Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GMQK36gNLIvGx8-uQwkXtZ6-tDQ.roa
File: GMQK36gNLIvGx8-uQwkXtZ6-tDQ.roa (raw, json)
Hash identifier: 6nOqx61Su/durjbvkBi+fMaqCGa1c4XleCAmf5M8AO8=
Subject key identifier: 18:C4:0A:DF:A8:0D:2C:8B:C6:C7:CF:AE:43:09:17:B5:9E:BE:B4:34
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B43
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GMQK36gNLIvGx8-uQwkXtZ6-tDQ.roa
Signing time: Wed 29 Sep 2021 02:46:22 +0000
ROA not before: Wed 29 Sep 2021 02:46:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.237.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6979 (0x1b43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=18C40ADFA80D2C8BC6C7CFAE430917B59EBEB434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f0:d5:b4:70:da:4b:9b:f8:f5:22:4b:32:ac:
a7:df:7c:ec:ec:11:e0:b4:35:0d:77:cd:38:1d:21:
75:39:a8:74:ad:65:6c:04:1a:08:cc:3b:28:fa:7a:
86:a2:26:3b:fb:3f:29:e2:5a:a9:e2:a9:bb:c0:75:
37:39:3b:99:47:ce:0d:74:77:a5:78:48:49:f8:a5:
a9:5e:db:53:f1:2d:ee:ce:8a:65:dd:ae:f8:69:77:
6a:3e:d4:b7:f7:19:0a:54:11:72:1f:25:65:58:ff:
1c:e4:47:46:3c:58:e0:22:fb:91:f2:7f:7d:39:b9:
b2:af:0b:a7:98:78:28:3a:00:68:e8:e9:41:34:05:
f5:5f:0f:8e:00:9b:f0:e0:38:a7:75:09:25:d0:43:
2f:a3:53:8f:0f:5c:47:b4:a2:d5:32:03:0f:0a:b8:
d6:ae:35:a1:d3:76:e3:cb:a2:4f:da:96:fe:90:31:
6c:57:76:7d:c0:aa:1f:ac:f6:e0:00:f6:43:35:1b:
26:ab:cc:94:1c:3d:3e:eb:90:f1:bd:33:2f:af:1f:
a1:55:67:d2:eb:99:4e:a3:5a:63:9a:7e:8d:8a:56:
73:f8:60:57:84:98:8b:e2:5a:c8:99:45:26:10:e4:
75:8b:b9:56:62:ea:7b:55:35:df:ec:b8:8d:8f:61:
47:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C4:0A:DF:A8:0D:2C:8B:C6:C7:CF:AE:43:09:17:B5:9E:BE:B4:34
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GMQK36gNLIvGx8-uQwkXtZ6-tDQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.237.128/25
Signature Algorithm: sha256WithRSAEncryption
30:cb:bc:72:03:d6:00:94:81:a4:cb:b2:ac:37:ce:59:0d:a1:
b8:78:53:cd:0b:18:4a:7f:97:6a:37:23:ae:80:39:ae:94:2b:
dd:f1:42:f7:67:07:10:cd:3c:17:fe:98:3f:4d:95:99:6d:23:
e7:6d:fc:66:69:41:a8:ca:71:fe:c7:62:e6:8c:d8:f7:a5:7f:
26:ec:62:b5:4a:ef:87:26:77:d8:c9:40:cb:a0:33:c8:d5:3d:
7b:2d:b0:20:7c:9f:aa:cf:53:3a:5f:a3:d3:97:5f:1f:08:bb:
3c:21:3e:26:fa:6c:58:e1:c0:fd:8e:cd:83:a1:0e:3b:db:6c:
f8:d9:bc:91:90:82:93:44:33:92:ce:3f:2d:1e:b0:11:43:8c:
39:8a:6b:49:96:b4:a7:ba:63:b5:77:cc:de:71:a6:d9:e7:23:
d0:cf:45:e7:f2:b1:9b:7a:ca:53:cc:91:47:b8:9d:d5:cc:86:
db:d4:b9:21:af:bf:29:5b:f4:8c:a0:eb:86:97:00:c9:a3:0d:
15:a2:bc:4e:f5:ca:c0:68:9f:14:e1:36:c8:4b:70:05:69:c2:
61:28:b1:7f:8f:f1:74:a5:53:23:ad:32:bb:80:7b:6b:4b:dc:
59:84:e6:04:54:45:02:e7:13:ea:f2:fa:db:06:da:3f:31:bd:
f5:38:52:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:25 2023 by rpki-client on console-fra.rpki-client.org