Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QHWh-5vpgP1Z3YkJF3izPM9ryfw.roa
File: QHWh-5vpgP1Z3YkJF3izPM9ryfw.roa (raw, json)
Hash identifier: 146bT2UZD4Y/tYCseXf4dyUhD1NnH/Plz5G6pVprd80=
Subject key identifier: 40:75:A1:FB:9B:E9:80:FD:59:DD:89:09:17:78:B3:3C:CF:6B:C9:FC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D6D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QHWh-5vpgP1Z3YkJF3izPM9ryfw.roa
Signing time: Tue 29 Sep 2020 09:54:33 +0000
ROA not before: Tue 29 Sep 2020 09:54:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.144.128/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3437 (0xd6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4075A1FB9BE980FD59DD89091778B33CCF6BC9FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ba:80:0c:f0:a3:a9:8c:00:99:a4:5b:ea:74:
5a:cb:4f:66:eb:a7:e3:99:cd:75:32:9f:1b:92:37:
2d:8f:d3:5c:9b:9a:90:76:7e:ac:67:a4:d2:ad:6d:
19:16:ba:d7:c0:96:41:7b:86:46:45:3a:49:30:04:
b1:4e:33:90:2d:cb:7f:65:a3:9b:68:f9:1f:3e:87:
8c:5c:31:62:ca:6a:26:1e:6b:74:4d:5f:ab:bb:7b:
b3:9d:24:35:a5:04:5f:83:16:e5:d0:5a:15:5f:ed:
93:d6:1e:9c:89:90:88:eb:b3:d5:1e:e9:7e:c9:f1:
ef:ad:1d:94:5c:06:fb:e8:15:1a:21:f2:89:a1:02:
61:e3:62:4d:40:58:6b:10:e5:69:98:4c:cc:be:69:
b1:db:b5:f8:6a:f1:32:b1:2f:b2:c2:d2:38:34:19:
48:e3:af:7e:67:47:4b:ca:f4:0f:a2:fb:32:31:44:
12:99:30:97:2d:59:7c:73:e1:d1:41:a9:44:15:69:
80:59:a6:45:da:87:60:02:d7:01:32:65:e1:83:63:
69:d4:32:1d:e1:88:c9:0f:1b:90:f8:dc:cc:c1:b6:
d4:b9:4a:73:61:76:98:47:60:25:f4:69:8a:70:fd:
37:c1:da:5e:b1:ec:4e:bd:8a:cf:8a:f0:e6:90:9f:
bf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:75:A1:FB:9B:E9:80:FD:59:DD:89:09:17:78:B3:3C:CF:6B:C9:FC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QHWh-5vpgP1Z3YkJF3izPM9ryfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.144.128/26
Signature Algorithm: sha256WithRSAEncryption
88:ce:34:a4:ae:7e:1d:54:74:97:74:d2:1a:3b:0f:6a:e2:70:
ca:e1:22:26:55:15:83:1f:66:8e:df:10:27:20:c1:49:30:ec:
f1:70:0f:2c:56:b4:bf:65:61:06:97:0b:d4:3e:9a:08:2d:60:
e3:40:87:8c:d4:9a:f3:1e:96:5d:d3:be:9a:de:10:35:53:3a:
8e:d7:4a:d6:d4:8b:85:a8:b8:d8:e3:b7:7b:e1:66:27:31:78:
ff:e6:49:50:ad:0d:f3:3c:3b:92:cf:eb:dd:55:9a:e4:0d:8d:
6b:4d:f6:34:2e:a1:9f:1b:eb:1f:56:7b:0b:42:93:4a:e0:e0:
4e:73:12:e6:3e:aa:20:18:63:5c:b8:14:24:68:b5:66:1f:e9:
b3:29:d5:81:2f:55:77:4e:6c:e2:13:1c:4e:ff:48:16:8a:ba:
33:85:f4:a7:e8:20:0c:1e:89:af:0c:58:cf:cb:02:c0:fc:eb:
a6:bc:68:b9:e6:e7:42:b5:5b:85:66:bc:54:5d:97:59:f4:2d:
cf:05:6d:37:45:e0:d2:08:54:c7:e5:79:16:2f:1c:4d:97:29:
a5:8c:86:99:cb:a5:a8:43:29:fa:d6:41:d7:50:96:1f:16:dd:
4a:93:b9:79:77:cd:44:c1:2b:84:32:d2:50:48:ea:4c:49:f6:
a6:0c:97:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:28 2023 by rpki-client on console-fra.rpki-client.org