Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dd4WNJXi_XoW6V9G9T-OTpSFLSY.roa
File: Dd4WNJXi_XoW6V9G9T-OTpSFLSY.roa (raw, json)
Hash identifier: QdIFu3Rgby7bkmwymPslk/f6mSCmjh3dqK6gRn85W2Y=
Subject key identifier: 0D:DE:16:34:95:E2:FD:7A:16:E9:5F:46:F5:3F:8E:4E:94:85:2D:26
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BEA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dd4WNJXi_XoW6V9G9T-OTpSFLSY.roa
Signing time: Wed 29 Sep 2021 02:47:09 +0000
ROA not before: Wed 29 Sep 2021 02:47:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7146 (0x1bea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0DDE163495E2FD7A16E95F46F53F8E4E94852D26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:41:93:65:58:b4:39:9c:25:87:55:02:f2:0f:
1f:47:7f:03:96:b3:00:ba:7d:e2:eb:85:0d:82:fa:
56:10:ff:a3:50:ac:51:30:2f:27:3b:44:de:6a:70:
e6:5d:1f:54:b5:81:70:b1:92:cf:e1:62:4d:24:3c:
01:b9:67:27:52:c3:01:e5:f9:9b:c8:e0:bc:ec:90:
e4:c3:67:0f:29:3a:36:11:67:40:cf:fa:1d:e8:fa:
1e:81:b3:ea:3c:d8:69:af:60:c6:27:45:50:74:0d:
88:2d:b8:ed:0d:0d:dc:74:13:87:dc:26:11:62:20:
45:1a:c5:2b:b6:cc:c6:4c:c9:7d:29:4b:78:f8:67:
8f:72:2b:cd:cd:1a:ec:79:34:f8:34:d0:c0:22:ff:
33:99:6c:07:9e:8a:0c:7d:7d:9c:96:f1:1a:b2:05:
64:65:f0:a1:f2:81:ca:50:e1:03:36:1b:92:9b:bd:
cf:cf:8f:4a:b2:de:bc:49:1b:fc:b1:10:02:56:dd:
33:05:22:67:4a:36:a3:34:4c:cf:53:80:22:10:81:
80:9b:e5:10:df:f3:99:17:4f:66:88:51:ba:f7:56:
46:55:27:3e:c9:5c:0a:92:4c:81:74:ec:4d:f9:5d:
ec:b6:c2:08:0c:b9:a3:af:26:87:65:fd:d5:86:4f:
87:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DE:16:34:95:E2:FD:7A:16:E9:5F:46:F5:3F:8E:4E:94:85:2D:26
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dd4WNJXi_XoW6V9G9T-OTpSFLSY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.188.0/22
Signature Algorithm: sha256WithRSAEncryption
16:94:c8:b6:c0:d9:06:8c:2f:15:5a:a0:16:56:c8:c0:e1:1e:
28:ca:46:39:3b:19:56:92:b4:61:10:5e:f1:41:46:cf:66:fa:
1f:3e:23:4a:0f:67:50:b6:f7:32:ef:f9:99:68:0d:3a:f8:ac:
7a:5b:a0:8a:b6:f4:ca:8e:75:e8:63:97:16:f6:32:fd:e0:95:
c6:e6:88:bb:c0:83:4a:21:fa:7d:8d:60:1b:a3:92:6f:95:b3:
71:fc:26:d9:dc:bc:75:6d:5c:2c:c1:e3:35:e6:13:f7:ac:b6:
ce:09:d9:1f:74:94:2f:05:74:0a:05:cc:c6:05:9e:ea:9c:c6:
63:8e:e7:63:a7:00:e2:63:91:19:d8:08:6a:70:cc:ad:de:eb:
8c:68:5e:a4:43:c7:99:43:80:44:fe:34:77:4e:f6:5e:f0:a4:
bb:73:aa:c6:ac:20:33:9f:ad:f4:db:cc:14:b8:1c:88:24:b9:
57:aa:f7:c9:79:06:2f:db:19:34:d3:97:35:8c:94:1c:3b:98:
20:e7:97:7a:5c:65:21:b0:3d:ce:fa:3a:1b:9a:7d:fd:a3:32:
6a:13:e5:c5:9b:61:fe:dd:f5:78:a8:ca:64:37:c3:26:7d:cd:
6d:38:ce:69:34:d0:da:8e:73:68:4d:87:85:35:21:ab:90:f5:
90:68:64:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:24 2023 by rpki-client on console-fra.rpki-client.org