Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZK7NoQHo5_NQOCQ7khoDNb1JJgQ.roa
File: ZK7NoQHo5_NQOCQ7khoDNb1JJgQ.roa (raw, json)
Hash identifier: p0pzLmwApO8BMxQxNwtlWR+TV8VP6DvI3ufzoR8pbKg=
Subject key identifier: 64:AE:CD:A1:01:E8:E7:F3:50:38:24:3B:92:1A:03:35:BD:49:26:04
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 200B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZK7NoQHo5_NQOCQ7khoDNb1JJgQ.roa
Signing time: Fri 25 Nov 2022 04:38:16 +0000
ROA not before: Fri 25 Nov 2022 04:38:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.144.192/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8203 (0x200b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=64AECDA101E8E7F35038243B921A0335BD492604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:39:40:e5:98:77:fb:1e:84:06:57:23:63:
24:91:17:9c:24:c6:42:2d:62:13:6c:07:05:07:6d:
08:8f:f3:ab:86:2b:92:31:2a:eb:f7:c9:0d:86:dd:
93:8c:5e:bb:26:c0:92:44:1e:f4:b1:a5:5f:d0:f2:
45:4f:41:6b:a3:1c:ad:74:95:38:06:a3:ed:28:35:
46:5f:94:72:fd:9b:2e:24:88:9b:da:ac:61:4d:90:
4c:2c:5f:a7:1e:94:3e:4c:db:ed:9d:6c:d5:6b:75:
f0:f8:a7:34:58:33:d1:f4:54:01:b3:f9:a5:6b:13:
d8:5a:be:26:8d:f9:14:b7:50:84:64:de:81:57:91:
67:43:e0:40:40:a2:db:be:e6:03:e0:5e:50:97:6b:
20:14:07:64:17:be:03:1a:15:4a:00:13:c1:e3:d6:
30:29:29:60:ad:96:0c:49:71:f7:d4:b5:8a:4c:bd:
61:55:40:f9:0c:77:4c:42:56:4f:f1:b9:9d:b4:fc:
4c:6a:64:d4:02:f9:61:b5:eb:0a:b8:45:78:fb:8b:
d6:80:c4:27:34:e1:90:c5:1f:b6:b3:e9:bc:22:41:
86:8a:36:01:e1:e8:c4:2c:dd:80:9e:b8:56:45:54:
24:5f:a2:17:28:20:40:ee:9c:29:10:2c:92:3a:b7:
73:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AE:CD:A1:01:E8:E7:F3:50:38:24:3B:92:1A:03:35:BD:49:26:04
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZK7NoQHo5_NQOCQ7khoDNb1JJgQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.144.192/26
Signature Algorithm: sha256WithRSAEncryption
77:d3:79:c7:ce:b7:bd:72:82:81:df:2f:80:d3:95:4a:0f:03:
d5:54:14:d9:ca:2c:6e:ce:3e:30:27:ec:06:7f:4c:6e:b2:7f:
38:65:a3:2d:fd:13:03:8d:6a:8e:c0:20:ee:9a:cb:b7:a4:8e:
f7:89:97:c1:3e:a5:fc:09:a4:26:f3:7f:ea:d6:5a:a2:cd:a3:
24:42:2d:e5:b3:c5:ac:0a:69:31:2f:40:66:c0:bf:b3:97:e4:
bd:7a:e8:b1:e9:e0:34:36:d5:a3:7a:d1:f9:16:95:ae:30:e8:
be:45:ef:39:2b:bb:3b:c1:5a:02:96:6d:7e:74:a1:61:be:74:
01:12:ab:28:ee:4a:96:7c:77:89:04:37:b0:4d:5a:5c:64:d3:
52:dd:23:7b:4d:b3:83:3b:cd:09:11:bf:e6:4a:18:11:b5:a3:
e9:4d:4b:31:7f:0e:94:3a:7c:05:ee:c3:df:fa:e9:1f:a8:bd:
42:51:24:64:e5:f7:a0:00:e7:a4:a9:64:9a:d3:da:81:5f:c7:
a2:d9:9e:63:a1:03:df:cb:09:66:be:ef:90:a8:e1:cf:85:e7:
a1:55:26:41:1b:c6:d1:54:c7:02:fc:fa:67:f8:6a:5d:e4:50:
5e:ec:b9:c0:4c:e0:3e:f5:68:d7:17:42:56:91:8f:36:ae:c1:
04:70:f9:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:34 2024 by rpki-client on console-ams.rpki-client.org