Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O0zq4gki_tS1-8jw-e11_eyTxHQ.roa
File: O0zq4gki_tS1-8jw-e11_eyTxHQ.roa (raw, json)
Hash identifier: XtpHPyBEyr0I4MfkGsjok2qd5uPzC2aZ6kwwLQFLHjw=
Subject key identifier: 3B:4C:EA:E2:09:22:FE:D4:B5:FB:C8:F0:F9:ED:75:FD:EC:93:C4:74
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CF0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O0zq4gki_tS1-8jw-e11_eyTxHQ.roa
Signing time: Wed 29 Sep 2021 02:48:24 +0000
ROA not before: Wed 29 Sep 2021 02:48:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7408 (0x1cf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3B4CEAE20922FED4B5FBC8F0F9ED75FDEC93C474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2e:62:5f:a8:05:31:5d:17:46:38:f2:1d:05:
fb:25:3a:f4:69:69:ad:40:ab:39:a3:b0:c4:fc:e5:
f5:2f:d6:fb:d4:bc:16:97:ae:e1:bc:e3:67:63:c9:
86:14:cf:9d:f4:cc:db:84:ac:28:09:2c:61:64:f4:
ba:bd:3f:53:8c:a0:1a:85:95:86:d2:bb:11:1b:0a:
d3:c4:93:5e:0a:60:15:2f:7b:b7:5a:cb:8c:7d:bc:
4c:7c:1e:74:92:33:23:df:17:e0:91:48:7d:9b:ae:
fb:dc:42:db:af:fc:70:f2:06:fe:03:2f:a2:f4:43:
35:09:7a:24:9e:81:88:3d:7b:4f:b2:03:af:4f:c9:
3e:9f:28:86:55:81:e0:c5:e5:13:14:26:08:80:07:
94:ad:c5:be:ba:13:d6:fb:0e:68:fb:97:64:35:65:
cd:aa:ab:6d:e0:7b:c3:23:06:43:53:aa:72:c3:2c:
e2:f5:fa:6c:e9:e4:5f:e7:fe:58:61:56:1b:da:6e:
db:ec:e1:c2:8e:f8:d2:f8:ec:0a:7e:e6:be:a9:4e:
21:c6:dd:a4:b4:b7:f5:37:4c:0f:13:fd:b9:3d:d8:
42:ce:b0:f4:57:54:3d:d2:9e:2d:b9:9a:6b:72:23:
10:ea:28:5d:8b:e8:1c:85:3d:2f:71:7a:a4:bf:99:
61:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4C:EA:E2:09:22:FE:D4:B5:FB:C8:F0:F9:ED:75:FD:EC:93:C4:74
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O0zq4gki_tS1-8jw-e11_eyTxHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.152.0/22
Signature Algorithm: sha256WithRSAEncryption
25:7d:97:a2:b6:a3:84:6b:d1:6f:3c:ba:c7:b7:2b:8c:6b:c7:
d5:75:89:0f:ba:02:35:af:63:87:ff:8c:8c:92:88:37:b4:28:
a0:b8:42:63:58:28:ab:8d:b5:ee:d1:ce:fe:e1:9c:0b:48:59:
c9:11:8e:27:29:2f:97:29:6f:7c:25:d8:82:a0:8e:8c:a4:40:
f9:52:7b:6e:9f:68:e3:dc:e1:4e:f9:98:5a:45:74:3a:e7:10:
0a:cc:fd:7f:a6:e4:2b:4e:78:5d:ec:ed:2b:b7:5d:a2:af:d5:
05:8a:54:ba:9c:2f:0e:50:ca:5b:46:e5:46:c1:de:24:bd:73:
18:ea:57:c9:f4:96:2e:22:56:c4:c7:a1:0b:0a:49:21:07:04:
df:2c:90:c0:9c:5d:2a:35:b5:bd:7d:47:a3:6f:50:d8:69:1b:
0f:f4:8f:01:e9:01:c2:74:13:69:50:00:eb:24:ea:ef:17:61:
96:bf:ed:43:cb:d5:49:75:eb:b6:da:f3:6d:ef:15:53:bf:b6:
6f:56:47:65:4b:bd:86:6f:1a:e2:10:fd:63:45:cf:09:d9:03:
02:b0:7b:17:3d:58:6f:03:4e:ff:be:5f:fc:11:8b:0a:38:7b:
9c:15:f4:ae:56:5d:62:61:e3:28:55:3f:8b:47:19:d8:ef:88:
ad:cf:a1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:18 2023 by rpki-client on console-ams.rpki-client.org