Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O1-Hw4plXdASOTpjBKSu7Kkqzr8.roa
File: O1-Hw4plXdASOTpjBKSu7Kkqzr8.roa (raw, json)
Hash identifier: hW6rAFdRrEk/yKZDL9cUHHG0RzhDfwUOnvtFejegnjY=
Subject key identifier: 3B:5F:87:C3:8A:65:5D:D0:12:39:3A:63:04:A4:AE:EC:A9:2A:CE:BF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D35
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O1-Hw4plXdASOTpjBKSu7Kkqzr8.roa
Signing time: Wed 29 Sep 2021 02:48:46 +0000
ROA not before: Wed 29 Sep 2021 02:48:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 123.193.218.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7477 (0x1d35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3B5F87C38A655DD012393A6304A4AEECA92ACEBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ad:de:1d:27:be:ee:35:93:63:68:47:3e:43:
65:bb:3c:6b:ff:f7:36:7b:46:69:e0:3b:9d:ec:15:
6e:b2:04:bc:fb:f1:98:21:db:9a:51:f3:bf:2e:29:
ac:28:9a:8f:c4:df:79:09:03:8f:ba:08:fb:13:9d:
09:9c:48:01:6a:4d:ab:f4:ab:d6:bb:8a:fa:0d:a0:
39:32:dc:af:9b:6a:f4:1b:c1:f0:8a:43:bb:90:81:
bf:59:43:d3:cd:6c:87:13:23:45:e9:f4:b7:c7:5c:
54:5d:92:1d:9d:c6:b9:09:d4:0b:f9:37:de:d7:dc:
3f:81:95:cf:ea:da:80:f8:52:f7:f8:0f:c0:dd:4d:
41:b4:02:fa:c5:91:ec:1e:8d:06:81:88:5b:5a:d7:
1a:82:ce:4c:bd:2a:c5:b3:52:17:4b:c2:a0:cd:ae:
ee:13:ad:a2:c0:e5:56:8d:a8:f7:30:c7:0d:ec:4c:
02:57:de:70:65:be:ac:93:e0:f3:f0:77:dc:aa:e6:
c1:e6:38:b1:ae:8b:a5:e8:46:1a:a5:d9:8b:ca:ce:
7d:cc:1b:ba:3b:1f:44:6b:c5:9f:dc:01:06:d7:db:
62:9a:36:ba:d2:43:2c:4b:f3:20:c9:b5:bc:c3:f9:
18:53:48:0e:b8:0c:38:41:4b:85:14:47:2e:8c:89:
87:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5F:87:C3:8A:65:5D:D0:12:39:3A:63:04:A4:AE:EC:A9:2A:CE:BF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O1-Hw4plXdASOTpjBKSu7Kkqzr8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.218.0/23
Signature Algorithm: sha256WithRSAEncryption
22:de:e5:1a:56:1f:5e:15:c9:d3:8f:39:7c:ec:5a:fa:1e:48:
c8:30:56:c9:9b:81:dc:66:fb:3f:bb:5a:b2:d4:0e:f7:dc:21:
b3:ef:94:fc:2a:79:b7:e5:57:f5:b9:17:35:db:39:ef:a8:88:
07:5e:62:36:fd:83:fb:60:db:5d:b0:f7:e6:32:08:a9:0a:18:
54:6f:f9:28:fa:fa:2e:20:14:68:91:0d:9b:ca:85:26:48:ea:
76:e6:29:3c:5f:31:44:e5:7a:01:4c:63:2f:ce:90:e9:1d:b0:
25:0a:54:dc:d5:8d:e9:fa:ff:31:dc:69:eb:1f:4d:72:06:16:
a0:4a:aa:78:4e:ee:14:89:f8:34:40:88:10:f0:d5:62:b0:f9:
ac:19:5f:44:d6:0a:43:0b:f7:d9:15:72:c8:c5:52:fe:f5:a0:
60:5b:a2:3a:48:98:21:3e:ec:58:6d:9c:ad:02:62:b5:0d:8c:
e8:a1:33:4a:a3:2a:ea:b9:07:20:5d:cd:55:e6:b3:39:30:44:
e0:cb:02:ef:11:09:73:91:0e:06:82:91:bc:78:b2:9e:8b:45:
41:cc:40:24:58:de:9d:32:04:e1:86:b5:08:1e:5c:2b:32:2f:
9a:0e:19:12:4b:87:e7:a5:60:ca:39:6c:0b:30:06:c6:6c:3a:
95:76:b1:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org