Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NAO_jlSNRjKlmWIJpfde7ByxZ20.roa
File: NAO_jlSNRjKlmWIJpfde7ByxZ20.roa (raw, json)
Hash identifier: +J9DeKeg473p0m59Jij3tqQsHC1Qg2QWz4mDEYttb30=
Subject key identifier: 34:03:BF:8E:54:8D:46:32:A5:99:62:09:A5:F7:5E:EC:1C:B1:67:6D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NAO_jlSNRjKlmWIJpfde7ByxZ20.roa
Signing time: Thu 15 Sep 2022 02:46:03 +0000
ROA not before: Thu 15 Sep 2022 02:46:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.205.128/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3403BF8E548D4632A5996209A5F75EEC1CB1676D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:16:45:82:b7:bd:33:3c:6d:66:d3:7d:f1:35:
ad:6a:5c:fe:b3:18:f2:cc:75:bb:08:c6:93:46:46:
ae:bf:17:eb:ce:40:55:54:46:66:5f:f4:98:6f:c4:
6f:5b:d5:33:a2:ef:22:13:71:2c:58:59:4b:4f:6c:
82:13:17:f5:31:34:72:31:6e:08:28:74:77:d0:b9:
bd:b6:e2:2c:3b:af:d8:a6:3d:04:f8:23:ab:2e:b9:
66:62:59:18:80:20:d2:73:f7:95:0a:27:b2:31:1b:
3a:91:c5:de:39:9f:34:6e:84:a0:45:14:4a:49:76:
ea:03:4a:64:2a:70:45:c5:10:f7:c0:36:3a:e2:62:
c9:0e:40:57:e2:78:33:9d:fe:c7:03:c2:ee:8f:50:
b7:d2:d0:0f:75:20:38:81:fc:75:ae:76:ad:72:b8:
49:e9:79:96:51:6d:90:79:3d:a1:32:fa:95:b3:08:
d0:39:48:04:9f:fb:ed:0b:d2:a1:73:5d:e1:ef:2c:
b9:4c:dc:bd:87:a5:30:49:dc:30:13:06:fa:d1:3f:
54:6a:e5:98:af:4e:d7:21:4e:be:02:40:d0:9b:ab:
79:eb:8d:d8:20:94:cb:2f:43:70:df:f5:7b:68:d2:
58:88:5b:9e:a2:4a:53:f8:89:49:a5:34:2d:25:14:
54:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:03:BF:8E:54:8D:46:32:A5:99:62:09:A5:F7:5E:EC:1C:B1:67:6D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NAO_jlSNRjKlmWIJpfde7ByxZ20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.128/28
Signature Algorithm: sha256WithRSAEncryption
28:85:bf:70:31:69:ff:8c:55:0f:88:6c:dc:9d:e2:91:05:7e:
52:ba:02:f0:fe:db:4f:0b:b7:ec:82:a1:d5:80:a4:ea:9b:fe:
fc:3f:40:44:94:14:c2:29:a5:9b:64:14:59:19:bc:fe:b5:76:
69:d2:48:1a:69:0a:b3:c0:77:23:3c:9f:23:47:e1:03:4f:09:
51:b1:85:38:84:5c:e3:01:e6:44:44:f2:da:e3:26:43:8f:20:
12:fe:e6:4e:6e:35:dd:c0:c7:e9:ad:b3:df:46:99:0c:54:f5:
a3:c8:73:00:12:3b:6b:56:06:28:5d:3d:4c:b0:ab:38:7e:d7:
80:03:8c:79:cd:6b:ee:66:1a:e3:f1:83:c0:ee:25:62:a3:88:
b5:7e:f2:da:9d:a2:44:8a:da:60:af:6a:5b:0f:1f:38:f7:78:
92:db:73:af:b5:e8:6f:a5:ee:63:a4:74:64:a3:09:37:ae:52:
4c:35:39:4d:21:61:20:82:1d:2a:a0:2d:7b:0b:59:b4:07:40:
02:20:07:7c:71:2d:cd:17:25:8b:7a:ab:8f:56:9d:7b:2b:48:
f5:7b:d7:09:05:30:f2:0c:40:c4:9f:70:c2:4c:f1:ff:b4:b3:
ca:04:dc:74:4a:a4:1b:8e:8c:95:25:e7:ab:a1:f5:56:ea:69:
2f:68:89:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org