Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XS2aTKbNIRXk0pVXZd3NBFd5S-4.roa
File: XS2aTKbNIRXk0pVXZd3NBFd5S-4.roa (raw, json)
Hash identifier: baCoBf+MEJJfIvNRCNRgwY9+BDucVcIbafKRs8oupFo=
Subject key identifier: 5D:2D:9A:4C:A6:CD:21:15:E4:D2:95:57:65:DD:CD:04:57:79:4B:EE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CDF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XS2aTKbNIRXk0pVXZd3NBFd5S-4.roa
Signing time: Wed 29 Sep 2021 02:48:20 +0000
ROA not before: Wed 29 Sep 2021 02:48:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.205.64/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7391 (0x1cdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5D2D9A4CA6CD2115E4D2955765DDCD0457794BEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5a:6f:44:ec:46:a5:7e:b9:b9:0e:f5:a4:63:
9b:f5:7f:2d:90:0a:03:6a:b9:75:48:af:ca:f6:ce:
24:c0:ed:9f:e8:b0:48:27:a7:c7:56:4a:01:3b:c6:
62:35:44:f3:e2:12:bf:5d:ce:9a:5a:d4:06:d4:6c:
34:0d:db:94:fc:0b:7a:44:5a:8a:35:83:00:49:a8:
0e:87:be:28:02:98:14:65:dd:37:a0:80:2a:72:81:
b9:d0:52:d2:ba:62:b7:09:a1:11:59:8e:bb:dc:16:
ac:59:92:bc:bc:1f:99:92:63:c0:65:3d:3e:ed:98:
58:d1:70:ef:61:46:7f:6a:7b:62:a8:3f:0a:58:79:
b6:06:18:ef:86:33:56:9d:85:87:49:28:50:83:2f:
a5:82:4d:9f:c0:a8:38:75:37:06:36:82:37:b9:82:
f1:71:7d:ac:70:5e:1a:51:87:80:ee:e4:03:ef:f7:
9c:d0:68:2d:0b:b0:ea:06:12:bb:e8:62:c1:a3:a6:
10:2b:a0:fa:c2:10:ca:6d:91:37:38:3b:eb:77:e7:
15:34:9f:17:61:c9:07:78:0d:5f:f7:71:c3:c8:03:
90:70:35:43:26:e6:3f:60:03:79:70:a1:39:d3:79:
43:8f:09:11:02:de:ef:8f:2a:6a:71:83:cf:ec:99:
4f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2D:9A:4C:A6:CD:21:15:E4:D2:95:57:65:DD:CD:04:57:79:4B:EE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XS2aTKbNIRXk0pVXZd3NBFd5S-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.64/26
Signature Algorithm: sha256WithRSAEncryption
0c:c2:23:1c:e8:4b:57:51:8a:20:d5:fa:d6:b6:c8:42:4a:e9:
d9:17:32:c2:a3:ef:a5:8e:1a:bc:8b:1b:9d:35:70:f9:46:da:
8f:2f:ec:44:d0:14:71:6b:de:b8:75:1f:8a:dc:9d:c3:59:9f:
c9:fb:c0:fe:ee:ec:11:3d:17:bb:81:65:5c:8f:12:3b:28:bb:
83:4e:2c:08:0a:fb:d9:aa:c9:c1:7d:b8:5c:8f:b1:a6:b1:04:
bb:ce:3d:1b:9e:c7:54:8c:73:60:7d:d1:8b:96:c5:0b:37:bd:
a1:18:f9:90:9a:06:1e:7a:9b:cd:9e:ce:08:2d:a4:e7:5a:65:
b5:2d:35:7c:18:8d:d5:0b:2c:82:1a:ef:ab:65:dc:ed:7c:67:
dc:0b:4c:d1:b7:60:71:b9:20:cc:79:dd:1f:7d:db:88:3c:ac:
92:77:64:a8:04:8d:91:a6:c6:49:9a:c0:54:10:ea:a2:30:eb:
3d:25:d4:d2:0c:e8:80:41:bb:a0:4b:87:5b:49:f5:b3:fc:79:
dd:f2:b3:23:43:6b:c7:e9:f7:b4:05:c4:b5:1f:fa:38:52:b6:
65:55:63:34:97:15:38:39:69:98:40:40:99:a3:82:77:c4:05:
c5:f1:90:d9:8e:72:aa:d5:2b:36:86:d4:22:c8:88:26:54:02:
b3:8d:38:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:21 2023 by rpki-client on console-ams.rpki-client.org