Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YRYJ0hdFuD8U320T5fu5dQoROCQ.roa
File: YRYJ0hdFuD8U320T5fu5dQoROCQ.roa (raw, json)
Hash identifier: RV1JGPImRd9f31mvp9PzMXw2tQS7ExjCLcNkzExdv1I=
Subject key identifier: 61:16:09:D2:17:45:B8:3F:14:DF:6D:13:E5:FB:B9:75:0A:11:38:24
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YRYJ0hdFuD8U320T5fu5dQoROCQ.roa
Signing time: Thu 15 Sep 2022 02:46:14 +0000
ROA not before: Thu 15 Sep 2022 02:46:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=611609D21745B83F14DF6D13E5FBB9750A113824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:5f:be:30:25:a3:a1:ce:85:6d:f8:23:3d:2c:
50:43:e8:03:57:5a:fd:09:e6:3b:a7:42:13:65:2d:
44:c5:97:b1:4c:8a:2d:ce:e1:5c:ba:8a:ab:6b:bf:
25:b5:29:e8:5c:94:31:57:0b:1d:c2:c3:3e:6a:10:
78:e7:d9:5b:80:68:19:fd:0e:4b:9f:c9:d8:1e:dd:
02:a8:70:8b:2c:9c:f5:a2:ba:e2:80:47:83:c1:bf:
06:18:5a:05:11:21:40:05:20:a2:d0:1a:ce:17:e0:
de:f2:db:e9:89:fc:8b:3c:f7:2c:61:eb:a5:1c:4a:
87:fb:ad:7b:cc:2d:b6:fa:32:62:51:44:67:81:7d:
c5:06:1e:f7:1c:dc:c3:eb:00:d8:c7:29:3e:bc:1e:
7f:9c:3d:47:ba:bf:11:1d:5d:3f:5e:ed:b1:98:fa:
2f:fe:2d:dd:2f:94:0c:74:ba:17:88:18:17:79:0a:
99:b2:5c:42:a5:77:2f:e1:04:b2:83:3d:6f:f9:f7:
aa:6e:56:68:04:d1:f2:63:3d:17:a6:2a:8d:73:28:
69:46:f3:fd:96:4e:9e:d8:7c:cf:71:dc:1c:b6:b6:
c2:53:9b:01:2a:a9:17:11:43:c1:c8:43:93:5c:2c:
5c:e9:14:2a:5f:58:d8:6f:aa:be:87:e6:10:e7:9d:
57:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:16:09:D2:17:45:B8:3F:14:DF:6D:13:E5:FB:B9:75:0A:11:38:24
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YRYJ0hdFuD8U320T5fu5dQoROCQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.72.0/22
Signature Algorithm: sha256WithRSAEncryption
57:c0:d1:f6:cf:93:1d:98:f3:ef:d1:c8:9a:f3:fd:01:62:8f:
b8:9f:ca:28:6e:6c:fc:56:e6:dc:65:f1:b2:5d:84:4b:33:cd:
cd:8b:13:5a:35:cb:c7:c2:d0:90:49:b1:eb:11:02:21:5d:23:
83:04:f7:bb:d3:24:c4:9b:00:09:34:5b:5c:4a:10:3b:87:bb:
06:b4:8b:0b:ef:2a:4d:7e:7f:20:48:a4:9f:39:e1:b8:9e:a9:
2a:8c:c7:e3:64:16:39:db:00:2c:50:11:c3:32:1f:c3:7d:9d:
b7:f6:76:8e:54:52:b0:ec:49:af:18:e1:ef:e6:94:f1:8c:be:
cf:43:75:09:03:fd:c7:10:54:57:7b:70:c7:fb:66:8f:0d:54:
3a:e0:12:48:4d:90:08:25:6b:47:85:29:43:ca:07:ae:f8:02:
87:20:8d:db:45:8c:ba:5a:38:30:a5:55:9a:98:92:de:43:92:
38:4e:c2:89:a3:3a:cb:72:61:d8:37:c2:4e:20:3d:1f:82:e9:
81:1d:a3:96:36:36:7c:cd:4b:dc:00:c5:6c:82:13:d1:d5:e9:
07:71:43:59:8b:ff:12:ad:3d:3b:9c:3d:8b:f4:20:a0:e9:e2:
4a:1a:14:cc:12:a3:2b:5d:db:74:ec:6e:bf:96:52:83:f9:23:
0f:ff:a1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org