Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MN7IXyl2DhvrMrtFpcknnOpLjto.roa
File: MN7IXyl2DhvrMrtFpcknnOpLjto.roa (raw, json)
Hash identifier: 3joJT6/FjRKk8W/V+aIYHipjpPB4TsgwuISZ8ALRt6w=
Subject key identifier: 30:DE:C8:5F:29:76:0E:1B:EB:32:BB:45:A5:C9:27:9C:EA:4B:8E:DA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MN7IXyl2DhvrMrtFpcknnOpLjto.roa
Signing time: Thu 15 Sep 2022 02:44:59 +0000
ROA not before: Thu 15 Sep 2022 02:44:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=30DEC85F29760E1BEB32BB45A5C9279CEA4B8EDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:57:45:4c:a8:e4:33:e3:78:92:69:45:58:89:
0d:4a:96:91:f6:3d:af:9c:9b:29:34:1a:06:cc:8d:
bb:f7:d0:00:08:66:e9:3c:49:f2:b2:72:e7:28:66:
ae:15:56:95:2d:ae:ae:97:41:86:91:05:29:24:7e:
8d:4e:86:ae:dd:fd:c9:08:ce:93:7c:06:1a:0a:44:
19:47:b9:bf:8f:60:6d:0a:4c:0a:3f:d9:55:8b:ab:
8b:4c:ab:60:ef:a7:63:2f:94:0f:93:a0:95:c0:d1:
aa:55:dd:60:a6:31:c8:1a:4f:2d:82:8b:32:cf:19:
25:cf:28:e2:7f:d3:cc:87:33:19:b6:23:ef:2a:de:
ce:be:c6:7f:33:51:58:cb:1a:6d:74:fd:65:73:f8:
d0:ee:a4:00:ee:06:9e:68:15:2b:3c:ee:5d:1b:b8:
4e:ef:1d:9f:5a:42:66:fe:07:5f:2e:e8:5e:3a:67:
90:71:6f:17:0d:d9:fc:27:27:1c:3a:04:d6:b3:aa:
15:c4:81:39:f6:c2:6e:cd:e6:85:ed:0a:ff:da:8d:
50:69:f4:6c:fd:e7:75:06:f8:15:f6:b5:b8:cc:d0:
a4:59:aa:06:5c:8e:32:b7:c7:ba:56:64:58:68:f0:
c0:e6:ee:03:a7:d1:24:e5:ae:cb:1e:a0:80:ed:ce:
01:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:DE:C8:5F:29:76:0E:1B:EB:32:BB:45:A5:C9:27:9C:EA:4B:8E:DA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MN7IXyl2DhvrMrtFpcknnOpLjto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.168.0/22
Signature Algorithm: sha256WithRSAEncryption
26:38:b5:d7:9e:4f:96:69:3a:f2:2e:5c:1d:f4:54:7d:13:7f:
5b:32:11:71:6c:ba:5d:44:38:75:d9:68:70:17:a8:cf:ae:4b:
c4:c6:31:4d:e6:db:08:81:5a:bc:3e:cd:f3:ef:1a:64:26:9d:
49:05:0d:ab:62:64:45:f2:c2:7b:3a:80:36:ea:a8:3d:32:e4:
f7:0d:db:12:10:63:f0:2f:ed:42:6c:f8:31:35:1c:fa:3a:41:
58:c1:3c:d2:70:4f:0d:f5:ce:7c:a8:4d:56:9e:d6:3b:7d:8e:
6f:68:4c:f8:84:e8:81:f2:c5:bd:13:f2:b4:97:c9:fd:cb:dd:
e9:1d:71:64:d7:ab:cc:0b:ed:be:44:a8:5c:2c:58:c4:e5:2c:
b8:3a:5b:6b:5b:fc:c2:fa:d1:09:0d:b4:6e:5c:38:98:2d:87:
18:b1:fd:91:7f:53:ab:77:38:55:6e:99:69:61:11:f1:1a:d2:
c5:15:02:8e:2f:36:1e:17:dd:ea:da:0f:53:14:12:4d:9b:3a:
6e:b7:43:d2:24:fd:b4:85:10:7d:d0:a8:68:98:99:9a:65:c9:
53:19:e7:40:39:c1:d0:97:ac:b2:69:93:e4:45:4c:82:a3:41:
5a:11:a0:6f:f6:05:e1:c2:e7:4a:23:27:a2:75:f1:71:4f:17:
44:c6:bb:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org