Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FPxM6NDgRsf9F2mOJ6BhEBI0NUo.roa
File: FPxM6NDgRsf9F2mOJ6BhEBI0NUo.roa (raw, json)
Hash identifier: DJvaPb9hSG2ASC4/4x1AVIDam3B7yYihCzVZPsSzqZk=
Subject key identifier: 14:FC:4C:E8:D0:E0:46:C7:FD:17:69:8E:27:A0:61:10:12:34:35:4A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FPxM6NDgRsf9F2mOJ6BhEBI0NUo.roa
Signing time: Thu 15 Sep 2022 02:44:59 +0000
ROA not before: Thu 15 Sep 2022 02:44:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=14FC4CE8D0E046C7FD17698E27A061101234354A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:44:22:c4:33:e6:12:18:bb:e1:00:eb:ed:8b:
3a:d9:39:fb:33:3a:b7:c5:88:df:7d:65:a3:0a:f7:
c3:cd:53:d5:c5:6b:b4:7d:a4:a3:7d:ec:aa:12:39:
63:a8:57:61:b0:aa:03:a9:8b:c1:fb:92:fb:c4:35:
74:6c:1f:c7:79:5a:c6:3e:28:6e:4e:7d:98:af:36:
b4:b2:f7:f3:9e:5a:99:05:85:19:b7:b4:82:e6:9d:
32:e0:1a:8e:e7:c6:d0:1a:7d:20:aa:34:dd:f6:de:
bc:e3:f8:33:4b:e7:fa:1c:a8:94:e8:ac:fc:44:ad:
02:2b:ca:f2:8f:ec:0f:8a:2f:8c:8c:f5:eb:0c:2f:
51:8f:3a:6d:d5:24:61:d4:33:07:6b:80:f6:82:75:
5b:86:d7:92:3b:a0:b1:7b:2d:aa:90:fd:3f:6a:0f:
83:3e:70:6d:d2:75:00:6b:b2:e8:f8:48:8d:9f:b0:
89:6b:b3:31:5f:f5:36:40:cf:8b:ad:5f:be:98:63:
10:e6:39:57:ae:7b:70:54:13:88:dc:2d:1b:4d:0c:
06:9f:82:4f:91:50:16:cd:90:8a:dc:25:e5:c5:33:
29:2a:d5:c1:3b:27:cf:e1:0d:3f:c5:36:0e:6d:9a:
09:22:b6:0c:29:ae:ac:51:21:d6:a4:75:96:8e:06:
17:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:FC:4C:E8:D0:E0:46:C7:FD:17:69:8E:27:A0:61:10:12:34:35:4A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FPxM6NDgRsf9F2mOJ6BhEBI0NUo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.200.0/22
Signature Algorithm: sha256WithRSAEncryption
73:56:af:2e:e1:74:16:a2:96:26:ed:2b:aa:9a:fd:1f:95:cb:
66:9f:77:91:12:3e:82:28:0c:ba:7d:eb:27:5d:09:16:a9:82:
ff:03:cc:d9:75:12:ef:67:ba:ed:b7:b8:dc:5a:f8:f3:1f:89:
e6:ae:23:65:32:00:80:e2:2c:1f:9e:f2:02:cb:94:9c:51:82:
02:0b:9d:14:b0:75:49:b0:b4:bb:c3:b8:21:28:08:77:91:97:
3c:e0:69:82:ad:cf:29:0a:fd:c0:03:89:f5:68:92:f2:e1:99:
39:de:19:b2:15:53:90:fc:08:5d:05:3c:8e:8c:87:53:bf:ce:
67:51:5c:54:df:7c:21:0c:1e:8a:90:ca:c5:2f:4f:b9:03:43:
fc:16:9b:0f:9b:24:1c:14:50:af:c0:a6:a5:9d:52:02:1c:ec:
aa:bc:74:cf:e7:88:88:9b:2d:e1:73:8d:b1:2c:f6:ae:36:96:
99:1a:e0:45:e9:9a:46:dc:bc:ca:3d:4a:39:45:54:b8:23:b8:
20:46:f2:7d:d6:3e:6a:6d:21:ef:10:c6:8f:de:c1:c4:d6:76:
b0:f2:8b:6d:02:aa:46:4e:8e:9e:97:c2:f9:eb:95:93:a2:c8:
c7:1e:3c:dc:24:aa:8a:87:84:58:6c:dd:0d:5a:6f:1e:e6:91:
16:9c:77:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org