Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NdrUZ0mhEwWpUXMongAydU2ROR0.roa
File: NdrUZ0mhEwWpUXMongAydU2ROR0.roa (raw, json)
Hash identifier: NgdeEWr18XcgcQU2ZF2OeakPBpOvYLzBPc4p1X+3OEs=
Subject key identifier: 35:DA:D4:67:49:A1:13:05:A9:51:73:28:9E:00:32:75:4D:91:39:1D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1935
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NdrUZ0mhEwWpUXMongAydU2ROR0.roa
Signing time: Sun 07 Feb 2021 13:06:33 +0000
ROA not before: Sun 07 Feb 2021 13:06:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6453 (0x1935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 13:06:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=35DAD46749A11305A95173289E0032754D91391D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fe:3b:d6:11:3b:58:d8:21:fc:1b:49:ff:4a:
a9:c1:77:fa:12:20:81:b0:11:32:08:2d:05:d1:bc:
b8:57:ea:b9:84:3c:a1:3e:18:7f:04:87:d6:8d:0f:
4a:7d:8a:65:47:98:ed:90:7d:9e:5c:c9:22:3d:b7:
42:1d:da:60:4f:a7:e6:91:b1:8e:00:8b:4c:98:e5:
f1:60:fb:48:58:c3:45:13:69:67:f3:18:a9:ca:40:
53:92:aa:58:9f:df:f4:19:f1:f9:97:7c:18:d3:fb:
a7:18:df:13:cd:23:98:f7:5d:c7:45:5e:1f:30:07:
28:ec:88:65:8e:c4:85:74:7f:32:7c:4b:a2:ee:db:
7d:c5:f3:f3:38:bd:1f:fc:01:ab:ea:20:3d:47:47:
83:49:98:62:51:65:5e:18:aa:d3:62:94:b8:c9:5d:
10:c5:2f:a4:04:c7:ba:93:89:4a:8e:b9:10:54:93:
e3:57:f0:c9:80:88:40:df:ed:7a:2d:1a:b5:a4:8c:
20:77:82:a5:dc:73:d5:8e:d1:77:4d:62:9d:8a:3c:
85:32:26:69:8d:2b:45:78:c8:83:69:a6:ce:67:af:
38:94:b4:50:66:78:24:3c:7c:f4:20:b8:d8:57:f2:
01:67:0f:ee:53:6b:77:59:91:ea:b6:be:49:30:7c:
14:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DA:D4:67:49:A1:13:05:A9:51:73:28:9E:00:32:75:4D:91:39:1D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NdrUZ0mhEwWpUXMongAydU2ROR0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.232.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:1d:b9:75:6b:be:08:a9:80:9f:97:fc:12:22:eb:04:00:c0:
d6:b7:f9:07:74:0c:84:09:c0:9a:5d:dc:09:64:52:56:8f:93:
d3:2f:b2:74:83:6f:43:97:89:57:d4:16:ae:af:52:12:b4:9e:
23:70:a3:b0:d8:9e:c9:4a:69:3c:cf:6f:73:c8:e3:31:17:10:
de:7c:56:22:c6:4b:11:72:34:4f:ea:30:ad:67:18:43:4e:d4:
05:50:c2:a8:bd:4b:c8:4c:18:75:2d:57:c5:f8:cc:2f:a7:d8:
98:a5:df:79:ca:1c:1f:3a:cb:c3:c8:04:fb:fd:ed:12:1e:26:
69:4a:10:83:f6:76:0e:3e:1a:b0:d5:f0:0f:32:e8:fa:25:e8:
b0:eb:7a:cd:b7:c1:b0:8a:31:1d:92:44:2d:01:89:37:96:b1:
be:0a:ff:41:30:a6:3b:ed:87:56:2c:0d:cd:6b:2e:30:89:f2:
7b:71:94:d0:63:fd:d8:ac:f3:6c:f6:d2:24:18:57:64:ce:ff:
5b:21:2a:06:7e:c4:6c:77:29:11:19:3d:ee:79:dc:6c:42:22:
75:1e:ae:68:35:63:ad:34:51:02:a1:bd:c7:af:19:85:b1:96:
64:95:57:99:fd:49:da:7f:36:d1:ad:53:df:af:31:9f:3a:a0:
c9:fb:aa:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org