Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qdv0LC-WDYdSB9NfZc2Q107KoGY.roa
File: Qdv0LC-WDYdSB9NfZc2Q107KoGY.roa (raw, json)
Hash identifier: P3dZUQri806nVYNFRkXTYWfpnGU6XBZ4RvgLnsiqXf8=
Subject key identifier: 41:DB:F4:2C:2F:96:0D:87:52:07:D3:5F:65:CD:90:D7:4E:CA:A0:66
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 218A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qdv0LC-WDYdSB9NfZc2Q107KoGY.roa
Signing time: Fri 25 Nov 2022 04:40:02 +0000
ROA not before: Fri 25 Nov 2022 04:40:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8586 (0x218a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=41DBF42C2F960D875207D35F65CD90D74ECAA066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a7:ed:be:35:28:b0:08:ea:d3:a2:99:e0:5c:
a9:d3:a2:63:3f:62:3e:78:e8:62:7d:e0:b5:02:36:
16:7c:79:f0:31:c1:d5:e2:e6:e4:fa:de:e1:28:9a:
56:55:fc:0c:f3:f3:9b:37:d9:51:57:fe:47:50:f4:
4f:10:24:5b:70:42:98:51:db:50:40:22:97:0d:37:
a6:7a:91:e6:a6:67:76:f8:c2:8f:2a:c2:f6:f6:6c:
c3:28:4b:f8:5e:58:17:46:29:87:12:0c:ab:1b:2b:
8a:67:75:4a:3a:a4:51:43:57:68:ff:1a:98:b4:3b:
cc:62:1f:0a:a7:dc:16:33:4f:7a:91:35:13:53:22:
3c:69:b6:76:74:d1:0a:30:04:19:d3:17:a0:0a:9e:
f5:9d:49:7c:33:6f:c7:ad:25:5b:1f:c5:40:3d:b3:
38:54:c2:80:ac:63:9e:fc:b8:a9:74:19:ab:87:68:
fe:bc:32:f0:3d:34:21:57:b7:4a:bd:ea:9a:38:7a:
9d:82:c5:e6:9c:57:9d:4d:ca:d2:84:d1:79:3b:07:
35:c5:95:3e:33:f1:a7:06:0a:8f:12:43:da:81:90:
7d:be:01:fe:9f:42:49:c7:90:86:05:64:e5:97:4e:
9c:0b:21:fe:ef:5f:40:77:8d:fe:1f:f7:1e:25:12:
e8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DB:F4:2C:2F:96:0D:87:52:07:D3:5F:65:CD:90:D7:4E:CA:A0:66
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qdv0LC-WDYdSB9NfZc2Q107KoGY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.128.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:44:f8:ba:9d:0a:3e:76:9f:51:ce:f4:41:66:bb:ae:c3:bc:
d9:f0:4d:02:f8:75:a4:73:20:c1:97:af:03:81:a8:4a:3d:f7:
4c:7a:c0:e4:43:89:79:63:a1:97:c2:76:49:7a:3d:6d:da:e4:
ff:4c:7a:53:24:e5:04:b6:06:25:8f:8b:ae:42:74:8f:b0:47:
27:e9:e6:ee:0a:b9:b2:7a:26:91:1f:49:ca:65:0c:7c:66:48:
4f:89:82:da:12:51:d1:18:05:7a:30:b4:45:2a:dc:74:f8:bf:
98:91:71:85:a9:93:7f:e8:82:4e:ca:3a:bd:4e:cb:ed:2e:e9:
a7:e8:cf:a8:cf:f2:10:53:55:ef:87:a4:31:a2:79:2f:19:f1:
86:ae:ca:b1:4f:30:d4:35:b7:15:d7:0c:b6:3b:aa:27:31:96:
8a:63:59:20:af:d5:c9:56:eb:4d:6d:f4:c3:f4:0a:74:8e:d9:
7d:4a:a9:ea:e6:c2:10:12:a1:44:ae:ef:61:ff:0e:c2:23:cf:
d6:6a:36:3c:1c:86:6d:d8:d8:d3:f8:03:42:a3:41:11:8e:70:
41:96:39:c9:5f:7c:35:ea:32:3b:2a:35:bd:cf:94:bf:4e:f2:
f6:ed:12:b2:65:6d:96:7d:d6:af:1f:9c:82:9f:91:6f:8f:ec:
76:8c:ff:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org