Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z9lzRX-6mG6MSpLyhHyH1KXTv1c.roa
File: Z9lzRX-6mG6MSpLyhHyH1KXTv1c.roa (raw, json)
Hash identifier: ghO7IZjknfCmVxAmn9JaIPfm/t85eh0yi84L5gGIWSI=
Subject key identifier: 67:D9:73:45:7F:BA:98:6E:8C:4A:92:F2:84:7C:87:D4:A5:D3:BF:57
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E9F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z9lzRX-6mG6MSpLyhHyH1KXTv1c.roa
Signing time: Tue 29 Sep 2020 09:55:58 +0000
ROA not before: Tue 29 Sep 2020 09:55:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3743 (0xe9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=67D973457FBA986E8C4A92F2847C87D4A5D3BF57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2d:f3:5f:a8:82:8f:5d:47:b5:a3:99:91:ee:
fe:01:c8:4a:9b:c0:0d:1e:cb:a6:9d:29:ce:6e:05:
31:bd:8e:ad:58:df:0b:b6:70:5b:1b:30:c8:85:c3:
fa:04:2a:07:48:72:66:91:47:50:8d:b6:f2:2f:9b:
38:62:d7:26:b9:02:1b:08:96:96:d0:18:ed:be:a5:
32:30:83:e3:9c:1b:76:11:e8:29:5e:57:65:d7:7a:
5d:53:60:b3:17:20:aa:e7:7b:2e:5a:20:83:46:b0:
81:c6:b8:19:6e:76:d9:21:b9:80:42:d6:44:92:44:
4d:74:d2:5a:43:c9:fd:5a:00:41:00:e5:35:97:84:
c7:13:00:89:61:cb:04:06:12:ef:05:bc:8d:2f:39:
ff:40:d4:e1:40:6e:d6:c6:5d:2b:5e:57:eb:e1:c7:
95:72:ea:1d:cb:e1:7f:a4:1f:4e:fb:ec:b7:e9:a4:
e9:0b:fe:a0:fd:b7:0d:c3:22:dc:45:8e:f2:3b:a5:
b1:20:22:3a:c5:9b:ff:5e:7e:96:7b:d4:b2:a8:df:
ae:d1:9b:e3:d3:ae:bd:e3:ff:81:ba:10:28:21:5c:
85:d3:8d:6a:14:fa:78:2b:f8:a6:2c:1f:fc:b5:17:
93:95:60:59:97:57:9a:eb:58:2f:c6:76:ea:85:be:
bd:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D9:73:45:7F:BA:98:6E:8C:4A:92:F2:84:7C:87:D4:A5:D3:BF:57
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z9lzRX-6mG6MSpLyhHyH1KXTv1c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.208.0/21
Signature Algorithm: sha256WithRSAEncryption
5e:5f:a4:62:35:ce:b8:2e:e4:b4:46:9b:44:c1:8a:4b:8d:63:
37:f8:32:3a:10:d0:95:f5:3c:d5:01:32:a6:02:95:e3:14:da:
bd:ee:cd:77:7d:96:79:57:94:c5:1e:83:25:7d:64:7e:c9:0f:
8f:90:9d:54:30:75:ae:9b:e3:cf:85:aa:00:32:5b:2f:a2:14:
44:d3:b7:fe:32:8b:2c:86:97:a2:8e:00:6a:a4:1e:42:e8:16:
a9:1e:4a:ee:68:da:ae:e1:8a:96:18:e6:74:79:0f:ed:35:6f:
39:cc:87:a6:87:5c:5f:34:08:dd:73:c6:a3:00:f0:90:d0:89:
50:67:1c:e5:7b:6e:74:41:46:9b:14:23:5c:ce:17:41:ca:b6:
0c:f3:ae:a0:25:6d:78:f7:26:4a:32:19:aa:d1:8b:da:1b:de:
95:55:cf:d2:37:41:ce:75:39:62:ba:a5:ee:2b:15:50:77:4d:
9f:f6:36:b2:8a:ea:8f:bb:c5:cd:6a:ae:11:8b:83:f2:cc:21:
4d:54:c6:d0:41:ac:f0:51:b9:cb:db:96:13:59:14:07:fc:4e:
9b:60:4f:59:ac:76:19:f7:b9:af:35:dd:68:9d:1c:51:10:1f:
be:9a:f0:c6:25:d5:85:30:98:28:00:64:6e:9b:36:dc:0c:8c:
85:19:4c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:34 2024 by rpki-client on console-ams.rpki-client.org