Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NYVTv1H7_HAxZxpDWS9h2XCOvFY.roa
File: NYVTv1H7_HAxZxpDWS9h2XCOvFY.roa (raw, json)
Hash identifier: PcXat611+PlByy4roWle2YsmfE5dhe6vFPzhtp9nCcU=
Subject key identifier: 35:85:53:BF:51:FB:FC:70:31:67:1A:43:59:2F:61:D9:70:8E:BC:56
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1ADB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NYVTv1H7_HAxZxpDWS9h2XCOvFY.roa
Signing time: Wed 29 Sep 2021 02:45:50 +0000
ROA not before: Wed 29 Sep 2021 02:45:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6875 (0x1adb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=358553BF51FBFC7031671A43592F61D9708EBC56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:50:0e:02:3b:b8:37:51:7a:18:a0:0c:c2:a9:
45:a3:04:af:45:33:6c:3b:82:e3:72:60:a0:5b:14:
e2:52:d3:dd:1c:80:a4:d7:1e:d3:00:46:77:2a:f0:
79:e4:63:a0:24:d9:1f:4a:23:44:34:6b:59:e8:da:
2d:1f:2a:44:f4:a7:0c:47:ea:5a:2c:37:1c:6d:08:
69:b7:35:56:d5:a0:97:08:89:e8:ea:dc:96:14:c1:
e6:87:e2:d6:46:8b:61:51:ff:1e:51:91:b8:c7:97:
77:80:7d:21:6b:c4:1a:b5:ef:ae:1d:b0:a3:5e:13:
7b:a0:34:d4:a4:83:9b:0c:7a:e2:71:c1:62:f4:44:
fc:f4:23:eb:bf:e6:9d:d5:ea:9f:a0:c0:e4:98:f4:
f6:1d:62:ca:4a:99:7e:5a:ff:4a:0c:da:eb:8e:d6:
d7:05:bf:02:b6:42:f1:2d:ff:dd:cd:5d:6b:fc:7f:
a7:f6:36:b7:c6:83:3f:0a:2c:89:85:c9:4f:c2:06:
1f:6c:34:f5:ba:be:d0:56:2b:5e:94:43:13:93:f9:
7f:95:b5:b2:7b:06:fa:67:94:f5:0b:6d:50:f9:55:
a5:0a:c2:7a:8b:a7:47:f5:29:e7:4f:49:8a:a5:ba:
a5:f7:a4:ac:f5:03:b4:0f:82:f7:6b:94:80:95:65:
27:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:85:53:BF:51:FB:FC:70:31:67:1A:43:59:2F:61:D9:70:8E:BC:56
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NYVTv1H7_HAxZxpDWS9h2XCOvFY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.144.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:f6:62:90:48:06:9a:3a:8c:40:f4:0f:9d:37:86:6b:11:49:
87:e6:95:a3:79:28:b1:be:a8:76:d9:53:1d:f4:1b:e0:01:68:
8a:e4:a8:a4:60:b4:0b:ce:b9:10:83:fb:fc:08:32:66:e8:79:
1d:34:2f:e8:54:a2:47:89:f6:4b:44:28:73:28:13:b8:03:6d:
65:79:a9:6c:cb:0b:84:46:cf:53:e2:09:19:bf:09:1d:4f:35:
82:b7:61:6a:a0:81:c0:da:e0:0f:19:8a:47:0b:d0:2d:5d:60:
39:a2:fa:27:c1:ea:50:5c:6f:6a:ad:d8:be:a1:7b:83:fd:dc:
a0:6c:45:e4:0e:21:e5:67:04:df:69:5d:74:dc:0e:86:47:4d:
fc:a9:f4:ea:02:f6:8f:42:08:a1:38:0a:ea:24:62:98:c0:15:
94:70:2d:1c:fc:80:50:20:0f:e2:3e:87:88:65:05:7d:5f:01:
f3:4c:b6:72:ea:cd:8f:dd:4e:0b:c5:c2:ea:ce:be:1c:01:fb:
15:83:26:a7:ea:ee:e0:3e:97:04:97:5e:c3:24:1a:7c:2e:5d:
d1:00:7b:8b:cb:f9:ac:55:a3:49:ba:20:a3:a5:08:ca:eb:a9:
9f:2f:ee:a0:0e:97:ba:3f:fb:e0:28:69:1c:68:67:55:1b:d5:
4c:97:5c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org