Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PNSkZ7ChP8ljgM27fyR_1FXdZiU.roa
File: PNSkZ7ChP8ljgM27fyR_1FXdZiU.roa (raw, json)
Hash identifier: b5sv9xv1za2pZcgo3LsLot1kgmcmbJkRlMcZCUb3HOA=
Subject key identifier: 3C:D4:A4:67:B0:A1:3F:C9:63:80:CD:BB:7F:24:7F:D4:55:DD:66:25
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PNSkZ7ChP8ljgM27fyR_1FXdZiU.roa
Signing time: Thu 15 Sep 2022 02:53:43 +0000
ROA not before: Thu 15 Sep 2022 02:53:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3CD4A467B0A13FC96380CDBB7F247FD455DD6625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b9:3e:39:0c:ef:1e:f4:fd:f0:0f:ea:aa:33:
00:c5:5a:70:69:c7:d6:6f:e0:8a:48:d8:9a:85:74:
0d:01:70:4a:61:2a:8c:50:61:64:50:5c:76:7d:22:
34:db:1a:1f:75:51:f9:c9:1a:22:f8:93:26:36:33:
86:67:8e:09:0e:64:2e:f4:c3:92:0c:58:c2:37:28:
a5:2a:36:e7:7a:4a:a0:e4:bf:43:46:75:6f:e6:1d:
72:e0:1b:15:e4:fd:6c:fb:a5:12:d0:33:37:02:b9:
87:28:92:89:6f:6c:32:cf:13:d9:ba:a4:eb:d7:38:
49:4c:48:90:c7:97:3d:42:d8:f2:b6:9c:31:fe:85:
c9:45:5c:80:fd:42:b0:ff:2a:be:02:e9:75:ca:08:
b5:da:67:b0:f6:10:5a:b4:80:bb:5b:5e:2e:ea:be:
ff:f7:00:c6:98:d4:b6:76:4e:af:f8:37:57:1b:27:
99:ed:58:e1:bc:11:88:58:cd:e9:f3:80:53:c4:67:
27:64:30:eb:93:09:ca:b8:fc:f9:9b:d4:6d:b0:a9:
e4:4b:33:a3:9c:fa:23:8a:ca:f6:8d:8f:ba:27:6d:
b8:f5:3b:eb:de:c2:65:20:b0:01:ff:c9:ea:e2:c3:
1c:fa:3a:84:d4:bb:60:ab:83:6c:ae:b8:8f:91:c6:
6b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D4:A4:67:B0:A1:3F:C9:63:80:CD:BB:7F:24:7F:D4:55:DD:66:25
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PNSkZ7ChP8ljgM27fyR_1FXdZiU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.16.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:a3:83:9e:2b:06:a7:e9:42:63:d5:bc:9d:9d:ac:9a:ed:86:
ed:b9:8e:c6:a0:74:48:a7:6a:49:46:02:2d:5f:71:0c:14:b1:
ec:25:1c:09:7e:81:66:0b:3f:68:a1:0c:19:39:1d:d8:1e:aa:
dc:d6:a9:16:56:ca:e4:23:24:af:ef:49:c3:c6:81:06:23:11:
8d:78:b9:5c:7b:6c:27:b7:f5:98:be:17:51:7a:d8:8d:c5:cb:
ac:3b:d3:e2:cd:59:9d:64:c1:7c:e4:61:8b:16:18:13:39:63:
64:fe:3a:bf:d0:55:43:4e:97:07:47:cb:b9:58:64:1d:9b:dd:
bf:3f:10:8e:c5:be:fa:a0:c3:5f:f4:20:71:18:3a:46:8a:4b:
cd:e1:75:06:cc:88:18:fc:de:c1:60:51:76:89:3c:2a:c5:06:
c5:b9:83:bd:5a:8b:ed:6b:8b:dd:e5:82:2b:70:51:38:0e:30:
e3:fa:9d:e4:9d:6a:19:1e:c1:2a:f3:7f:29:eb:6a:1a:a6:60:
e2:56:bf:44:e9:46:1e:90:57:79:9a:07:d9:25:11:1d:88:e4:
8b:5b:e7:26:b8:72:5a:6f:c6:3c:11:34:81:71:8c:06:68:51:
f5:9f:19:12:8d:cb:d5:8b:1c:21:56:ac:b9:65:db:e7:3e:40:
94:c6:c4:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org