Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ht6V2Re4UhVRQfjtXlEa4W8f8Hg.roa
File: Ht6V2Re4UhVRQfjtXlEa4W8f8Hg.roa (raw, json)
Hash identifier: UAM5PJKbTW9I1yLNq7xU9TX1GMmOQ0Js48dh3gayRdI=
Subject key identifier: 1E:DE:95:D9:17:B8:52:15:51:41:F8:ED:5E:51:1A:E1:6F:1F:F0:78
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 156D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ht6V2Re4UhVRQfjtXlEa4W8f8Hg.roa
Signing time: Sun 07 Feb 2021 12:04:34 +0000
ROA not before: Sun 07 Feb 2021 12:04:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5485 (0x156d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:04:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1EDE95D917B852155141F8ED5E511AE16F1FF078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dc:ed:b6:96:6d:ac:86:72:44:75:3e:40:c3:
f7:75:8e:e6:d8:51:b5:63:ba:3b:85:ce:ef:05:0a:
b9:c7:63:30:63:da:2d:d8:b5:c0:a8:6d:9e:17:cc:
a0:aa:af:6f:cc:ea:4a:76:8f:1f:cc:7a:83:fa:05:
69:a3:d9:b4:5d:24:86:cf:4f:e4:46:f2:7b:6c:e2:
b2:0c:b3:93:8e:28:23:a4:89:90:65:a0:86:42:d0:
2f:25:5f:24:45:6a:97:1e:1b:56:61:f2:cb:8e:a4:
0c:63:8b:3f:ea:d8:d2:57:2d:c9:d1:68:19:22:5f:
f3:64:1a:e6:fc:17:4a:82:0e:ca:63:fd:81:af:df:
a0:50:13:15:17:c2:5d:39:bd:9b:da:28:4f:c3:c0:
2d:50:29:0c:25:e1:87:54:69:85:72:dc:d6:59:3b:
ad:92:b0:c7:d5:10:80:17:81:e0:f3:2e:fa:9c:43:
cb:24:88:13:d5:4e:d2:fb:ae:4f:fe:ae:38:d5:13:
e8:fd:68:cc:e9:23:4c:3b:0e:e4:69:14:68:55:cc:
68:f5:cb:48:f1:56:12:84:ef:27:f9:fc:4c:50:22:
86:21:dd:ff:0f:2f:91:19:5d:0a:73:5c:98:84:02:
ae:13:09:b4:44:7a:67:51:15:a2:48:22:60:10:29:
f4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DE:95:D9:17:B8:52:15:51:41:F8:ED:5E:51:1A:E1:6F:1F:F0:78
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ht6V2Re4UhVRQfjtXlEa4W8f8Hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.24.0/21
Signature Algorithm: sha256WithRSAEncryption
17:a5:63:f7:59:62:31:60:60:1a:c9:2d:3c:aa:b1:ba:41:b1:
4b:35:c6:38:e9:4d:4f:87:2c:8c:9d:a6:75:ac:38:a1:05:e5:
c1:60:8e:02:3f:b4:fe:1c:9a:94:f2:a5:f5:a8:03:7a:a8:a2:
d7:be:96:68:0e:aa:79:5e:c2:a9:7b:32:73:1b:fa:b6:96:8e:
32:69:b9:8e:bd:a5:d9:e8:aa:27:eb:d9:c7:af:35:44:68:f0:
8d:50:cd:cd:a3:c9:3f:eb:3a:08:34:58:ef:21:9d:96:f6:32:
b6:01:b4:78:02:54:a7:ea:56:8f:0e:53:ae:1b:cb:21:15:1b:
5f:c6:1a:9a:99:e4:02:84:76:f0:15:e7:c8:2f:9d:8d:5c:d3:
71:06:bc:f6:45:72:1c:73:c7:56:5e:cb:98:fb:56:95:64:ef:
d6:10:b6:76:14:d1:f6:60:c2:26:ec:10:01:82:05:d0:26:3f:
bb:2a:9d:d9:af:9a:71:9d:ca:7f:0a:54:d9:73:3d:55:8e:2f:
f1:a5:56:40:00:c6:47:75:ff:a1:c0:29:87:6b:d3:f4:ce:91:
8b:39:14:76:db:61:f3:1d:f3:3e:b7:55:03:20:4b:9a:93:b1:
e7:c5:73:aa:28:a3:00:9d:84:36:ea:44:61:00:d2:39:99:f9:
4a:1d:f3:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:15 2023 by rpki-client on console-ams.rpki-client.org