Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZWZB8lpCwbdXT65ZfhGfu0dIF0c.roa
File: ZWZB8lpCwbdXT65ZfhGfu0dIF0c.roa (raw, json)
Hash identifier: IBEbseSgSYXyZjxQHN6G5grW13HeOrrHn+rhJCoTKXs=
Subject key identifier: 65:66:41:F2:5A:42:C1:B7:57:4F:AE:59:7E:11:9F:BB:47:48:17:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1659
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZWZB8lpCwbdXT65ZfhGfu0dIF0c.roa
Signing time: Sun 07 Feb 2021 12:09:52 +0000
ROA not before: Sun 07 Feb 2021 12:09:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5721 (0x1659)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:09:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=656641F25A42C1B7574FAE597E119FBB47481747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f1:27:bb:84:57:67:ef:9a:d4:e4:cd:33:47:
0b:03:61:70:13:42:e4:4d:47:79:22:dc:e4:e4:d1:
fb:1e:bf:c4:30:bf:b7:a5:ab:be:8c:c3:af:7a:93:
35:52:9d:8e:ad:81:01:52:87:db:83:21:89:c9:74:
68:74:51:b3:a4:b0:27:a6:76:2d:c0:2c:53:fa:92:
13:fa:d2:70:39:6e:b6:7f:8b:3a:91:8f:32:9e:49:
ff:e0:3d:87:42:67:1b:52:1a:ca:23:c0:af:c3:89:
01:f0:c9:24:de:bf:09:ef:5b:56:32:ae:cf:36:89:
f0:39:bc:5f:d8:c4:0e:39:b5:39:0d:4d:30:a1:ef:
76:6c:25:4c:1e:c5:bf:0a:1c:58:40:c6:19:15:97:
a9:d7:d1:c9:b4:cd:70:b1:eb:ef:4f:42:08:3f:0b:
22:9c:7f:f0:c1:92:d4:a1:fa:7b:b0:8c:4d:5b:00:
1a:9a:98:e9:18:4f:48:d2:4e:b4:e5:64:d2:75:e7:
d3:46:d5:9c:28:36:59:df:a4:52:35:15:17:a3:a7:
a6:06:f3:73:91:8e:15:cd:3e:91:47:cc:67:f5:f5:
c2:ea:fe:27:e9:4c:7e:44:96:d2:12:5f:4f:b3:98:
04:3e:cd:14:65:ae:1c:a6:af:1e:78:c6:3f:b7:9f:
86:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:66:41:F2:5A:42:C1:B7:57:4F:AE:59:7E:11:9F:BB:47:48:17:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZWZB8lpCwbdXT65ZfhGfu0dIF0c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.128.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:b4:8c:e2:56:d5:4c:20:5b:1b:7c:fc:26:00:b7:50:7a:2c:
ec:2a:fa:02:45:71:ac:d0:2a:ff:5b:98:16:32:81:e7:02:7a:
d6:62:0a:69:a1:b9:3d:c2:95:08:33:56:43:58:d2:54:cf:26:
cd:ae:1b:03:d9:5e:29:2c:9d:c8:f2:af:e1:4b:3c:64:09:47:
bd:64:9a:d9:fd:f2:5f:6e:46:58:27:e4:46:f7:64:cf:e4:c3:
5f:b3:e0:02:6c:95:71:ec:5f:92:59:f0:7e:6c:62:17:f8:7c:
c1:25:c2:88:83:98:93:b0:2f:a1:e6:76:50:2a:1d:37:97:4c:
be:e0:55:91:5e:31:03:83:05:99:4f:58:ae:81:cb:96:38:bc:
44:8a:9b:fa:4b:f0:a4:f6:71:14:3f:6e:cd:a2:a5:cc:96:06:
59:d0:12:e1:37:31:fb:58:9c:71:31:bb:a8:f1:2f:93:e7:94:
9c:e0:4a:74:75:4a:fe:db:c9:36:02:c6:b8:a0:83:79:8f:d4:
78:4c:91:db:b2:09:da:6b:2b:f0:cb:eb:7a:f0:6d:10:98:75:
ca:a8:9f:ca:1d:06:d0:43:16:de:40:0c:cd:f6:90:ca:02:82:
16:7b:6a:32:96:65:4f:2e:c2:1d:7c:d1:85:52:87:4d:d3:c6:
e6:6f:12:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org