Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SDEYdOdW5uN5f5wULcf8dwJepEg.roa
File: SDEYdOdW5uN5f5wULcf8dwJepEg.roa (raw, json)
Hash identifier: TsOUHLtgYmWnq2oHHb0xApAWjc6c7YWmMA6OVWLm0CU=
Subject key identifier: 48:31:18:74:E7:56:E6:E3:79:7F:9C:14:2D:C7:FC:77:02:5E:A4:48
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C36
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SDEYdOdW5uN5f5wULcf8dwJepEg.roa
Signing time: Wed 29 Sep 2021 02:47:28 +0000
ROA not before: Wed 29 Sep 2021 02:47:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7222 (0x1c36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=48311874E756E6E3797F9C142DC7FC77025EA448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ce:c3:9c:c9:6c:75:9a:09:39:22:6a:14:a3:
3e:9d:8c:fd:52:ec:bd:95:81:c0:e2:50:ad:40:cf:
4c:7e:d4:bb:80:a3:4e:d6:b1:a9:2c:47:5b:8b:9a:
21:69:c7:09:6c:f0:fd:ff:9a:83:9e:91:6f:b4:a2:
6a:81:4e:4a:2d:0d:9c:8a:e8:9e:a9:f7:ef:72:fa:
52:ba:27:a8:f1:5b:26:2f:53:7a:b0:37:61:26:17:
ad:c2:ca:e5:2c:69:dc:b0:c8:45:e8:df:31:e8:17:
58:f7:04:7d:ae:34:6c:31:2a:2f:12:17:2b:6f:16:
76:19:bc:7e:e4:59:24:2b:08:2a:28:4e:c0:ff:e8:
21:2b:26:95:5c:2e:cf:dc:9c:cc:a6:f0:af:82:4d:
53:d7:58:f3:4a:63:44:35:8c:55:02:53:7b:00:93:
1c:8a:31:5c:ea:12:cf:1d:8a:d5:d4:c1:de:0b:d7:
c3:07:44:ba:d7:b7:33:bd:31:b2:8f:58:5e:18:a2:
75:a7:ab:2a:15:12:f4:bc:80:d7:a2:8b:7d:18:dc:
c9:63:f1:ec:50:95:26:c8:5e:c0:fd:14:54:0c:52:
e5:ec:0a:70:32:99:80:38:26:61:68:a8:13:23:d9:
66:93:ae:9b:41:4c:fe:e1:f8:bb:90:ab:34:6f:3e:
4b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:31:18:74:E7:56:E6:E3:79:7F:9C:14:2D:C7:FC:77:02:5E:A4:48
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SDEYdOdW5uN5f5wULcf8dwJepEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.156.0/22
Signature Algorithm: sha256WithRSAEncryption
21:c5:3b:2f:63:86:29:9e:8a:fe:92:4a:c7:72:72:37:44:02:
a4:78:ea:b1:8e:c7:01:06:bd:67:dc:e3:0e:3a:54:86:5c:cd:
18:52:97:1b:70:cd:9a:f6:93:ab:d8:93:dd:94:fa:da:59:bb:
50:46:43:cf:8a:8b:a1:d8:53:f3:15:cc:4d:43:bd:2d:4c:bb:
d0:f1:88:d6:e3:cd:07:ac:a2:06:9f:2e:3e:a6:a6:de:23:20:
bb:5d:28:0b:b6:53:18:87:bf:91:2b:68:eb:f4:73:28:b6:58:
fe:11:8d:6e:bb:3a:5a:ce:14:7f:37:ed:08:4a:87:59:44:e8:
e9:f1:84:0a:1f:e1:2b:f3:2f:44:c8:2f:cc:3b:7f:46:31:6a:
50:04:f9:08:ea:71:58:67:29:cf:c4:1c:d9:79:a0:81:fc:4f:
99:11:cd:c7:f0:92:10:b2:9c:4e:96:eb:ee:cd:cb:d4:97:48:
c3:ee:68:a6:9a:a8:09:83:a8:7c:d7:e6:cf:0d:ee:5f:16:94:
04:df:00:6a:c5:07:9a:14:26:63:9e:39:4e:c7:87:fa:d0:1a:
7b:d9:b0:c3:16:b9:8a:34:24:0d:22:53:78:7e:48:8a:df:4a:
1f:df:b6:0a:ce:5c:40:5d:e2:92:f0:5f:ab:4f:f8:df:c2:43:
2a:3b:1e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:19 2023 by rpki-client on console-ams.rpki-client.org