Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KC9-BifTUYZ_51I3s6bmhONgCRo.roa
File: KC9-BifTUYZ_51I3s6bmhONgCRo.roa (raw, json)
Hash identifier: raqTMFkNhd+kQMQexzCE4p1CAHnKvF33PP/T0lPkE3Y=
Subject key identifier: 28:2F:7E:06:27:D3:51:86:7F:E7:52:37:B3:A6:E6:84:E3:60:09:1A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2312
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KC9-BifTUYZ_51I3s6bmhONgCRo.roa
Signing time: Fri 25 Nov 2022 04:42:00 +0000
ROA not before: Fri 25 Nov 2022 04:42:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8978 (0x2312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=282F7E0627D351867FE75237B3A6E684E360091A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:45:fb:6a:49:6e:31:7c:07:a3:88:64:58:e9:
8d:93:f2:1f:fc:d5:67:64:00:b4:ec:b4:70:26:9a:
ba:89:0a:5d:41:47:d2:94:97:be:8c:fb:e6:34:db:
b0:cf:b1:39:71:83:0b:41:bb:93:63:3f:4a:da:42:
19:97:ab:e2:0c:7d:91:60:b5:4b:2d:4a:b0:7b:3a:
2e:47:6e:93:7c:a1:72:45:3c:01:a4:a8:c8:b8:8e:
eb:53:d4:ac:94:12:d8:ba:ec:d0:00:ae:6c:83:56:
ef:c1:97:6c:10:47:1c:5e:f9:68:08:47:a5:8f:da:
83:42:ee:19:90:84:b7:fa:9c:99:13:20:32:26:18:
15:71:cf:05:83:c8:02:07:ea:b4:bd:53:dc:28:1b:
ab:47:1f:60:86:f5:93:cb:b6:ca:75:22:f3:dc:c4:
a4:9b:70:d0:10:d9:59:8c:8c:31:e4:6f:f1:66:80:
1f:db:93:87:58:6e:54:7a:28:8c:57:2e:3d:7e:de:
93:de:90:76:04:c9:39:78:21:1d:aa:23:a5:1e:29:
a2:a9:e1:bc:e7:88:fc:46:99:18:93:da:58:b3:3b:
ae:24:16:0c:61:8d:11:13:9d:26:5b:00:0a:dc:00:
47:a0:b1:c4:07:30:8a:cf:87:8b:70:bb:a2:4a:84:
4f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2F:7E:06:27:D3:51:86:7F:E7:52:37:B3:A6:E6:84:E3:60:09:1A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KC9-BifTUYZ_51I3s6bmhONgCRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:66:57:f4:dd:93:35:ce:98:34:cb:a8:26:84:1d:c5:21:75:
26:ff:e3:f3:22:9e:af:3c:de:51:49:17:11:10:bf:e0:75:59:
ef:d5:68:d5:e0:f4:22:08:de:6e:23:0c:48:ca:19:9f:47:f9:
0a:53:c3:e7:41:83:a8:d5:02:b9:9a:23:0c:73:bc:78:d0:8a:
8d:e8:c6:4d:11:fb:0b:5d:22:85:0b:fd:fe:28:88:75:c0:d3:
5c:28:a4:d5:5e:46:f1:4c:ea:d5:63:a0:5c:26:0e:3c:8e:07:
3c:9a:8d:5e:96:34:75:f3:8e:f4:cf:fd:6e:f8:33:b6:bc:a3:
60:91:d1:29:25:f2:db:7d:1a:a3:09:07:ca:1f:8a:c4:a0:61:
10:81:f4:02:1b:8d:5b:af:34:fc:cf:5d:6c:4e:a1:6e:5b:9d:
9d:d7:df:8b:57:cc:28:45:8d:5c:44:20:ed:c3:67:f5:6c:8c:
3b:ce:83:e6:f8:f0:13:3b:0d:aa:35:6c:25:c0:c6:e0:b4:6b:
fb:e2:8c:b3:e9:f5:d8:53:9f:4a:58:f5:36:ab:d0:a5:e3:48:
d3:e3:09:a7:40:21:20:59:48:99:6c:7d:f9:61:cb:e4:fe:2f:
f0:18:89:af:e2:8a:dc:d5:dd:e3:c4:fb:65:5b:84:76:0a:7d:
d1:fa:39:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org