:dc:61:d2:59:91:59:38:ab:5b:8b:
31:1c:8b:ea:a2:90:3f:32:02:34:f0:70:87:47:d4:
a6:0c:06:13:23:13:65:95:2d:16:5a:ec:0b:bd:8c:
79:c8:37:58:f5:83:13:30:de:10:65:e3:1d:9d:a9:
d6:9a:e8:40:7e:e8:e3:45:56:ad:2b:e8:34:4f:c4:
00:6d:13:fa:d7:d7:20:5e:94:57:b2:ea:ae:66:f4:
ce:3c:01:3f:12:e9:4f:f0:2d:87:51:d6:f9:b6:cc:
5b:76:e8:ab:13:7c:23:31:81:14:d6:58:89:1e:ca:
b9:b5:0c:fe:09:d1:4d:70:0b:e7:e5:93:18:3b:e1:
ac:57:ea:b5:66:50:08:86:ea:1d:03:0d:82:e6:0c:
74:be:35:25:54:42:ae:1f:8d:64:1d:62:bc:63:49:
01:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:47:51:00:19:93:86:F6:31:00:9E:86:F4:49:E2:32:23:0F:8B:35
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AkdRABmThvYxAJ6G9EniMiMPizU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.252.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:ad:3a:a1:ae:ca:08:2d:2c:49:1e:08:15:92:1f:b4:12:94:
68:72:6c:ce:b5:29:86:2c:b1:91:da:4d:01:15:80:8e:6e:b7:
b8:28:ba:31:1c:43:7a:52:4a:d0:28:be:c7:11:8e:20:ae:35:
8d:37:d3:dd:e1:0b:a3:85:48:1a:3e:e5:71:21:5b:2d:f5:76:
ce:a6:1d:3f:a1:fb:91:66:a2:99:87:9c:ac:ef:3c:dc:e2:d3:
0e:e7:d5:cd:f0:ae:b7:0b:13:2d:8d:f7:dd:8f:6d:eb:18:77:
e7:2d:c5:5f:53:03:46:1b:5b:53:32:e5:57:84:62:99:9e:8d:
1e:b7:d0:42:54:45:d8:e4:be:ca:5d:d3:d3:97:7c:18:00:49:
9d:b5:c4:f1:65:e7:e5:eb:bd:25:f9:4f:d8:1e:87:b0:8e:25:
be:43:36:cf:30:81:09:d9:ae:fb:8f:f7:09:fd:65:fb:b8:35:
e2:72:fd:02:27:44:1f:73:51:09:0c:3d:8d:80:36:8a:cd:be:
69:57:f3:1f:cc:ce:9a:1f:5e:7b:7b:77:16:2c:96:7a:1e:3f:
3c:44:24:a3:c2:73:25:7c:a8:a5:e6:81:b7:0c:b3:be:3c:8a:
68:60:19:74:c4:e3:b3:5e:88:fd:f6:de:0b:46:65:61:b1:59:
93:15:e5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org