Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaDjAakFGJw_o1yCi1MEFgnzc8U.roa
File: NaDjAakFGJw_o1yCi1MEFgnzc8U.roa (raw, json)
Hash identifier: X6pQCaGE8L6u9qXh/XfYJMdWiybThlxmZZaHLd1My8c=
Subject key identifier: 35:A0:E3:01:A9:05:18:9C:3F:A3:5C:82:8B:53:04:16:09:F3:73:C5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BE0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaDjAakFGJw_o1yCi1MEFgnzc8U.roa
Signing time: Wed 29 Sep 2021 02:47:06 +0000
ROA not before: Wed 29 Sep 2021 02:47:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7136 (0x1be0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=35A0E301A905189C3FA35C828B53041609F373C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d0:d4:8a:93:30:52:b7:fc:43:9f:a4:10:17:
a6:1e:38:35:63:84:af:f1:0f:43:92:7b:53:89:fd:
13:e9:6f:3e:b9:60:2d:58:0f:2d:f8:0a:59:a2:10:
9d:79:6f:7a:4f:17:3a:82:0a:09:e5:2e:76:47:6c:
e6:0b:7b:27:ff:74:44:7a:c3:ae:4c:26:07:d2:4e:
ec:57:86:8f:b0:56:71:0a:66:32:f9:03:e9:35:25:
ef:3c:29:66:9e:df:05:37:f2:bc:6e:d4:15:bd:a8:
93:3e:21:9a:39:93:0d:4e:dd:e0:4e:4f:c8:11:80:
fc:5d:c6:18:e2:2c:93:d1:cf:8f:20:c0:c5:46:a2:
ba:1f:1e:36:1c:2f:37:54:24:09:71:97:bd:64:2a:
4f:3d:5f:8c:22:ee:ef:e1:2e:fd:a5:f9:16:73:48:
13:5a:53:80:cf:1c:d7:8b:f7:b0:1a:34:cf:f5:27:
bc:46:66:b0:c3:1a:0c:26:17:4e:1e:f0:54:1d:f5:
7a:e1:2a:e1:a7:5b:6b:1c:70:69:71:15:96:2d:28:
61:64:38:28:96:10:00:82:39:0e:d1:a3:61:61:ca:
73:96:6b:06:00:73:0f:12:51:fd:cf:69:44:ee:57:
4d:77:13:12:7d:ff:f8:96:1f:54:47:84:47:c2:b3:
8d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A0:E3:01:A9:05:18:9C:3F:A3:5C:82:8B:53:04:16:09:F3:73:C5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaDjAakFGJw_o1yCi1MEFgnzc8U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.172.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:7c:c6:3e:4c:ff:d5:89:f0:6f:4a:5e:97:68:d2:cf:1d:a5:
a9:d7:14:bd:9b:95:0d:b1:24:18:f1:92:3f:f0:28:04:a5:45:
35:3d:ea:26:dc:a4:ca:b4:27:0b:63:3e:53:17:61:26:a4:e7:
ba:dd:92:55:15:e4:08:12:d5:32:e7:b1:8c:44:63:31:90:42:
9b:ab:fd:d7:41:31:8f:9c:06:ca:e4:4e:36:1e:6d:33:d0:34:
dd:00:79:49:76:17:be:87:31:b4:5b:0c:5e:9a:65:14:b2:e0:
bf:cc:2d:9f:2e:ee:d8:bc:ff:2f:2c:0a:3e:b9:9f:47:e6:87:
20:49:41:03:d5:68:fd:42:fe:20:48:17:aa:2f:b2:fa:7e:7e:
be:c7:5e:a0:73:d9:89:26:f2:1d:da:e9:55:3c:1d:8d:43:94:
2b:b7:e0:6d:2a:cf:10:b8:78:71:17:a1:4b:9c:82:bb:18:16:
f6:3c:84:60:3e:e6:81:2b:cb:5c:48:03:87:50:b1:0d:ad:41:
40:6b:5d:30:e4:7d:d3:e9:ed:c5:d2:4b:2a:57:47:7a:8b:fe:
3a:8b:f4:22:41:c8:be:ec:00:18:51:f5:06:dd:23:df:0d:48:
53:06:b1:4d:c9:07:a2:8f:a9:6f:e2:ea:e5:71:83:87:b8:23:
b4:9c:d5:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org