Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LWgl20MyrxHpAXpGnWOy0DIj47c.roa
File: LWgl20MyrxHpAXpGnWOy0DIj47c.roa (raw, json)
Hash identifier: t8fmM5704qP/wBVZXgN98lDFye0bZQROy/rAtz5c9jc=
Subject key identifier: 2D:68:25:DB:43:32:AF:11:E9:01:7A:46:9D:63:B2:D0:32:23:E3:B7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B00
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LWgl20MyrxHpAXpGnWOy0DIj47c.roa
Signing time: Wed 29 Sep 2021 02:46:00 +0000
ROA not before: Wed 29 Sep 2021 02:46:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6912 (0x1b00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2D6825DB4332AF11E9017A469D63B2D03223E3B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f8:ad:77:26:32:00:f1:8d:20:2e:a4:9b:56:
0d:b9:9e:fb:af:e2:af:77:e6:83:9f:63:5d:1c:bb:
9e:44:45:cf:2d:c5:a7:9b:d5:a9:b1:6e:8f:8d:c1:
79:cb:6d:b4:c5:2a:f1:26:8b:4b:5a:4c:4f:67:08:
e0:57:bd:ff:59:eb:ff:78:fd:24:17:a6:d7:52:8d:
62:b8:21:30:70:71:b1:bc:5e:d7:ea:cc:93:55:37:
de:cd:b6:4c:85:41:c9:08:64:f1:c1:72:e6:2a:9b:
38:81:af:85:82:d7:f1:91:e3:40:8d:28:9e:af:b1:
67:bf:92:91:02:1c:cc:70:f4:ce:1e:67:2e:5a:71:
d3:79:14:e2:90:54:5e:aa:67:7c:12:37:d0:4b:65:
9e:6b:36:f3:8c:4b:62:ab:3c:ee:fd:1a:cb:dd:7c:
9f:98:d7:19:70:f8:e3:a7:96:50:35:ab:ad:65:0e:
be:24:27:87:39:72:c3:34:c1:73:d4:5a:5c:03:09:
d0:6e:1f:b3:19:a1:90:56:45:c2:db:38:8d:31:e4:
05:ba:41:ea:e9:db:44:65:00:f9:cc:11:64:ee:2e:
f5:3e:27:ea:0a:19:c8:2a:fe:4e:19:35:f0:9b:ad:
e5:15:dd:d2:b8:e9:d0:32:8f:48:11:6e:a0:ea:cf:
71:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:68:25:DB:43:32:AF:11:E9:01:7A:46:9D:63:B2:D0:32:23:E3:B7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LWgl20MyrxHpAXpGnWOy0DIj47c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.172.0/22
Signature Algorithm: sha256WithRSAEncryption
51:95:f9:b8:59:fb:49:c9:26:65:be:95:a5:b3:76:37:14:d5:
e9:85:6d:b9:99:70:31:bd:a5:c5:12:13:23:7b:11:9c:5a:69:
76:b0:54:4e:f9:ea:dd:1d:12:7f:47:d1:d9:03:2b:b7:dc:ca:
35:19:7f:76:20:d4:db:b3:8a:2b:0c:2b:05:94:80:75:ff:c7:
9a:ab:47:da:bb:e6:71:ef:bb:22:9f:a7:43:89:d7:28:d9:35:
a6:14:b7:64:37:8a:80:15:7f:33:b0:c4:96:b8:92:26:cb:9c:
c2:b7:82:ad:d7:da:f4:4b:17:51:7b:b5:08:8e:b0:9e:e7:fb:
7c:7f:ae:b1:b5:ae:9c:02:29:f1:56:e1:36:b3:1e:7a:eb:81:
65:9d:29:cb:03:dc:46:21:0a:df:fc:52:db:54:b6:94:43:ef:
08:33:0e:ee:bf:ac:d1:60:df:20:d1:c5:3c:3d:85:b8:a5:1f:
93:88:e2:07:c6:57:c6:42:e1:e4:85:cd:5e:b3:e1:0d:39:27:
cc:a7:d7:b5:d0:9c:d7:ca:d8:43:43:b6:1d:9a:21:98:26:ad:
fa:95:9a:68:34:03:bd:5d:5c:dc:74:71:0b:b4:f3:91:f9:42:
e0:40:4c:7f:d8:b0:34:df:5b:b1:ee:c5:81:52:0a:7f:48:e8:
c7:d8:65:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:28 2024 by rpki-client on console-ams.rpki-client.org