Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PPFfd8g3jbaUU7Lqnv9iW0dFTcU.roa
File: PPFfd8g3jbaUU7Lqnv9iW0dFTcU.roa (raw, json)
Hash identifier: SxyA3Vu1z/edj2gZD5gfcyk6tqzYR7SfVDWo+vuLNEg=
Subject key identifier: 3C:F1:5F:77:C8:37:8D:B6:94:53:B2:EA:9E:FF:62:5B:47:45:4D:C5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PPFfd8g3jbaUU7Lqnv9iW0dFTcU.roa
Signing time: Thu 15 Sep 2022 02:52:43 +0000
ROA not before: Thu 15 Sep 2022 02:52:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3CF15F77C8378DB69453B2EA9EFF625B47454DC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7b:32:1d:22:bd:d6:cb:bf:1b:89:b7:6c:e0:
2b:10:e2:87:da:9b:f7:a4:f1:da:c8:20:18:ef:59:
ec:bf:82:c7:8b:22:73:12:1b:cd:b4:05:91:ec:aa:
38:f9:80:7c:b4:54:3f:8a:8d:fc:48:36:1e:7c:ef:
0d:76:8e:aa:07:7e:31:4c:e0:e6:0f:9a:d8:a3:5a:
b9:50:30:01:89:9f:e3:cd:01:00:fd:a7:51:9b:1a:
2d:14:be:86:ac:17:8d:50:01:d5:70:67:bd:ae:41:
21:3c:be:00:c2:f4:fa:56:5c:99:4d:6d:ed:df:58:
8a:dc:5b:15:92:6c:b0:49:99:54:45:fa:78:61:af:
47:5c:c8:9c:fd:80:25:71:f3:20:b4:de:d0:20:1b:
d5:dd:f1:5d:ae:30:8c:d6:8b:0c:21:59:66:50:54:
c7:7a:23:db:6f:48:62:e4:15:e8:39:2e:32:7b:77:
87:0b:e0:4c:da:2b:e1:36:d0:4c:d2:a1:bd:a7:d3:
9e:68:e9:80:ad:9f:36:db:aa:3a:eb:79:c2:23:4c:
1d:be:e1:ae:fb:a6:9a:31:8a:c3:b6:d3:7b:ec:08:
a2:ea:3b:8e:97:e7:b6:2b:bf:cd:e1:54:d0:48:a3:
3a:92:47:4c:ab:5d:f4:6b:7a:66:11:fe:22:d3:c0:
cc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F1:5F:77:C8:37:8D:B6:94:53:B2:EA:9E:FF:62:5B:47:45:4D:C5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PPFfd8g3jbaUU7Lqnv9iW0dFTcU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.36.0/22
Signature Algorithm: sha256WithRSAEncryption
59:4b:3f:a2:4b:e3:d0:aa:d7:69:26:58:e3:5c:5a:cd:11:10:
d5:ba:52:dc:04:07:32:6c:8e:1b:d5:45:93:71:ea:44:57:0d:
ba:32:bc:fc:60:31:78:2b:a1:b1:a8:6d:29:81:9c:e4:a4:5f:
8e:9a:59:8e:e0:59:61:af:dd:86:20:d8:c1:5b:e0:15:89:17:
2d:eb:86:dc:c6:c6:e1:a7:93:70:e3:d7:52:7c:19:81:62:88:
cb:d3:6d:81:61:16:51:85:bf:2c:c9:60:ad:ac:6a:10:93:1f:
94:58:d8:4f:55:0b:2a:47:d4:35:bb:6a:af:52:a5:11:3b:80:
a6:af:b5:85:c3:19:3a:bf:1f:fa:62:b0:15:65:5c:c1:b4:08:
07:51:83:33:89:91:30:f8:4c:eb:de:3f:c2:da:da:f9:c0:c1:
85:15:38:40:41:bf:75:5b:b1:1e:42:d4:7f:0c:67:2b:e1:8a:
0f:44:37:48:8b:d1:d0:a0:cf:eb:5e:34:5b:93:27:b9:ca:7b:
58:50:1c:d6:49:1b:bb:2d:ef:a8:8b:5a:07:cd:7c:ec:eb:34:
20:8a:d5:95:24:a6:e3:85:c4:20:14:e0:e9:80:4e:a2:f2:93:
08:6a:1d:12:cd:03:e7:fb:69:4a:b5:66:dc:f8:b0:ac:1f:df:
d6:65:c8:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org