Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qc7CETupbFGUueVK-Pp-7jMqSuo.roa
File: Qc7CETupbFGUueVK-Pp-7jMqSuo.roa (raw, json)
Hash identifier: nXXreqTtr59hYCHjDMhwBHJj+wOnjBFIrVbHh6O4SEA=
Subject key identifier: 41:CE:C2:11:3B:A9:6C:51:94:B9:E5:4A:F8:FA:7E:EE:33:2A:4A:EA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qc7CETupbFGUueVK-Pp-7jMqSuo.roa
Signing time: Thu 15 Sep 2022 02:45:34 +0000
ROA not before: Thu 15 Sep 2022 02:45:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=41CEC2113BA96C5194B9E54AF8FA7EEE332A4AEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1d:1c:92:8e:62:1e:41:d4:b4:92:76:d9:fd:
4a:65:15:d6:a6:eb:85:94:9c:2a:65:78:ed:61:5e:
f3:49:4a:5e:06:98:ef:2b:22:27:c9:64:4f:1c:78:
1e:e7:40:f3:ef:cf:7e:17:52:6f:83:cc:db:13:2e:
f1:f9:17:fa:d5:28:91:4a:68:a2:ec:fb:a3:f4:58:
31:16:26:70:23:4c:ef:93:5b:83:9b:97:56:6c:7a:
04:33:47:c9:9d:e8:ac:24:8b:14:26:06:67:82:d2:
3f:ec:03:b8:df:eb:3d:ba:5f:5a:06:d0:95:4b:f6:
46:30:7a:32:f9:67:48:0a:5d:8a:8d:bd:4e:d8:82:
7e:a7:51:df:50:09:e8:84:13:12:5e:b1:b7:3c:65:
61:e0:bf:6a:28:1e:fc:da:55:dd:3f:f7:58:cc:e8:
6c:d4:41:6d:e3:c6:f8:d8:57:e0:fc:50:9a:cb:67:
bb:dc:70:03:2f:4b:0c:47:c1:c1:70:9f:5a:29:9d:
07:41:73:49:92:68:71:a8:2f:ab:c3:78:99:27:24:
87:17:81:5b:c7:d8:cd:b3:89:53:2b:83:42:de:c8:
3f:f2:cf:35:33:bb:95:e8:2f:b9:eb:1d:93:03:f8:
9c:7d:3e:0d:b5:20:60:a0:7b:1f:9b:ec:7d:41:1a:
22:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:CE:C2:11:3B:A9:6C:51:94:B9:E5:4A:F8:FA:7E:EE:33:2A:4A:EA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qc7CETupbFGUueVK-Pp-7jMqSuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.136.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:bd:87:ff:f8:d5:46:d9:39:88:b2:5b:4d:a1:4c:6b:06:bf:
71:33:8c:01:a9:c6:b6:21:6c:32:a9:83:e1:6c:95:d2:03:85:
19:3a:52:cf:08:18:c8:a8:e2:f9:9e:e8:88:bf:4f:dc:02:ba:
f8:2b:9e:78:93:94:89:b6:46:d1:96:44:64:a3:f6:24:30:d4:
56:cb:e6:b2:17:8e:bb:e0:0c:0e:de:51:34:7f:32:a9:1e:be:
58:a9:8e:b5:ac:c4:22:7b:47:39:df:15:c5:64:81:02:b0:0b:
4d:f3:6a:cf:7d:81:fd:46:91:b8:09:54:c7:9c:e0:53:fe:43:
2d:ff:82:a6:d1:35:f4:67:07:12:30:3d:29:43:4b:52:5e:06:
bf:7a:a6:2e:35:55:6d:3e:0f:58:c4:63:37:4d:ec:ee:cf:68:
e2:9a:27:bf:66:6e:e8:7e:0e:d6:cf:c7:67:1d:4b:3f:73:86:
0e:68:45:37:4c:69:f2:fe:f1:66:78:3f:c6:d0:5a:93:a5:11:
bd:6b:1f:94:22:70:80:03:66:a0:f7:ec:1c:d9:38:04:f6:ca:
e0:c8:dd:85:a8:fb:f5:6e:4f:d2:09:d0:d9:49:30:8c:93:32:
9a:43:8b:f1:75:6a:45:84:4f:7b:3e:89:e3:26:04:df:05:9f:
d8:4f:a8:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:31 2024 by rpki-client on console-ams.rpki-client.org