Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QeSc2-K9UBrQ9s6t1sW-4shE96Y.roa
File: QeSc2-K9UBrQ9s6t1sW-4shE96Y.roa (raw, json)
Hash identifier: Q7N0DtHuLa5Fc0YdDoT8UvCI1e+ohXOlqh05YyOlbrA=
Subject key identifier: 41:E4:9C:DB:E2:BD:50:1A:D0:F6:CE:AD:D6:C5:BE:E2:C8:44:F7:A6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B88
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QeSc2-K9UBrQ9s6t1sW-4shE96Y.roa
Signing time: Wed 29 Sep 2021 02:46:42 +0000
ROA not before: Wed 29 Sep 2021 02:46:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7048 (0x1b88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=41E49CDBE2BD501AD0F6CEADD6C5BEE2C844F7A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b3:f6:e9:36:14:f0:61:20:8a:6d:c5:bc:68:
c4:a6:c7:9a:da:a4:dd:7c:73:e6:b8:67:c0:2b:9d:
2a:ce:e9:d4:d2:a4:6a:d8:c9:05:9f:c9:01:e3:1c:
97:36:61:35:1c:a7:cf:8b:6e:9f:00:ac:5c:60:40:
29:df:a3:b4:08:59:19:29:18:ae:94:c7:12:cc:d1:
91:6c:64:ac:73:62:54:91:29:77:c3:20:77:95:8d:
cb:d6:9e:48:71:21:33:26:44:be:06:6b:a6:f7:47:
ed:b2:f1:c0:97:e2:ea:6a:6e:19:92:cb:85:a9:4c:
4b:2f:cd:4f:50:b4:49:c0:ab:63:a0:84:3f:d5:e1:
a1:f6:f9:81:6d:8c:ff:ed:49:d6:cc:29:1a:aa:3a:
03:9b:3b:79:c5:6e:ed:94:b6:1c:6b:87:cd:5f:31:
e0:9d:09:96:40:6a:d5:bc:0c:5f:c1:04:db:2c:ca:
c4:24:cc:dd:57:51:72:ed:1c:e3:e5:3c:5a:82:98:
a0:47:21:df:c2:07:3d:79:b4:0b:ea:fe:04:1b:df:
84:62:cc:51:54:26:22:97:49:c9:0f:ee:0a:e5:a0:
27:6c:c3:f0:4e:5c:d1:da:8e:ec:bd:2e:9a:a0:05:
21:75:e1:77:2a:98:52:13:7f:10:69:15:19:50:97:
bd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E4:9C:DB:E2:BD:50:1A:D0:F6:CE:AD:D6:C5:BE:E2:C8:44:F7:A6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QeSc2-K9UBrQ9s6t1sW-4shE96Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.68.0/22
Signature Algorithm: sha256WithRSAEncryption
63:3e:3f:71:2a:4e:91:2b:d6:05:88:d9:c8:18:e5:3a:d3:55:
a6:c2:8c:92:e6:a2:99:cd:6e:0a:45:46:7f:bd:c8:85:d2:35:
88:82:b2:18:fc:b2:1c:7f:4c:81:d5:3e:01:92:a7:7b:6b:b7:
e8:93:c4:ce:51:b1:e8:33:68:4e:54:8c:04:8e:a9:65:6c:ff:
e8:82:d7:02:f6:09:be:fe:a4:63:af:ca:eb:d7:9f:24:81:0d:
c9:39:d8:1d:f4:10:3c:8a:a9:38:5c:00:72:0b:09:3f:ce:ed:
fe:a1:c1:1f:54:af:ac:78:19:48:76:8d:19:b8:97:e6:82:7f:
4c:85:db:87:7d:24:e7:f7:bd:ad:d8:8a:41:4f:77:5c:b5:d5:
52:10:6d:e6:4f:4d:d5:fd:c3:34:31:cf:12:44:02:83:74:70:
5f:a2:9d:8a:a4:cd:e5:08:1e:77:6d:9f:21:4e:8f:6a:d1:e1:
be:2c:37:8a:0b:9b:75:ff:27:b3:05:79:66:a3:54:e8:23:e9:
82:f4:a6:fa:30:1d:af:ef:6c:a7:59:3e:71:03:d2:7c:37:ee:
52:23:1d:c2:27:ce:8a:bc:36:57:ef:75:2d:a1:c9:92:26:e7:
4b:32:7b:a4:b4:49:3c:27:3d:d5:eb:76:51:a9:1c:64:a7:c8:
67:65:b5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:31 2024 by rpki-client on console-ams.rpki-client.org