Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cd7UxE_spqjQ-2xaOLvuEIRs1p8.roa
File: Cd7UxE_spqjQ-2xaOLvuEIRs1p8.roa (raw, json)
Hash identifier: 940Vy77hukXnRP5Dt9IU2olyTTeY7HdfdvQQ7LlUDVo=
Subject key identifier: 09:DE:D4:C4:4F:EC:A6:A8:D0:FB:6C:5A:38:BB:EE:10:84:6C:D6:9F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cd7UxE_spqjQ-2xaOLvuEIRs1p8.roa
Signing time: Thu 15 Sep 2022 02:52:26 +0000
ROA not before: Thu 15 Sep 2022 02:52:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=09DED4C44FECA6A8D0FB6C5A38BBEE10846CD69F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5a:ab:62:5b:ad:ce:c6:44:b1:b7:f8:c6:29:
10:4f:99:3a:94:c4:99:68:90:c5:0c:4b:52:0e:7b:
69:d0:15:a1:84:fb:a9:be:b6:be:72:5d:a2:25:d5:
17:66:71:a9:c4:0a:20:e6:6f:4b:7b:fc:09:49:96:
b9:03:e8:45:56:7a:76:dd:d8:a9:af:8d:59:e7:d3:
ab:25:41:82:e5:39:8f:76:9f:22:d8:f1:b9:5a:42:
d9:c9:34:6b:13:6c:39:ca:38:b7:27:cd:48:1c:b5:
de:2f:5e:0d:d5:91:95:36:61:e8:dd:34:27:7c:33:
56:84:30:58:2a:1b:a3:2b:4f:a5:e2:01:d7:26:2e:
e2:4c:ae:ad:29:6d:7f:20:5a:90:71:d9:8b:3d:9e:
64:e3:8c:ad:c7:c7:08:39:04:dc:76:c5:27:42:ac:
ee:bd:a8:01:40:68:c4:3a:52:b2:ec:2f:49:e5:62:
7f:cc:61:c4:04:2d:61:5d:ef:1c:6d:9d:a9:ff:0c:
a5:68:cc:87:4f:d9:68:a4:5b:91:e9:1e:f3:99:94:
6b:14:fa:e2:1e:05:6c:06:0b:5a:53:3b:b9:09:a7:
eb:03:a0:d7:45:af:14:03:ae:79:7c:0c:c1:2a:90:
12:6c:3d:aa:c0:58:74:de:9a:ff:cd:6b:18:b8:a1:
9c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:DE:D4:C4:4F:EC:A6:A8:D0:FB:6C:5A:38:BB:EE:10:84:6C:D6:9F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cd7UxE_spqjQ-2xaOLvuEIRs1p8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.4.0/22
Signature Algorithm: sha256WithRSAEncryption
18:35:68:5d:04:34:2d:33:8f:4b:b7:8d:bb:1c:4b:15:7f:8f:
51:da:9f:f5:b4:28:f4:0c:86:9d:fd:fd:ce:73:6f:67:a9:47:
ed:bb:05:aa:57:90:47:4e:09:0c:43:32:63:b4:c4:17:d5:11:
66:08:dd:c8:10:3d:d3:09:cf:4e:4a:f8:30:3a:56:30:2b:77:
92:1d:0b:fd:77:e2:82:6b:2d:65:3e:ce:c7:76:d8:20:61:02:
5c:5d:ed:2e:41:be:6b:7e:74:69:a7:d0:d8:b1:60:e5:4a:d9:
e5:f1:41:39:89:f0:9f:d3:7f:cd:0c:7f:34:9d:aa:45:e9:73:
dc:04:31:47:3b:1d:7a:da:c4:c9:21:ff:43:77:07:f2:32:bf:
90:4d:03:29:d8:1d:df:60:0b:2a:25:d0:e3:55:ce:3a:b1:d9:
c0:7a:d9:62:c5:4b:bc:36:f7:53:59:9e:34:62:a1:f9:b1:ff:
ef:5e:cf:bd:8d:eb:0b:ae:ec:ea:5e:94:d4:0c:95:3a:48:d3:
66:a5:73:81:c1:a5:f9:7c:48:0a:ca:6c:63:f7:5d:e7:01:4d:
60:49:aa:f2:ec:6b:83:fe:4c:e3:c1:e1:fb:c9:fe:75:63:d5:
55:37:5f:5d:57:8d:c2:55:f3:66:f2:85:1a:97:ef:a1:35:ce:
fa:80:d7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:26 2024 by rpki-client on console-ams.rpki-client.org