Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HoIkLQkNAz5mAquT0TST6BhpLqg.roa
File: HoIkLQkNAz5mAquT0TST6BhpLqg.roa (raw, json)
Hash identifier: 4uSUSteltO1GRQvJY5mZUVDLOyveHo3q1lQPUIxLQJ4=
Subject key identifier: 1E:82:24:2D:09:0D:03:3E:66:02:AB:93:D1:34:93:E8:18:69:2E:A8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B29
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HoIkLQkNAz5mAquT0TST6BhpLqg.roa
Signing time: Wed 29 Sep 2021 02:46:14 +0000
ROA not before: Wed 29 Sep 2021 02:46:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6953 (0x1b29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1E82242D090D033E6602AB93D13493E818692EA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:14:e6:30:f6:88:68:d6:59:a3:f1:fd:ac:68:
75:d1:57:12:57:7f:ac:0e:45:17:8f:32:14:5f:b1:
99:82:cb:61:88:e7:16:d6:89:04:7c:20:c0:99:c3:
a5:67:2f:eb:d0:fb:70:29:18:39:50:16:2b:93:0b:
e9:29:aa:e7:7d:b9:e3:a3:87:f9:a3:a2:b7:2b:fc:
bb:4e:a2:57:cb:71:6c:a3:a4:9d:0c:9c:69:dd:f7:
d0:79:98:23:56:cc:79:40:cb:53:58:33:e9:eb:81:
12:70:32:1a:dd:c0:ba:19:67:05:58:67:0c:77:8d:
82:58:79:0e:3d:03:d4:e4:8c:0c:a5:f9:19:57:e0:
cd:a3:70:ae:cd:2e:f4:57:85:48:b8:11:a7:e2:0c:
5f:2d:a6:a8:8d:32:47:aa:bf:f8:e0:cb:91:6d:b1:
a9:59:8e:18:3d:fa:22:42:cc:4e:d7:f8:64:cb:8d:
c8:1d:59:a7:86:5d:d9:9a:5f:73:76:4f:d8:e4:51:
c3:90:07:05:5f:a2:39:1c:ad:3a:c0:be:37:79:e8:
7b:ec:c0:c9:c9:24:16:70:d4:0a:10:2c:f0:b5:0f:
01:fd:5b:84:b2:44:69:fa:b8:53:c4:3a:bf:dc:61:
93:9b:04:6c:50:50:a5:23:6f:01:7c:29:dd:08:bb:
10:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:82:24:2D:09:0D:03:3E:66:02:AB:93:D1:34:93:E8:18:69:2E:A8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HoIkLQkNAz5mAquT0TST6BhpLqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.32.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:14:58:80:6d:b3:24:67:3e:5a:bb:c6:7a:1c:0f:c3:e6:b8:
84:77:78:81:bb:ca:8e:52:7b:25:06:40:c5:f5:d4:39:88:3a:
b8:8d:74:12:b4:6e:3a:f8:1c:52:66:d4:c2:ff:a9:5f:fc:00:
da:08:d9:6e:c9:d5:c4:30:6e:77:99:df:58:ca:23:f2:7b:79:
77:3b:27:dd:b9:5a:57:3a:b0:45:b7:24:05:61:ae:e4:f5:77:
6c:dd:d0:0c:ec:3b:d6:8f:c4:3f:c3:c2:2d:61:55:9d:e0:55:
44:73:be:a9:62:9f:ba:16:ce:52:66:0b:8c:8a:fc:d3:c3:17:
1a:b5:1b:be:7a:c2:53:62:cc:87:0c:d7:84:e0:1a:5e:0a:05:
61:dd:af:08:15:14:3f:47:8d:f7:ac:7c:8b:ce:2c:e0:1d:ba:
d0:1b:9d:10:6b:bb:d2:5b:f4:76:9f:d1:00:10:15:a2:d5:f0:
b8:ad:d7:6f:12:07:8d:e9:bc:98:4f:17:f4:d3:d3:3f:52:67:
db:d5:e5:3d:d4:c3:da:08:a2:54:87:98:22:5d:5b:4d:7d:d6:
20:68:d0:b0:4a:a9:89:29:6b:9b:35:71:5f:f0:30:f1:43:2f:
5b:00:46:c8:68:c7:78:1f:9d:db:8c:56:17:cf:0f:d1:18:73:
27:60:fd:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:15 2023 by rpki-client on console-ams.rpki-client.org