Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QH8EsqLHcSYrPBNI6RoNtmgu7D0.roa
File: QH8EsqLHcSYrPBNI6RoNtmgu7D0.roa (raw, json)
Hash identifier: vdkoHxhKIyGvNsJVph+3SaogmbU1IPOMOonn/LBkWpo=
Subject key identifier: 40:7F:04:B2:A2:C7:71:26:2B:3C:13:48:E9:1A:0D:B6:68:2E:EC:3D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QH8EsqLHcSYrPBNI6RoNtmgu7D0.roa
Signing time: Thu 15 Sep 2022 02:44:59 +0000
ROA not before: Thu 15 Sep 2022 02:44:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 123.195.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=407F04B2A2C771262B3C1348E91A0DB6682EEC3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:25:be:87:a4:53:42:61:6a:76:e9:8c:44:40:
3a:9a:3c:cc:31:02:dd:72:d4:0d:a5:d0:29:1a:f6:
c4:0b:30:f9:ea:e9:38:70:04:4d:60:07:5a:5f:3a:
e5:e4:91:4c:c0:69:9a:55:31:32:23:d1:68:80:4b:
d4:f7:b7:ae:4f:6e:8a:02:ee:f8:47:3d:b7:90:01:
9f:bb:f5:8c:ea:e4:7d:f9:dc:6f:24:f5:81:aa:69:
b3:5f:9e:96:c1:8c:5c:2e:4a:0f:36:94:7a:80:9f:
a8:f4:2f:03:41:2f:b9:46:b6:05:a1:2d:01:46:60:
9d:ab:28:90:90:ef:93:d8:1f:48:6b:b5:16:ba:36:
ba:ab:61:7d:af:06:54:d2:de:d2:5e:fd:5f:68:e2:
d2:d7:53:1e:bf:6b:c0:ae:34:71:50:12:4e:4a:4b:
09:46:88:59:56:da:9b:28:39:91:05:c1:35:10:98:
65:83:19:17:f0:bb:5f:be:d4:ac:23:40:26:89:1d:
03:45:a1:d7:b2:ba:18:e9:0a:f1:6c:8f:98:60:e8:
4c:03:a3:32:46:dc:cb:01:b9:78:e8:f5:c4:70:82:
2f:9e:b5:f4:fe:a4:50:b9:96:cc:88:03:2f:ff:92:
3d:d8:41:1f:2f:de:64:a0:fb:2a:e1:ba:e7:16:32:
d8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7F:04:B2:A2:C7:71:26:2B:3C:13:48:E9:1A:0D:B6:68:2E:EC:3D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QH8EsqLHcSYrPBNI6RoNtmgu7D0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.160.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:5c:4f:3e:4a:81:4b:c2:c0:7d:13:3b:21:44:b1:21:17:a2:
7d:43:80:46:8f:ae:d6:b4:68:2b:44:21:f3:ca:c3:35:20:cc:
32:e0:5c:97:3b:d4:d3:e0:1a:48:2e:81:3d:a0:ff:ca:15:53:
d5:aa:00:71:60:91:3c:7f:bb:b7:c0:b1:c9:67:0a:1f:36:5c:
25:d1:bd:a8:d1:f3:1e:fa:3f:00:3e:9e:06:6b:76:b3:b9:1c:
a5:18:b1:ca:8d:c9:00:94:63:6d:d4:1b:80:67:2b:ac:94:44:
88:27:24:a4:4b:d1:1f:75:eb:76:d0:62:af:5a:07:a7:e9:f6:
01:20:f4:a6:53:4d:cf:f3:3c:ac:67:ee:db:67:9d:b1:f8:65:
3d:f9:c4:2a:aa:88:ef:1e:c0:36:1d:9b:9c:74:27:f2:33:36:
58:d3:1f:dd:d9:09:97:90:16:0c:7e:2f:1a:66:db:d3:67:f7:
49:d2:78:d5:93:2b:a6:12:37:cb:88:01:bf:99:87:e2:3a:d8:
d6:ea:e2:84:f9:e2:95:81:0b:b4:b9:f7:6c:f2:55:32:42:93:
59:eb:87:91:39:b6:23:2b:37:bf:02:27:64:bc:37:b8:ec:01:
59:9d:50:73:25:e9:de:8d:ee:ef:e6:45:54:3f:ea:85:e5:9e:
39:82:6a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org