Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BCHwRNgXm1sfvnftaLomiSJM0Pg.roa
File: BCHwRNgXm1sfvnftaLomiSJM0Pg.roa (raw, json)
Hash identifier: 12A20C+W4j01ezLTt57JoeVVwE2S0VAjRabEf/uWGUY=
Subject key identifier: 04:21:F0:44:D8:17:9B:5B:1F:BE:77:ED:68:BA:26:89:22:4C:D0:F8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BCHwRNgXm1sfvnftaLomiSJM0Pg.roa
Signing time: Thu 15 Sep 2022 02:44:45 +0000
ROA not before: Thu 15 Sep 2022 02:44:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.204.96/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0421F044D8179B5B1FBE77ED68BA2689224CD0F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0b:22:88:fe:9d:54:e9:92:04:98:ac:4d:a0:
f4:fb:f8:c7:96:e7:fc:38:52:4d:a4:cc:1c:f4:5f:
dc:de:be:d3:50:0e:d1:57:3e:a9:b7:7d:75:5c:b3:
bd:22:fb:ed:65:a3:48:12:d7:a5:6a:f7:02:84:f1:
21:49:b8:7d:e9:af:78:8b:e2:b2:13:17:22:08:e2:
20:66:6e:b1:a4:1d:0b:55:7d:c2:16:21:6b:7a:57:
93:e2:6c:84:f8:02:fc:e1:43:64:92:4c:fe:db:4c:
fe:3a:cb:b6:2f:c5:bf:d1:d8:60:b2:95:47:07:ab:
e2:f1:dc:7d:24:37:e6:1f:1e:00:15:15:ee:3f:69:
a6:49:9e:de:54:02:c1:2e:31:0e:28:56:b9:5b:92:
01:8d:63:61:14:c0:e5:72:38:e9:10:a8:8c:fe:99:
d5:2c:41:7d:f3:f7:14:fe:bf:8e:85:71:d0:95:3c:
6f:6b:83:bc:8e:83:12:31:e2:17:45:b9:4f:20:f9:
3b:47:19:b8:6f:cd:82:59:1e:38:6e:7c:b1:80:b9:
eb:f9:51:df:01:5d:28:b1:a0:fc:97:d2:5b:8d:38:
d8:8b:00:c7:38:6f:4d:7e:36:f8:e0:b6:d4:6e:d6:
81:69:20:da:21:f7:40:34:d0:4d:10:2a:0c:2c:1a:
1a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:21:F0:44:D8:17:9B:5B:1F:BE:77:ED:68:BA:26:89:22:4C:D0:F8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BCHwRNgXm1sfvnftaLomiSJM0Pg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.204.96/29
Signature Algorithm: sha256WithRSAEncryption
7b:a8:c2:83:78:17:d3:24:ba:7c:b8:d0:d4:9e:d6:93:d7:d8:
c2:01:70:91:6d:d3:ff:5a:1a:cb:d8:37:4b:22:91:33:3c:23:
ea:c5:2b:43:d7:38:79:09:3e:c1:f6:a8:d6:1c:63:5e:b1:b2:
db:fd:8d:48:53:76:47:b7:d2:35:be:75:f3:d9:af:24:33:9e:
fe:02:fa:15:b1:e2:34:91:37:2f:9b:d4:72:cc:d8:dc:fe:78:
71:6b:af:24:66:ac:b3:09:1b:c4:f2:14:98:f4:2f:e0:51:49:
bd:38:c0:d9:d9:3e:83:bc:5d:32:b8:7e:fe:d2:f2:c1:0f:05:
7b:af:f5:cd:69:47:c0:f0:ee:d4:fa:d9:aa:e3:ff:ef:82:38:
51:78:a1:70:e3:29:df:ad:33:5e:38:00:52:ff:7a:62:e0:93:
e6:d3:4f:f1:e9:05:85:c6:68:6a:50:d9:b4:a6:25:d2:94:e6:
fc:f6:14:3e:7c:c1:67:8d:31:27:00:cf:a3:5a:19:66:b2:a8:
12:b8:99:5c:1a:a3:64:4a:e5:f3:88:8c:1a:53:28:08:47:9f:
f3:ff:ff:92:31:87:d9:b7:29:23:6b:37:3c:97:35:54:73:12:
6c:cc:bb:c1:84:08:2b:86:61:28:6c:2d:92:a0:5c:a7:d3:31:
31:91:c2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org