Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xhn04rHGP6C1-KEbBOPdbb-IZ8A.roa
File: Xhn04rHGP6C1-KEbBOPdbb-IZ8A.roa (raw, json)
Hash identifier: icGyLdKNMYfaCCvx6AhyFlR99NBGVfgcyM/aIs8zsiQ=
Subject key identifier: 5E:19:F4:E2:B1:C6:3F:A0:B5:F8:A1:1B:04:E3:DD:6D:BF:88:67:C0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21DA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xhn04rHGP6C1-KEbBOPdbb-IZ8A.roa
Signing time: Fri 25 Nov 2022 04:40:29 +0000
ROA not before: Fri 25 Nov 2022 04:40:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8666 (0x21da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5E19F4E2B1C63FA0B5F8A11B04E3DD6DBF8867C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:84:35:3d:1c:cf:55:d5:ca:fe:2d:66:c2:62:
f1:c2:b2:17:f9:7a:dc:c1:09:ee:a4:23:c9:17:5a:
9d:89:d2:92:4c:73:12:21:d9:79:fd:c6:2e:b4:53:
7a:52:36:01:5a:e4:cf:67:e8:5c:9a:7d:6c:b0:7a:
b6:48:82:e1:23:51:e4:39:f6:77:99:47:59:4b:6c:
63:57:3e:49:c2:11:04:9a:a7:a0:5f:31:86:46:00:
78:15:cb:54:04:ff:78:55:f6:35:73:20:0d:d1:9a:
e7:c3:60:ad:8d:7e:ad:79:c4:62:b9:3c:df:2a:10:
d1:46:a1:08:e4:11:39:2a:ec:a8:a5:39:79:b3:7a:
d9:74:1e:75:33:22:65:1f:d4:ef:01:10:23:c7:53:
45:50:72:d4:69:db:3d:55:6f:dc:ce:11:f3:8c:d3:
44:b9:39:21:75:ce:43:c0:fb:4e:b0:de:3d:e9:58:
4e:7b:0f:af:a8:6f:85:12:6c:20:de:07:4e:98:44:
33:38:87:51:ae:4d:ca:48:21:c9:a9:2c:66:93:47:
84:4c:8e:bf:b6:26:e8:0b:d5:7b:dd:5b:9d:75:33:
d2:ca:84:52:89:8b:72:2e:55:0d:74:84:e3:1c:ad:
83:5f:8d:22:34:3a:62:b5:f3:a1:2d:3e:00:83:29:
d5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:19:F4:E2:B1:C6:3F:A0:B5:F8:A1:1B:04:E3:DD:6D:BF:88:67:C0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xhn04rHGP6C1-KEbBOPdbb-IZ8A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.4.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:65:ce:f5:14:98:a6:01:60:8f:04:fb:82:81:2d:60:18:d9:
d1:c9:21:de:ce:6d:77:bc:b4:b3:61:f0:b6:08:7c:00:41:8b:
4b:d7:73:f0:e2:b6:43:72:da:5d:b2:a3:db:4b:e9:21:61:04:
ee:57:cb:9d:4d:19:63:75:49:20:2a:3c:50:71:12:00:6d:cf:
28:ed:c3:79:36:1c:8d:2b:57:24:de:ef:2a:28:e8:ab:cc:12:
c2:7c:33:97:3b:97:97:12:93:e7:f2:f6:89:be:26:15:49:bb:
d0:d7:ee:fc:88:8f:22:2d:67:c2:93:00:01:72:df:f9:a0:a5:
4b:3e:a7:ad:5c:de:b7:b6:74:95:f1:c8:03:ca:d2:cb:f3:78:
7b:47:63:c5:69:13:d2:18:32:02:43:dc:a2:df:2f:4f:64:59:
b9:43:49:51:25:e9:15:a1:8c:df:c7:80:d1:79:81:13:a7:bb:
15:7f:d2:39:a1:53:8a:6c:35:2b:c6:13:0e:7e:44:cc:c0:4d:
74:10:ed:8d:4e:24:3f:75:f0:4f:38:e8:09:5c:f6:c8:9c:4c:
ca:9e:1c:c6:42:47:0b:b0:8f:2e:78:64:d3:bc:4c:e4:39:0c:
91:85:41:c6:2a:9a:1f:45:d0:64:a5:11:ea:90:e2:fc:7f:ea:
d7:8e:f1:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:33 2024 by rpki-client on console-ams.rpki-client.org