Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ic02cRUnYoeWaPTEy3IicXY0Svs.roa
File: Ic02cRUnYoeWaPTEy3IicXY0Svs.roa (raw, json)
Hash identifier: beEksFP1afz+8CcRUxtDx/tbENtFiQmiVBlYK0vgJkA=
Subject key identifier: 21:CD:36:71:15:27:62:87:96:68:F4:C4:CB:72:22:71:76:34:4A:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D79
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ic02cRUnYoeWaPTEy3IicXY0Svs.roa
Signing time: Tue 29 Sep 2020 09:54:36 +0000
ROA not before: Tue 29 Sep 2020 09:54:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3449 (0xd79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=21CD3671152762879668F4C4CB72227176344AFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6b:b4:36:c8:28:db:af:6d:0f:f8:56:d0:6e:
4d:e4:40:1f:51:6e:f9:cb:2f:4c:bf:22:2b:b4:5b:
91:6d:85:40:3b:4a:6a:f5:88:06:d3:e6:59:2a:37:
95:f7:8e:1d:19:6b:70:e0:06:c0:54:0a:c0:01:9d:
c9:ae:c0:15:0a:54:48:a9:6d:fc:21:d9:7e:c7:ab:
af:70:24:eb:67:99:98:28:84:51:f6:9f:9b:81:d4:
a5:ee:95:ae:35:f5:92:c2:bb:51:b9:4e:b4:65:16:
b0:a1:35:88:9b:0d:6e:51:f7:65:f7:ac:f8:b8:1f:
7f:68:bf:30:60:3d:ad:e9:20:d0:0e:0b:f5:f8:f3:
6e:9b:58:37:4b:3e:5b:3e:32:99:e7:1a:88:ab:4c:
5d:8e:22:2d:31:b4:dd:87:de:6b:1f:d0:ca:e9:0e:
54:94:99:78:38:75:a9:07:54:09:cc:89:91:33:f7:
63:f2:34:6c:dd:a2:86:65:be:1a:94:ba:86:32:a1:
73:b4:57:c0:ce:f7:d5:81:91:47:e4:07:cb:3e:e0:
04:d9:72:15:7e:2a:33:b0:ed:b4:d7:03:65:a2:87:
d4:1b:34:c9:42:d5:7e:ce:cf:56:29:77:25:ec:cd:
fa:42:cf:b7:fd:09:be:b0:92:76:b6:32:a4:bc:e6:
2b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CD:36:71:15:27:62:87:96:68:F4:C4:CB:72:22:71:76:34:4A:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ic02cRUnYoeWaPTEy3IicXY0Svs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a0:46:af:e9:93:22:8c:d8:7f:da:6e:69:61:8f:e3:77:1c:f6:
79:80:21:cb:95:6b:ab:37:cf:7e:77:f8:c1:ad:4d:46:8a:c7:
fa:2a:f0:a5:8c:ca:43:82:e7:6f:9e:89:82:1a:9d:d3:e2:43:
81:fb:37:ba:ae:13:31:04:c3:89:28:d6:b0:a4:09:0a:d5:68:
67:ca:92:c0:7b:e5:f7:d9:d7:f0:10:e0:db:c7:75:05:58:65:
cf:c4:9e:5c:22:81:45:3b:55:ed:6e:7a:5c:b8:55:15:5b:d0:
8f:13:aa:0c:d2:a6:d0:c4:6d:c0:ac:ff:fc:bf:c7:6e:53:4d:
e9:d1:80:ef:71:ba:fa:a4:ea:7e:74:7e:41:53:09:8f:fa:f8:
fa:b7:48:a1:31:88:3d:d6:2d:a4:d7:05:d7:c5:af:08:84:c1:
d5:97:3a:5f:0e:10:fb:fc:fd:f9:66:80:b5:8d:d0:3c:4a:4c:
f7:b4:10:01:e8:a5:95:9f:bb:bb:f8:21:63:f4:98:80:17:78:
9a:22:01:14:be:73:63:90:b9:d4:27:ef:02:09:b6:e2:43:88:
b7:fe:42:3c:71:b6:2e:58:dd:c3:5b:72:46:29:ed:7d:fb:35:
67:91:6f:42:f8:81:ba:40:5e:ab:07:08:c7:b1:60:b4:1d:fa:
6b:30:4d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:16 2023 by rpki-client on console-ams.rpki-client.org