Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JOMku6PhlALhtGygch8YfXPV2Dk.roa
File: JOMku6PhlALhtGygch8YfXPV2Dk.roa (raw, json)
Hash identifier: Yp52wh9b3glPNGJtA/ERmTyJwTvjOuyATTUI9A0V3yE=
Subject key identifier: 24:E3:24:BB:A3:E1:94:02:E1:B4:6C:A0:72:1F:18:7D:73:D5:D8:39
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JOMku6PhlALhtGygch8YfXPV2Dk.roa
Signing time: Thu 15 Sep 2022 02:46:17 +0000
ROA not before: Thu 15 Sep 2022 02:46:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.128.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=24E324BBA3E19402E1B46CA0721F187D73D5D839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e4:05:e7:6c:f7:31:d3:4b:57:af:8d:3b:07:
29:bf:72:6c:ee:80:42:96:fd:1c:64:97:6e:67:62:
f4:9e:63:ed:49:53:60:5e:1c:87:f6:22:40:bb:2d:
4a:50:d7:41:a4:f3:db:fe:c6:58:e0:40:ff:2c:b1:
b9:91:1c:ce:a8:d2:f7:5c:fe:cb:dc:4b:bd:a4:45:
2b:86:6f:ee:79:95:ba:18:65:54:13:54:9c:88:d0:
4b:d3:99:92:b3:95:06:d5:0b:14:10:c5:1a:30:41:
95:b0:29:f8:a4:f4:88:b8:c8:bc:b7:de:14:2c:92:
17:5b:2c:d2:c9:3d:82:78:42:d4:f9:cb:5a:69:dd:
f9:d3:38:8b:d7:16:29:22:7e:5e:ba:71:8c:7f:16:
3f:8d:92:41:38:6b:6a:32:7e:88:18:4a:ce:54:dc:
70:e9:7c:47:1b:81:14:f0:a2:22:4d:9d:d9:ae:f3:
3b:2b:51:85:8e:cc:a7:08:0e:9b:fa:50:7a:50:08:
a2:5f:eb:3f:df:ce:16:18:1c:b1:2c:1c:25:2c:02:
f9:fe:f2:75:39:f7:9b:81:8b:ff:9c:76:db:da:e0:
49:bc:d9:99:f7:7c:5f:cb:7e:85:ba:49:8a:b5:c0:
36:9b:7b:8c:37:ea:00:4d:c7:d5:61:a1:f4:ac:ab:
46:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E3:24:BB:A3:E1:94:02:E1:B4:6C:A0:72:1F:18:7D:73:D5:D8:39
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JOMku6PhlALhtGygch8YfXPV2Dk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.128.0/20
Signature Algorithm: sha256WithRSAEncryption
37:d2:7a:8d:81:4f:63:3a:d3:d0:b2:d1:13:e2:d5:f8:47:31:
f6:d2:ca:39:b3:07:e0:2d:5a:82:e8:84:87:aa:20:02:e5:98:
88:95:b8:23:5b:56:89:c4:d3:2d:08:b6:b3:15:ee:02:70:60:
e5:79:25:1f:0e:3d:80:84:3b:2b:37:e8:ce:2e:f4:32:e5:4f:
36:0c:61:13:af:48:b4:80:02:90:1d:bf:b1:5d:2f:47:61:30:
17:4b:13:47:84:a2:37:87:62:49:3c:be:60:d8:e6:9c:d9:ac:
76:da:1a:aa:de:28:4f:76:09:c6:56:76:df:c1:b5:68:f2:73:
7a:df:42:4d:18:60:3c:0c:fc:b3:34:23:03:6e:3f:05:b5:47:
72:fc:ea:28:fe:d6:51:26:43:4e:e1:a0:52:e1:cc:41:e4:4f:
3c:0c:d3:89:01:a5:22:c6:91:cf:8d:ce:09:8c:f9:4c:bc:b0:
67:e0:45:ad:61:32:1c:41:e7:f8:d8:36:78:87:67:a7:6d:a2:
50:75:2d:0e:48:e9:b4:fb:b2:14:8b:21:0b:7f:f9:b9:5b:3b:
b1:03:2e:26:5e:97:03:c7:01:ba:b5:96:4b:b6:7e:d6:5d:04:
1e:19:60:e0:1a:05:9d:d0:cf:52:8c:c1:81:9b:82:fb:f7:55:
25:3f:7f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:28 2024 by rpki-client on console-ams.rpki-client.org