Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YM9DynhW2uBrJu4wnLxeDMjb7Og.roa
File: YM9DynhW2uBrJu4wnLxeDMjb7Og.roa (raw, json)
Hash identifier: yHDMFRUnknJrvnTt8AQmzNQ7C8T5xXxr3beVwrsPaPU=
Subject key identifier: 60:CF:43:CA:78:56:DA:E0:6B:26:EE:30:9C:BC:5E:0C:C8:DB:EC:E8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YM9DynhW2uBrJu4wnLxeDMjb7Og.roa
Signing time: Thu 15 Sep 2022 02:52:35 +0000
ROA not before: Thu 15 Sep 2022 02:52:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=60CF43CA7856DAE06B26EE309CBC5E0CC8DBECE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2f:df:63:61:27:86:d8:97:d1:f4:10:98:b7:
60:4a:33:d9:98:d8:12:87:5c:c7:48:b0:e9:3d:cf:
6b:e3:d1:1d:f1:2f:89:99:24:a1:da:02:ef:13:83:
c1:aa:5c:40:8b:d2:5d:40:b4:15:26:8b:5e:df:b8:
d4:f3:8a:8d:72:2c:f6:41:5b:0e:3e:c8:a7:ac:68:
50:a4:0e:4f:2f:2b:ee:3b:23:24:ca:2a:45:e9:76:
a7:c1:d2:85:3c:ef:2d:8f:78:e4:2b:50:6d:e0:1d:
65:07:f2:d0:f4:fb:48:7d:f0:00:5e:1d:7e:bb:9f:
56:db:be:86:e1:31:5d:62:a7:c7:5d:30:68:2b:88:
13:14:d7:38:dc:24:60:41:8e:77:4f:fa:dc:08:4c:
c6:82:bd:57:64:8d:93:b2:bc:10:c3:97:44:23:a4:
e8:e9:7e:be:08:75:8f:b5:b9:6c:73:b6:52:1d:80:
f0:99:96:d6:62:6f:8a:c2:17:ba:76:c0:97:09:d1:
c1:d3:89:be:95:c4:3c:be:2e:5c:04:76:90:a2:61:
2d:95:c6:9e:b2:c2:11:1c:66:8c:89:6a:26:83:61:
0b:7f:46:88:d8:ae:07:9b:5c:d6:08:21:19:ec:1f:
f4:22:9c:bf:30:ed:c5:ca:11:f8:8f:e0:f3:41:98:
a6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:CF:43:CA:78:56:DA:E0:6B:26:EE:30:9C:BC:5E:0C:C8:DB:EC:E8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YM9DynhW2uBrJu4wnLxeDMjb7Og.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:86:dc:c6:ea:ce:11:14:3b:3d:bf:d7:0c:68:d2:25:d5:84:
41:0b:bf:9f:98:12:99:a9:e6:ae:1c:b5:4d:4d:4e:f1:df:38:
04:32:16:fa:7e:34:f2:f6:13:be:b9:a4:6b:16:23:25:90:56:
67:94:4f:b4:93:16:26:1e:8d:f1:51:21:7c:7a:c4:c5:f8:68:
57:3d:4f:f2:ee:04:3e:81:39:a1:33:06:61:40:a4:ab:e2:e9:
fe:63:a8:00:e6:74:02:35:fa:56:bd:b8:6b:d4:a2:c8:36:50:
20:7d:e3:28:55:3f:d5:86:16:3f:ce:15:53:22:47:7b:6f:51:
25:8c:82:b2:eb:05:ab:f0:32:e8:40:22:b0:69:b5:97:13:f1:
1c:ce:ba:aa:09:8e:e4:d4:25:f2:df:91:77:46:40:f3:7f:58:
a8:8c:9e:41:be:ab:f3:86:04:6d:95:5d:67:d6:3d:c3:cc:5d:
97:78:d1:80:b3:ad:0b:62:06:27:6d:d6:df:66:cd:f7:f7:da:
31:fa:8d:2f:64:40:d2:20:62:6c:a2:ea:e4:31:80:61:7d:d6:
1d:60:74:99:24:6a:f8:17:13:18:14:94:78:4c:8a:0b:a8:fa:
08:e0:03:0c:5b:7c:82:0a:51:18:d4:d5:b2:a7:0b:4e:22:f7:
24:7c:81:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org