Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PF8kXZ00n1ZNBuyBZUemt-c7oMk.roa
File: PF8kXZ00n1ZNBuyBZUemt-c7oMk.roa (raw, json)
Hash identifier: B4U4kF4W2a5wJFKNj630B48EEB9lPgnoAK36PDY744k=
Subject key identifier: 3C:5F:24:5D:9D:34:9F:56:4D:06:EC:81:65:47:A6:B7:E7:3B:A0:C9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22D4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PF8kXZ00n1ZNBuyBZUemt-c7oMk.roa
Signing time: Fri 25 Nov 2022 04:41:42 +0000
ROA not before: Fri 25 Nov 2022 04:41:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8916 (0x22d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3C5F245D9D349F564D06EC816547A6B7E73BA0C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:89:07:b3:a4:06:58:f8:7f:6f:1c:0d:87:7b:
78:e3:89:da:bd:eb:38:99:31:3f:85:e1:3b:e6:85:
2b:b8:c9:da:32:ab:8b:78:34:f5:b3:57:93:17:29:
d2:3d:a0:09:84:3b:65:49:7b:5d:df:6b:e7:18:56:
c4:a6:df:3c:fc:34:6a:32:76:7a:86:16:14:62:eb:
b7:be:13:22:01:42:6a:37:db:e3:10:2d:78:4e:8f:
dd:75:14:37:d6:cb:52:55:98:c4:ce:94:e1:64:06:
a9:9f:37:6f:42:f3:59:6b:e7:a7:ce:3f:c4:93:2b:
45:b9:72:30:fb:c6:02:b8:4a:91:df:c2:8a:82:71:
f9:4a:79:f1:ef:a7:96:33:ed:31:10:5e:a7:2f:44:
45:11:70:45:79:56:0c:00:06:cf:63:6e:d3:34:f2:
a9:68:a4:e5:ed:73:67:97:39:cc:49:eb:c4:bf:a0:
27:ca:81:f0:f1:de:bf:dd:4f:ea:df:5f:7a:3d:3a:
1b:64:3d:89:bd:a6:ab:8f:aa:81:aa:76:b0:ef:36:
3a:11:c0:3f:20:d6:27:38:95:92:df:6e:b9:3f:3b:
55:4d:fe:a6:5a:43:88:d5:f1:95:15:f0:fc:31:28:
98:7f:66:31:93:6b:8f:f9:8d:d8:62:fc:66:93:be:
3c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5F:24:5D:9D:34:9F:56:4D:06:EC:81:65:47:A6:B7:E7:3B:A0:C9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PF8kXZ00n1ZNBuyBZUemt-c7oMk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.156.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:16:5f:ce:cf:61:b3:e3:1e:0a:d8:51:0a:71:ef:34:dd:8e:
32:bc:f1:10:2f:82:8b:4c:3d:1a:f4:49:4e:5f:c4:87:b6:66:
2c:eb:18:8f:b9:aa:95:f7:ef:3d:74:07:0d:f5:d0:6b:bf:b9:
73:5e:c3:d9:bf:a0:26:2d:d3:3a:46:91:4d:16:a6:7b:2e:56:
f2:ae:e7:d2:36:5f:d1:5f:ea:e7:da:a2:15:1b:81:e3:7f:13:
ea:cc:d6:dc:5c:48:60:6a:53:d4:ce:c5:c3:2c:a1:69:38:82:
47:a4:ee:cf:44:2d:8f:5a:ac:62:82:51:9f:e9:91:c0:4c:5e:
7e:8d:02:1d:0c:52:14:ad:75:d5:12:cc:c0:b1:1c:53:47:42:
0d:ba:93:e7:4c:95:87:96:b6:3c:29:68:56:b7:74:c5:09:2f:
7a:1f:f1:e5:b0:93:48:4e:11:b6:0d:63:7d:2b:b6:05:57:65:
ae:e4:1e:f7:59:31:de:d7:13:db:4b:4b:91:11:47:0d:e3:23:
39:ec:bc:93:f1:4f:b8:3c:37:e1:fb:50:e4:dd:4e:91:b8:f1:
c4:f0:25:b6:de:fe:23:99:b2:2f:1f:46:2d:4c:38:8a:5d:63:
18:d0:09:fc:9f:0f:46:36:55:0c:f9:13:eb:ec:08:db:d2:6c:
e5:b2:55:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org