Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KiP6KRKi8fcQiFOWm6xmki-7Qgs.roa
File: KiP6KRKi8fcQiFOWm6xmki-7Qgs.roa (raw, json)
Hash identifier: RD2Nl2zFm/RZf1otcXUjaS3FBqJIj93fCC+Bv6qXBQs=
Subject key identifier: 2A:23:FA:29:12:A2:F1:F7:10:88:53:96:9B:AC:66:92:2F:BB:42:0B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KiP6KRKi8fcQiFOWm6xmki-7Qgs.roa
Signing time: Thu 15 Sep 2022 02:53:17 +0000
ROA not before: Thu 15 Sep 2022 02:53:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2A23FA2912A2F1F7108853969BAC66922FBB420B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a1:7b:52:f9:a5:b0:89:5d:80:90:70:e9:7a:
91:78:a5:32:00:9e:f4:fe:77:80:ee:d8:4f:61:b4:
26:1e:d1:fa:3c:9e:f4:b9:34:21:84:07:0a:20:3f:
e2:24:ee:55:16:f9:3c:d7:1c:02:54:c7:3d:92:7a:
5c:5a:63:36:9a:db:f8:58:0c:82:b4:1c:4e:8c:d4:
2b:b9:20:ed:c4:8c:e5:62:7f:8f:f6:47:1a:1d:ba:
1c:ba:c7:7b:a5:ab:28:40:fb:6f:ed:47:65:08:e0:
64:75:13:57:05:d9:23:71:48:e2:ef:13:43:6e:f8:
2d:c9:bc:82:b5:3e:b2:f0:c0:79:3b:6d:b8:fe:ac:
97:82:7b:6a:90:44:f8:9e:45:62:27:36:df:45:4b:
f6:5c:70:15:a7:c0:ed:cc:70:83:49:c3:93:50:52:
c7:81:fe:c4:25:5c:71:f3:ac:24:8f:44:58:6f:f2:
77:12:8f:47:db:64:97:ee:ce:4f:6a:a3:09:ec:92:
01:18:08:c7:80:a7:cb:66:39:c8:d5:66:ad:cc:3b:
3f:bd:be:c7:8c:29:22:c1:b3:dc:88:e4:a9:da:7e:
63:43:42:f7:f4:d7:cb:c4:2e:c5:b9:64:50:f6:ac:
70:f9:d5:94:e9:23:a5:4b:65:2f:d8:1c:d2:8b:db:
54:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:23:FA:29:12:A2:F1:F7:10:88:53:96:9B:AC:66:92:2F:BB:42:0B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KiP6KRKi8fcQiFOWm6xmki-7Qgs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.248.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:e1:b7:2a:4a:4d:76:26:6f:76:58:85:5f:02:45:fc:af:a1:
90:5b:b3:c9:e1:0d:f2:b2:39:71:e3:cb:12:ac:d0:aa:ac:47:
62:de:7c:db:97:b7:e9:69:ba:cc:c8:f3:bc:e4:df:05:89:ba:
26:6e:7b:4d:dd:e3:1d:24:60:40:8d:6f:49:b0:c1:c3:01:df:
8a:8d:ec:0e:ba:d4:68:64:b9:81:92:67:51:1c:de:eb:93:4c:
14:53:cc:59:fe:60:af:41:e6:13:ee:c0:74:02:b2:d4:37:01:
ec:2a:d0:22:b0:17:a7:e1:3d:66:49:ac:af:d9:19:a2:00:eb:
f2:14:a2:c0:bf:e0:82:d4:e4:1b:c7:f3:7b:46:17:13:6c:a5:
88:e2:51:e0:95:f5:a8:d3:5b:2f:67:ea:53:d7:b0:38:1d:cd:
eb:77:08:4e:c0:08:a3:20:53:31:9c:70:e1:4d:69:dd:e5:b3:
38:9c:94:8c:13:7e:af:f8:4f:19:dd:c5:d0:d8:a4:32:db:a4:
f4:9e:9c:0c:4d:5a:d5:e3:65:f6:01:cb:c4:3e:ec:2a:e4:47:
62:98:2e:af:2a:82:b5:52:ee:ad:af:aa:c3:93:46:12:c0:1d:
77:84:8c:a5:d6:2a:dc:a9:8a:2c:d0:fd:94:a7:5b:c1:f9:11:
c4:7f:2e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org