Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QGNjyOJ8LqWuWRUB3yz6RlLcipg.roa
File: QGNjyOJ8LqWuWRUB3yz6RlLcipg.roa (raw, json)
Hash identifier: wOwzyCL6oVTNVC9WVd675+JvdLIkSycnilaWViw90GI=
Subject key identifier: 40:63:63:C8:E2:7C:2E:A5:AE:59:15:01:DF:2C:FA:46:52:DC:8A:98
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2185
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QGNjyOJ8LqWuWRUB3yz6RlLcipg.roa
Signing time: Fri 25 Nov 2022 04:40:01 +0000
ROA not before: Fri 25 Nov 2022 04:40:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 123.195.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8581 (0x2185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=406363C8E27C2EA5AE591501DF2CFA4652DC8A98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:ed:35:c1:42:f9:22:be:6e:ad:0c:9c:70:
a8:f3:03:c3:53:99:b1:2c:46:90:fa:ef:5c:b9:7f:
57:4b:5e:8d:fb:ad:45:6d:b8:c2:93:d1:f3:2e:82:
af:b1:1c:f3:d1:04:db:61:d2:39:2e:34:2d:71:2f:
61:34:47:9a:d2:6c:15:1d:19:4a:b0:9a:8e:08:96:
29:cb:de:ad:1a:60:ce:94:00:ec:af:99:a4:91:3c:
ce:56:44:9b:90:3a:16:31:e2:3d:c4:3c:76:1e:72:
65:30:35:0c:de:13:e2:cd:b1:3e:01:45:f7:14:04:
e0:1a:d4:f4:c2:71:e7:4a:32:6a:1d:87:b6:f3:03:
54:a2:63:cf:fc:c2:f8:01:38:d7:21:62:18:3f:16:
15:10:01:96:b9:2c:3c:ae:8e:8f:a1:f4:db:7c:b8:
0f:96:e5:e3:ed:1b:f3:d9:3b:87:ae:21:73:d8:5f:
a0:d9:f5:ba:82:7c:be:e5:bb:a6:65:9d:bd:4e:4f:
f8:03:a7:0c:2a:b2:a1:65:85:2e:8d:31:96:95:07:
ff:e2:ca:c7:7e:ec:8f:3f:38:24:3e:30:6b:ff:63:
98:2a:1f:ea:b7:1e:cc:b3:ce:ed:99:b7:be:d7:dd:
eb:84:57:d3:d1:4f:24:4a:52:5b:6c:42:8a:43:a3:
e1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:63:63:C8:E2:7C:2E:A5:AE:59:15:01:DF:2C:FA:46:52:DC:8A:98
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QGNjyOJ8LqWuWRUB3yz6RlLcipg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.224.0/21
Signature Algorithm: sha256WithRSAEncryption
17:ab:1a:27:24:5a:55:82:39:43:af:60:ae:f8:09:17:cc:a3:
2e:f1:cf:7d:a7:01:28:8b:45:5c:c7:84:ff:5e:12:00:71:f0:
57:25:25:d9:b1:7b:4b:e3:83:93:ac:c5:a4:ba:e1:61:22:27:
fe:06:d9:13:b0:fe:ef:02:73:f0:0a:47:83:7e:1c:4c:25:65:
a0:02:bb:02:09:6f:8d:30:f3:42:f0:07:6c:54:77:aa:b9:eb:
7b:8e:2d:ab:cb:bc:4a:4f:7c:54:0d:ac:a1:06:bd:a1:26:14:
8a:ce:c9:67:bf:a4:4f:dc:24:62:d2:60:df:bc:9b:38:3b:70:
5f:d8:7e:d7:79:c0:a3:8c:d8:8a:af:cb:cd:69:2c:e4:5f:08:
fc:5d:d7:86:78:71:5f:21:2e:a6:8c:9c:9b:5a:89:c1:bb:79:
d4:58:d9:16:8f:b1:b8:4a:ed:44:3e:6e:41:16:8e:8f:e0:30:
25:1f:4b:c5:46:87:43:9b:8b:f9:66:b3:09:fb:df:2a:c4:d1:
2b:9b:08:03:13:32:69:e6:d4:a6:47:61:a8:76:22:de:dc:e0:
08:1c:f8:0b:24:5c:f8:0a:fe:2f:fb:03:e3:70:61:8f:78:49:
6a:4e:2a:f0:99:15:97:b1:fa:c9:a6:bc:48:b0:8d:03:33:4a:
b2:3c:bb:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org