Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q1AoNiH6hg0rMt5bJPfhO1HaME0.roa
File: Q1AoNiH6hg0rMt5bJPfhO1HaME0.roa (raw, json)
Hash identifier: bqOgkSC0zjlRgAjMMU3KKsHwp/qTmzcPfxi6smDCZxE=
Subject key identifier: 43:50:28:36:21:FA:86:0D:2B:32:DE:5B:24:F7:E1:3B:51:DA:30:4D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22D8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q1AoNiH6hg0rMt5bJPfhO1HaME0.roa
Signing time: Fri 25 Nov 2022 04:41:44 +0000
ROA not before: Fri 25 Nov 2022 04:41:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.223.128/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8920 (0x22d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4350283621FA860D2B32DE5B24F7E13B51DA304D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c2:ca:96:fe:9d:c5:71:cd:d1:30:b0:8d:59:
2d:57:cc:83:6e:b6:17:87:3e:e9:fc:1c:72:03:bd:
65:13:ed:c0:8a:06:71:a4:b1:c2:bd:fb:6b:07:74:
09:ea:3d:5e:7f:6a:1f:34:c3:ec:ad:76:c2:f2:76:
33:8d:22:95:21:88:ff:a8:a4:6c:5d:dd:98:74:1c:
f5:92:1a:bd:10:ac:2d:01:02:74:d8:a1:b0:71:64:
86:2e:32:c5:8c:30:7f:77:2d:b2:75:94:fb:ee:12:
42:8b:92:3d:0d:0d:fe:ac:5a:e4:1d:ec:aa:1f:67:
84:4a:a1:62:1e:16:8e:63:65:c6:8e:98:e9:e6:69:
3e:da:01:fd:f4:36:c7:b7:59:17:55:85:8b:47:0a:
6e:42:3a:3d:2a:e0:6a:f3:b4:a0:be:61:36:e4:84:
ab:ae:80:6c:fb:11:e7:61:26:f0:fc:05:41:4b:56:
4e:b8:5e:06:a9:4d:1d:45:1f:2c:b8:93:5d:ad:63:
d6:7c:4a:b0:b5:5e:13:e0:50:ff:75:ba:7b:b7:17:
2d:67:5a:09:ca:ba:70:52:79:ee:2d:db:c3:d3:78:
aa:ae:89:2c:c0:34:86:08:c4:69:28:c4:6e:65:c5:
58:b1:53:09:95:fe:a1:00:7e:f9:c5:80:0a:9c:e4:
bf:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:50:28:36:21:FA:86:0D:2B:32:DE:5B:24:F7:E1:3B:51:DA:30:4D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q1AoNiH6hg0rMt5bJPfhO1HaME0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.223.128/26
Signature Algorithm: sha256WithRSAEncryption
4a:b4:8c:f7:87:6b:f0:bc:9f:87:68:e4:0d:3e:99:3e:04:67:
92:9e:67:a0:53:b1:00:ea:58:46:40:3c:d0:45:76:7a:ed:18:
98:81:7e:72:57:29:61:8f:2b:be:09:7e:eb:b9:17:de:79:0f:
e7:72:88:88:08:23:67:20:a9:58:36:27:d4:9b:13:29:60:86:
2f:d9:c9:cc:dd:53:e0:d3:52:b2:86:b7:2e:76:1b:82:4a:77:
6e:76:a6:e5:a1:36:43:04:be:c6:36:f7:5f:47:2f:ae:41:7d:
a9:b2:dc:4c:31:f6:31:7d:3b:e6:99:cb:15:20:61:08:f0:dd:
bd:16:de:97:57:65:4d:1d:59:16:c9:39:00:46:c2:b0:e5:af:
29:48:0d:60:4c:76:1d:5a:3f:b5:e0:2d:57:77:5f:a0:e5:6c:
be:b7:46:2e:7f:84:84:a9:74:f8:fd:85:2d:da:18:e2:cf:39:
6f:3a:e5:9f:e7:20:00:e3:b4:ba:56:ef:64:db:f4:a8:0e:74:
cc:a9:c1:aa:43:45:f2:b6:27:26:e6:38:d3:14:56:14:ee:fd:
5e:0d:9e:9e:58:04:d1:8b:0b:fa:e9:e5:bf:38:8c:e0:2b:a3:
7b:3e:4c:8e:57:9b:14:ae:96:9a:ba:fd:ec:49:aa:94:f8:6d:
99:97:6b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org