Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YKiAKiwB2qoT1bzLzQ7vad4GAHA.roa
File: YKiAKiwB2qoT1bzLzQ7vad4GAHA.roa (raw, json)
Hash identifier: QDUWvio1a6+PN08skDIw4PID9H/9L9dnQ++g362+utI=
Subject key identifier: 60:A8:80:2A:2C:01:DA:AA:13:D5:BC:CB:CD:0E:EF:69:DE:06:00:70
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 201B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YKiAKiwB2qoT1bzLzQ7vad4GAHA.roa
Signing time: Fri 25 Nov 2022 04:38:20 +0000
ROA not before: Fri 25 Nov 2022 04:38:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8219 (0x201b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=60A8802A2C01DAAA13D5BCCBCD0EEF69DE060070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:11:86:00:99:d6:73:a3:4b:ea:ec:c4:11:8c:
a5:90:f8:c3:c8:e5:39:c8:93:42:67:92:2e:a7:fc:
61:0e:13:98:17:af:47:a3:0e:93:85:13:b7:cc:6c:
22:36:43:8b:1c:d7:ea:ed:ed:99:de:8c:d4:2c:3c:
cf:db:c0:15:e2:97:bc:b9:4b:e3:a2:ea:4f:9f:a6:
41:88:90:ee:4e:f4:70:ec:c8:6c:d4:e0:7a:ee:27:
69:c7:10:f0:ab:b7:d4:27:e1:51:42:4c:6c:1b:87:
76:cc:ad:b4:9b:58:dd:48:78:7e:f8:1f:15:6b:76:
f4:25:c1:0e:4b:1a:b3:a8:7c:71:12:d5:15:89:33:
33:8b:fc:67:82:3e:42:b2:f5:77:20:87:c2:34:5e:
c0:4e:a7:1f:5b:ca:40:a1:95:31:b6:a3:6a:34:d1:
cf:38:f9:1f:e6:08:95:31:b3:3a:98:5d:4d:9f:60:
ee:9c:8e:83:8c:94:6d:e3:5f:0d:fb:ae:dc:48:70:
81:d4:6a:59:98:6a:66:78:f2:7a:c2:8f:1a:28:14:
89:74:99:c3:9e:71:a1:0d:e8:fa:e2:a8:71:b9:c7:
1d:a5:61:9e:c1:57:76:9c:55:3e:dd:6d:3c:75:f4:
8c:68:85:b3:70:48:c4:a1:bd:2c:ab:83:7b:d6:4b:
98:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A8:80:2A:2C:01:DA:AA:13:D5:BC:CB:CD:0E:EF:69:DE:06:00:70
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YKiAKiwB2qoT1bzLzQ7vad4GAHA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.148.0/22
Signature Algorithm: sha256WithRSAEncryption
36:ab:88:f4:87:3b:a8:42:51:73:98:a2:67:27:22:04:0a:bc:
51:a0:66:e3:99:52:b3:a4:5b:1f:99:fa:28:4b:dd:fc:35:58:
c0:c3:fa:9c:ac:fd:0f:c1:fa:80:a8:38:56:e9:99:b2:a2:dd:
67:88:05:a0:42:80:34:8a:d1:cd:ac:b5:ad:e3:cf:64:83:a0:
fd:0f:0c:a7:a9:2d:d6:6e:f5:fc:23:7f:34:22:41:8a:84:78:
06:13:81:aa:58:2b:36:e7:a5:02:9c:66:24:b6:46:fa:76:7a:
97:f0:8a:58:c2:ba:c7:9f:03:64:a4:dd:43:3b:15:53:92:11:
c5:88:c3:d8:f7:09:7e:a7:bc:27:c1:df:fb:3d:b3:2d:4a:0e:
04:af:c9:85:c9:43:fd:59:a6:6c:fa:c5:cd:9a:f3:8d:4a:02:
61:63:15:45:fd:e3:bf:73:af:2e:ad:0a:1f:98:be:bf:38:b7:
7a:04:f1:6a:7e:9a:68:29:4d:44:7c:af:48:d6:b9:f3:1e:a5:
4d:d7:e6:da:b7:2f:f4:6d:1d:53:e2:d3:3b:47:a5:59:7b:51:
5c:d8:26:ed:09:c4:ea:69:c0:83:dc:65:c7:2b:08:13:e8:1f:
8e:3f:c2:09:67:da:71:35:04:d7:1c:ae:2a:3c:a7:4c:a8:5d:
c1:b6:cc:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org