Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PWomH9otKYM-tBubzxHmvbmk71s.roa
File: PWomH9otKYM-tBubzxHmvbmk71s.roa (raw, json)
Hash identifier: bzDbiOfFH1PAFYhM+Sk2ioVBQy4a4g7MHlnkai6zhbM=
Subject key identifier: 3D:6A:26:1F:DA:2D:29:83:3E:B4:1B:9B:CF:11:E6:BD:B9:A4:EF:5B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DD7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PWomH9otKYM-tBubzxHmvbmk71s.roa
Signing time: Tue 29 Sep 2020 09:55:03 +0000
ROA not before: Tue 29 Sep 2020 09:55:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.193.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3543 (0xdd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:03 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3D6A261FDA2D29833EB41B9BCF11E6BDB9A4EF5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:6c:35:29:00:55:77:39:ff:10:0d:a9:77:
29:8e:d4:9a:67:48:e4:38:ef:7e:59:f0:d1:b0:1d:
d2:d9:48:f9:92:75:90:d5:51:ec:f4:0c:a4:29:54:
5f:fa:a5:68:d3:32:da:72:21:e6:55:31:78:97:68:
d5:1f:db:89:9c:e7:9a:8e:37:f2:d6:96:d9:ac:44:
cc:7b:d9:65:fa:62:e5:38:80:dd:8f:4a:34:74:68:
85:83:c9:5d:11:07:6c:ce:8f:e9:2d:d7:ea:dd:b9:
12:ad:cd:ae:a7:b1:9b:40:41:9d:fb:4d:d5:1a:65:
99:a3:b8:84:7a:7a:cc:4c:c8:3a:13:1b:18:05:da:
7a:40:c8:fc:50:e6:5f:19:bd:50:c3:d5:f5:65:46:
7d:ce:bb:e7:1d:60:a5:0b:a9:dc:55:be:cb:e8:63:
21:e1:ee:1a:61:e0:34:8a:82:b7:8e:be:18:a1:b3:
5a:d5:1a:93:89:d7:b5:fc:b8:b8:86:d4:26:ad:e9:
fc:bc:72:42:f0:c4:b1:ad:39:89:1b:ef:d8:c0:63:
fd:28:63:db:97:06:5f:9c:34:9f:d9:45:85:7d:3c:
62:28:4d:60:af:6b:75:a3:fe:26:92:ca:1b:4d:0e:
5f:7f:a8:d6:2c:8a:1c:bd:c9:15:de:84:48:e3:74:
d9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6A:26:1F:DA:2D:29:83:3E:B4:1B:9B:CF:11:E6:BD:B9:A4:EF:5B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PWomH9otKYM-tBubzxHmvbmk71s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.68.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:4d:68:72:ea:17:e9:d7:89:aa:92:0e:6e:06:15:7b:12:81:
75:11:0c:0d:c4:23:c7:dd:c6:db:0f:0a:1e:23:b1:7d:b9:96:
03:53:92:96:f7:65:6d:ec:d5:b3:3d:50:16:0e:7b:4d:e5:ca:
67:d1:7d:cf:6f:b0:fa:12:59:c7:e9:f1:a9:d0:52:0a:f8:da:
27:ae:d6:b5:63:7b:d7:67:ad:b8:ca:0e:2a:45:72:59:70:1d:
79:4c:99:79:27:2d:94:1e:de:c2:82:2c:a3:a6:8a:aa:2c:50:
37:d6:f5:98:ec:a9:53:49:54:52:f1:44:9b:54:68:b4:25:30:
7d:c8:32:1e:bb:db:c9:f2:60:1c:05:0c:34:10:2c:45:7d:35:
fc:fc:00:1a:ad:0f:f6:a3:a2:84:e8:a7:77:3d:76:a5:14:70:
7c:59:b4:57:94:be:16:ca:86:bb:d3:19:12:55:6a:da:0d:6b:
cc:b4:09:0f:2f:ca:f8:bb:f7:7a:8a:78:06:f8:56:69:19:f7:
4a:c9:3f:2b:52:81:8a:9d:91:99:33:93:61:53:93:56:63:4a:
c7:e3:e8:6a:75:0b:cc:cf:73:4b:6d:70:f5:d5:35:3e:94:ac:
9e:c0:48:0e:95:61:09:75:d4:dd:56:b4:e7:0e:dc:1c:bc:90:
39:b1:f7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:28 2023 by rpki-client on console-fra.rpki-client.org