Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KgtHGzprVFX7y-tBfDawTpyucfY.roa
File: KgtHGzprVFX7y-tBfDawTpyucfY.roa (raw, json)
Hash identifier: I7ZDyS/mX3oUBdEcvSy/MYRd2eBhdCGRd6g1D+L/cPY=
Subject key identifier: 2A:0B:47:1B:3A:6B:54:55:FB:CB:EB:41:7C:36:B0:4E:9C:AE:71:F6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AFB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KgtHGzprVFX7y-tBfDawTpyucfY.roa
Signing time: Wed 29 Sep 2021 02:45:59 +0000
ROA not before: Wed 29 Sep 2021 02:45:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.144.192/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6907 (0x1afb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2A0B471B3A6B5455FBCBEB417C36B04E9CAE71F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f3:75:84:41:ce:c0:e2:f8:5c:be:e4:f9:bc:
e0:94:ec:78:57:c3:0a:21:bb:7b:73:4c:ed:05:25:
28:88:75:5e:04:6d:fb:d2:90:38:ab:5b:e8:6c:2e:
7e:41:c7:78:c8:6f:28:e9:78:9e:3d:81:6a:75:40:
0a:21:ea:2c:d9:44:d3:ac:3d:e5:5d:32:46:16:d0:
d3:5a:2d:df:3b:2d:3c:43:25:1e:29:cc:61:ea:13:
70:c3:c4:26:bd:ad:13:0c:dd:eb:c7:62:bc:57:c5:
4f:7b:28:73:f3:06:67:8c:60:d4:73:1b:e6:7c:75:
b6:5c:d5:9c:58:ec:07:1f:2b:05:8a:94:a3:ea:3f:
35:f2:bb:49:ed:75:5c:2d:1c:1f:55:c9:20:e2:31:
05:f6:c8:6b:26:8a:1b:63:78:71:e6:20:fb:d4:d8:
ea:3e:79:bb:61:fa:dc:5b:8d:87:12:a7:6f:33:fa:
2d:8c:26:94:1e:36:b4:fe:c6:25:48:df:1f:bc:a8:
57:0e:68:0b:dd:05:75:39:80:77:95:21:07:57:93:
57:a6:86:6a:8e:5c:a2:4a:25:16:dd:e8:9a:1d:c5:
60:d1:10:25:dd:d7:f5:3a:03:38:57:58:58:99:1d:
12:69:3f:1b:5e:61:4f:10:5d:9e:48:53:e5:b1:4f:
6b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0B:47:1B:3A:6B:54:55:FB:CB:EB:41:7C:36:B0:4E:9C:AE:71:F6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KgtHGzprVFX7y-tBfDawTpyucfY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.144.192/26
Signature Algorithm: sha256WithRSAEncryption
12:c5:eb:d3:b4:ed:54:d6:ed:e8:a9:51:73:d3:02:1d:88:39:
f0:f3:78:5c:be:77:fc:c0:ee:fb:f8:72:05:48:0f:14:c0:1d:
c6:13:0a:50:df:54:42:f5:9c:6e:fe:e9:84:2f:e2:87:c0:a5:
43:6a:1b:5b:da:bc:85:36:8f:00:c8:42:23:9d:0f:7d:8e:f6:
a5:69:d0:d1:49:91:5f:1a:38:3e:a8:f4:a5:ab:ab:52:c7:fc:
9b:d1:57:fb:08:f6:de:ea:a2:5a:85:24:a0:a6:19:34:9d:a0:
90:cf:03:07:dd:de:fe:1e:a8:21:23:4a:93:82:6b:c8:31:85:
bf:6c:9a:16:2b:aa:aa:e4:eb:a6:8c:b2:52:95:3b:08:37:e3:
37:54:1a:4a:09:e3:34:5f:bc:9a:d4:d6:d6:1b:38:0a:5b:ad:
60:bc:ff:ec:48:b2:c3:1d:7e:59:a2:b3:b7:0f:2d:11:b1:d9:
5d:0c:3f:fe:5a:b9:f1:5b:11:69:88:48:69:bf:dc:b6:25:10:
80:9c:0d:3d:fa:0c:8a:22:8c:cc:97:15:1e:94:09:79:52:87:
e9:ad:4f:01:e1:49:e6:eb:19:c8:b9:b6:ed:5b:f8:73:bf:90:
3b:ff:73:55:0b:de:2a:c1:7c:20:e2:be:30:35:7a:ac:0d:20:
c8:1d:4c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:26 2023 by rpki-client on console-fra.rpki-client.org