Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNyS8V_ZAWEOudU1tsbtrxHZFTQ.roa
File: aNyS8V_ZAWEOudU1tsbtrxHZFTQ.roa (raw, json)
Hash identifier: JF0gmZ6uJ9jX8SGIgPhX2Q3axEBjrK8hj+15bwovFtA=
Subject key identifier: 68:DC:92:F1:5F:D9:01:61:0E:B9:D5:35:B6:C6:ED:AF:11:D9:15:34
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNyS8V_ZAWEOudU1tsbtrxHZFTQ.roa
Signing time: Thu 15 Sep 2022 02:46:09 +0000
ROA not before: Thu 15 Sep 2022 02:46:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=68DC92F15FD901610EB9D535B6C6EDAF11D91534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8f:0c:a6:34:1f:06:63:16:08:55:24:7e:10:
ae:64:84:37:aa:7b:01:9b:4e:75:ec:6d:86:09:c5:
15:6a:7c:7a:87:91:03:68:ae:47:bb:95:6a:2c:53:
02:f8:53:0f:8e:19:8a:52:a7:cb:b3:56:93:a5:87:
46:87:15:45:45:44:d9:2a:2e:4a:0b:3b:60:97:70:
6c:3b:b3:28:c2:67:61:53:17:1d:63:02:93:18:9d:
b8:67:8c:96:1c:8f:a1:de:ff:d1:7f:e2:47:31:56:
76:5b:cf:47:d8:80:07:9a:bc:54:d1:63:d2:46:e5:
82:d2:34:a8:c6:c3:9e:0d:16:cb:a2:45:af:81:66:
28:4a:4f:37:da:6c:80:9e:e5:e4:3c:c1:43:1b:c8:
57:a1:29:60:90:e5:a0:01:61:1c:1e:cd:c3:f5:b4:
33:37:74:61:7a:3c:3b:e9:35:f9:7b:80:22:6c:cc:
b6:1d:27:e1:6c:61:3b:4f:b9:99:d7:a4:8d:69:9e:
bd:ed:08:50:b5:36:37:45:6b:02:e6:6d:a2:86:1e:
29:82:5b:ac:1e:e9:0a:7f:2d:7a:5d:b9:fa:53:ac:
18:e2:65:e2:37:70:8d:f5:3c:59:f3:c8:b1:88:4c:
df:32:84:7b:1d:0c:d4:68:da:94:ad:20:41:57:28:
4b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:DC:92:F1:5F:D9:01:61:0E:B9:D5:35:B6:C6:ED:AF:11:D9:15:34
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNyS8V_ZAWEOudU1tsbtrxHZFTQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.152.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:aa:ee:59:de:12:a2:ae:78:2c:d7:55:7a:11:d9:92:94:95:
03:fb:96:76:0b:af:2f:df:ba:02:65:bc:d5:b3:15:6a:e4:bd:
d0:17:3c:6b:57:34:57:cc:f9:5c:b4:ab:7e:a4:46:c0:a9:71:
6f:1b:c6:79:2f:4a:8b:d4:b2:e5:e1:82:af:8a:00:c0:31:d1:
5d:96:b5:fb:be:23:d1:c9:c0:40:f8:9a:ed:37:b9:7a:be:c3:
ba:75:4d:10:b5:31:92:f4:60:4e:44:49:6b:a4:8e:bd:e8:69:
b4:70:43:17:08:26:c0:f2:dc:eb:4c:a1:d2:16:10:96:ae:71:
a1:93:f7:cc:ac:be:4c:b5:e9:09:50:35:87:4c:b7:fd:08:b6:
5e:0f:17:51:2d:bd:18:48:39:e1:8e:b0:13:e2:5f:44:b9:8f:
b2:bb:76:9c:96:cf:97:07:0f:df:be:8c:ec:56:b7:fd:e6:7d:
ca:36:93:e8:64:c4:f1:eb:78:ba:3c:de:c1:e5:4c:7d:51:e4:
56:48:17:e1:8d:0e:8a:dc:eb:7d:55:a6:84:af:5a:ad:0c:98:
aa:65:7f:15:4d:9e:55:0d:b4:24:27:88:b4:ad:48:f2:83:1d:
9e:51:2a:ec:07:3d:80:dc:51:33:a0:6e:5a:4b:8f:d6:75:02:
0d:65:2f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org