Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HOPnoHBdVzwwFRYQfKf4aG2-nxo.roa
File: HOPnoHBdVzwwFRYQfKf4aG2-nxo.roa (raw, json)
Hash identifier: gB950bJrGwV7A9uTDfXhF9tIZY/K9+QgeHNrL6sR6gM=
Subject key identifier: 1C:E3:E7:A0:70:5D:57:3C:30:15:16:10:7C:A7:F8:68:6D:BE:9F:1A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22A4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HOPnoHBdVzwwFRYQfKf4aG2-nxo.roa
Signing time: Fri 25 Nov 2022 04:41:27 +0000
ROA not before: Fri 25 Nov 2022 04:41:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8868 (0x22a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1CE3E7A0705D573C301516107CA7F8686DBE9F1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6d:cd:c7:92:0a:97:22:fb:5a:f9:19:0a:be:
fb:24:3d:15:b9:09:2f:5f:b7:e9:07:8b:0c:51:bc:
f5:39:8b:13:92:75:d4:69:76:bb:23:90:0a:52:9f:
99:88:36:ed:3b:cd:6d:d9:20:1c:d2:76:3b:39:54:
fe:26:a6:26:f6:c7:a3:c8:28:b7:f1:a3:e2:e9:ef:
64:72:37:08:63:84:24:c6:03:cf:cb:09:44:c9:b3:
bc:08:ac:73:90:cd:d3:41:7c:cf:4b:7a:4f:e4:56:
15:42:00:4c:c6:34:a1:fe:6a:ec:a3:34:56:2c:7b:
fc:32:97:c6:e4:cb:47:e6:36:86:bc:c6:4e:43:e7:
ed:46:a4:0d:c3:d9:0c:b1:6c:65:64:a7:58:12:eb:
ac:dd:86:df:12:99:56:51:ba:b5:39:b1:3e:ea:b2:
54:ce:c0:7e:03:fd:b5:2e:d9:f9:c6:77:62:f2:aa:
32:44:f9:3a:eb:63:a0:6d:2c:c5:2d:e0:21:e5:04:
70:f3:ea:34:00:98:25:49:fd:97:53:ed:fc:f0:d6:
9a:f6:f6:76:1f:b0:6a:46:56:2e:2e:53:f2:b4:f0:
bb:49:67:60:9f:6c:10:a0:27:0f:bb:a5:61:64:33:
e3:08:7e:1f:83:db:df:79:ad:e3:57:47:0f:71:95:
14:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E3:E7:A0:70:5D:57:3C:30:15:16:10:7C:A7:F8:68:6D:BE:9F:1A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HOPnoHBdVzwwFRYQfKf4aG2-nxo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.192.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:48:7b:63:60:f9:29:0f:ab:72:e8:88:80:ac:10:b9:3e:44:
2b:09:2a:9c:b5:56:8f:dc:a4:c1:c9:d2:31:ed:c4:45:61:56:
56:0a:c0:e5:f9:85:06:32:fe:60:45:a1:71:b4:d1:0f:0a:fd:
26:da:74:5a:27:c0:00:b3:0a:3c:6f:79:63:34:10:57:e6:8d:
52:d2:e7:1a:05:ae:dd:a1:65:90:ce:be:f9:6c:3d:7c:77:43:
22:2e:bb:ce:fc:e4:27:e6:6e:0a:04:fc:30:5a:2a:04:57:76:
85:f1:de:11:eb:6c:7b:da:a5:45:1e:5d:ad:09:f1:1e:21:bd:
2e:97:a0:34:d5:14:d4:2c:13:02:d0:28:92:83:d7:e7:1e:25:
cd:bb:9e:a6:13:a0:04:9f:27:17:45:5c:0e:f5:7c:fc:de:b7:
18:49:37:a6:d1:02:46:04:f2:a6:18:48:69:86:d1:0f:e4:90:
4e:66:38:c9:1b:40:84:0e:5e:53:fd:2d:45:7b:d1:f9:e6:d0:
4e:ed:10:b5:27:13:f1:36:2c:0d:ac:31:fa:6b:1e:bc:fb:96:
0d:12:db:3a:1d:40:b1:6b:32:ce:fd:bc:40:5c:c7:19:e3:14:
c8:36:62:31:bf:63:cc:16:d1:ab:c7:03:71:73:4f:8f:3f:98:
ad:39:4d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:27 2024 by rpki-client on console-ams.rpki-client.org