Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QFnxs5wYFTBFpLMPySyGfBUHo5U.roa
File: QFnxs5wYFTBFpLMPySyGfBUHo5U.roa (raw, json)
Hash identifier: 1mULgB+J1PK95cEDPfd4yvnzTGKxLXU9w7N55X3pZBE=
Subject key identifier: 40:59:F1:B3:9C:18:15:30:45:A4:B3:0F:C9:2C:86:7C:15:07:A3:95
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C6A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QFnxs5wYFTBFpLMPySyGfBUHo5U.roa
Signing time: Wed 29 Sep 2021 02:47:44 +0000
ROA not before: Wed 29 Sep 2021 02:47:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7274 (0x1c6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4059F1B39C18153045A4B30FC92C867C1507A395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1a:31:13:6a:ff:c5:0f:e4:ac:e6:bf:cd:ba:
db:79:f3:46:81:f9:46:19:2d:11:6a:18:41:55:d4:
bd:a7:d9:ca:7b:89:42:42:06:61:ba:88:6c:1a:90:
15:d8:cb:d2:49:45:89:9b:09:e1:77:c4:4b:ea:98:
6e:0d:ac:8b:14:53:9b:51:7e:85:e1:22:8e:f3:61:
63:7e:f7:f8:d5:3d:28:57:fa:30:25:73:9f:a4:29:
d4:86:07:c7:09:61:23:b6:59:7d:a1:87:d1:ec:d1:
8f:9b:ed:0a:9e:21:f0:b7:a5:30:bb:cb:9e:ea:10:
3a:6d:47:e3:a1:6e:2e:e4:d1:97:c1:22:c9:1f:bf:
f3:fd:ca:6c:f7:4a:68:c8:92:a1:23:4c:e7:f1:37:
ff:13:dc:0d:e1:ea:6e:5b:1e:ab:46:e7:54:a1:90:
57:45:7b:f1:ad:7b:eb:d8:e4:6a:19:e0:80:be:5f:
db:0a:0b:1d:0b:13:71:a0:4b:e4:dc:77:ca:ac:83:
5a:bb:1d:8d:95:68:7c:e4:5f:25:38:60:34:b9:40:
e8:f1:f0:e5:b8:b2:b2:9e:7a:a7:60:99:9e:93:0d:
21:3b:aa:d9:4c:f1:31:2c:a8:5b:b7:33:fe:ab:d3:
a5:2a:73:7f:ed:01:fd:5c:08:71:60:c0:49:af:7d:
5b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:59:F1:B3:9C:18:15:30:45:A4:B3:0F:C9:2C:86:7C:15:07:A3:95
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QFnxs5wYFTBFpLMPySyGfBUHo5U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.96.0/21
Signature Algorithm: sha256WithRSAEncryption
06:24:16:29:dd:c9:f6:f8:60:94:33:6d:03:b8:77:d1:8e:17:
4a:71:37:1f:5e:c9:3b:5c:38:d3:22:ec:f1:08:b3:72:a2:70:
23:60:e9:8c:81:c4:1b:36:99:f6:c6:6a:5a:d3:63:38:b5:92:
18:78:f4:2d:3a:b0:3a:d1:66:85:82:fd:af:df:cd:94:ee:1d:
92:a4:35:f4:20:4f:5d:71:d6:e4:a7:a0:02:3b:b1:40:e7:d9:
aa:9b:82:60:f9:b4:13:a8:75:97:00:13:1e:09:42:9f:1f:08:
c2:67:79:ab:8c:bc:f6:2b:bf:20:c8:3e:a6:d0:33:2a:4c:d4:
15:16:f1:ca:6e:3c:34:0a:93:ad:ee:b9:fd:a1:7f:da:75:1c:
c3:bc:ec:e4:d6:75:2b:2f:c3:7a:07:d8:66:c1:25:be:ad:20:
db:8f:00:4e:98:f2:00:ae:50:42:f0:be:a8:ec:d0:ba:35:72:
18:e4:0a:76:b2:11:34:a2:b3:0b:46:0c:d3:ff:81:8d:95:c4:
c2:0c:02:0c:2f:b9:3e:f4:07:9e:55:c8:0a:d9:72:7e:b8:cd:
1c:c6:78:12:80:a8:c2:c7:99:57:9f:e7:19:b2:80:83:92:9a:
76:d9:da:ea:3d:00:ff:6a:c6:32:11:da:61:71:99:4a:7b:d7:
00:59:09:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org