Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KaO7EGckD3J089BJYhKLlg11vI0.roa
File: KaO7EGckD3J089BJYhKLlg11vI0.roa (raw, json)
Hash identifier: a53KSQlWNwHAKtINBLfl4nqKb8H3ogk70cwbC+YK3M0=
Subject key identifier: 29:A3:BB:10:67:24:0F:72:74:F3:D0:49:62:12:8B:96:0D:75:BC:8D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KaO7EGckD3J089BJYhKLlg11vI0.roa
Signing time: Thu 15 Sep 2022 02:53:01 +0000
ROA not before: Thu 15 Sep 2022 02:53:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=29A3BB1067240F7274F3D04962128B960D75BC8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f1:a1:d0:cd:76:6f:30:26:cc:97:19:b6:56:
8b:b4:00:d0:a0:05:62:b4:ec:fe:03:c8:f8:cf:a8:
ef:f5:90:e2:c9:95:e9:2a:cb:8f:6c:d7:7a:fa:44:
81:fb:57:dc:5c:6b:8e:19:3a:a3:18:63:b8:56:fc:
a4:06:98:49:e5:ea:26:da:39:22:54:8e:df:62:aa:
f5:78:df:d3:cb:cf:6c:17:da:62:da:70:4f:8f:16:
4b:bb:40:1e:d9:35:95:ee:d2:b4:9b:83:82:a9:a0:
7f:b1:ce:e4:2d:60:d6:ac:cd:64:ee:ee:f1:2d:1d:
9e:92:2f:73:2a:de:55:ec:7c:07:97:22:22:e9:df:
c8:d5:9a:8c:87:b1:69:27:c6:51:6d:4d:51:cd:bc:
e0:15:3b:b2:93:16:f5:af:38:3a:f4:fc:f5:98:8f:
91:7e:c3:d9:42:a6:b8:a5:37:c0:0a:fc:20:da:5b:
ed:87:8f:1c:5c:ad:89:ff:d6:50:52:dc:9d:d4:1b:
d3:03:9d:0b:25:66:a8:d4:db:ac:15:b8:a5:cd:6d:
c9:71:08:e4:44:d8:a7:76:b2:ea:8c:38:ae:dc:55:
af:2b:21:13:75:69:70:8b:c5:54:38:9c:15:78:e9:
96:8b:79:d2:ee:77:75:22:7b:2b:90:7b:a6:a6:1a:
5e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A3:BB:10:67:24:0F:72:74:F3:D0:49:62:12:8B:96:0D:75:BC:8D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KaO7EGckD3J089BJYhKLlg11vI0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.8.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:be:87:13:7c:c4:45:54:4e:95:0a:08:9b:7c:71:24:76:9c:
7e:6e:52:7f:69:c8:1f:27:5f:3e:dd:6d:87:88:6b:d6:fc:87:
b4:36:7b:ba:d6:2a:ea:76:d6:55:ec:89:05:ec:c2:1a:2c:f3:
71:5b:97:7c:b6:60:a1:57:8a:9d:cd:2c:93:0c:6a:30:3d:4b:
42:37:21:9d:2f:d2:1e:eb:f7:51:f7:ab:c6:25:fb:1e:d1:fc:
f1:0e:93:8a:1b:a1:fa:65:4f:98:fc:7c:cc:99:9d:41:a7:32:
86:f0:cc:89:ab:1a:7d:fa:4f:e5:02:6c:ff:30:dc:eb:17:d9:
1c:d3:75:b0:a8:6e:4b:ab:0a:c1:72:cd:dc:e3:e5:86:72:56:
2b:07:af:6c:38:7e:f3:3c:14:34:87:3b:e6:cd:1c:2b:c0:f3:
a7:0c:98:67:33:8e:f0:ee:ef:d1:61:4d:5c:90:32:f5:12:a0:
e3:d7:fd:c4:b4:20:04:d2:24:48:31:94:52:de:8a:58:08:5d:
ce:af:6e:64:0f:cc:7e:bd:ed:a8:f6:d6:10:10:0a:1e:7a:db:
e5:87:37:21:e5:75:c0:ac:a0:37:c4:ba:19:b5:fb:80:0f:84:
90:fd:bc:e9:dc:cc:1c:50:3e:e7:ba:b6:02:9e:28:8f:bd:d1:
9f:6e:7e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org