Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aOGpeW3Ytka5T3xOuBmJ3SO31Gs.roa
File: aOGpeW3Ytka5T3xOuBmJ3SO31Gs.roa (raw, json)
Hash identifier: JKaVHAi9jAlINu1R1dfk9Oi7aY6VBRIoY+fgimhJpZM=
Subject key identifier: 68:E1:A9:79:6D:D8:B6:46:B9:4F:7C:4E:B8:19:89:DD:23:B7:D4:6B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DCD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aOGpeW3Ytka5T3xOuBmJ3SO31Gs.roa
Signing time: Tue 29 Sep 2020 09:55:00 +0000
ROA not before: Tue 29 Sep 2020 09:55:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3533 (0xdcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=68E1A9796DD8B646B94F7C4EB81989DD23B7D46B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d5:8b:a8:e3:9a:fd:bd:67:c4:56:ba:66:1d:
26:9a:ca:1d:d3:68:72:1e:b0:20:e8:43:cf:61:5a:
ba:ac:ea:f7:15:e1:f5:63:87:13:67:a7:65:52:7a:
49:8b:7b:3c:be:22:b4:7f:62:42:fd:8e:49:f2:35:
b6:a2:63:75:69:c4:e0:fd:0d:a1:b4:df:58:c4:c7:
09:21:52:4b:07:c2:fc:53:bd:1f:65:b8:55:4a:37:
fc:f5:8d:08:c5:d5:13:16:c1:19:c4:66:03:4b:f9:
7f:5e:f7:c5:99:bd:a1:68:7a:6c:5d:7c:1f:26:e2:
03:0e:e2:78:07:5b:80:c4:28:40:00:df:8c:b0:da:
1e:b2:ae:03:bf:9d:4e:9a:ec:02:03:aa:5e:11:59:
ff:b7:90:e2:ba:6d:27:fc:24:61:18:b2:4f:42:46:
b0:d4:4e:49:f3:ec:ba:f7:ce:f2:c5:30:2d:6a:2c:
c8:7b:55:46:06:07:18:0b:cd:07:b6:5f:54:f9:01:
96:55:00:cd:4a:96:26:ce:91:6d:0f:02:b3:3e:b2:
59:b7:dd:1f:0b:a3:35:c9:52:1a:74:89:19:24:08:
01:14:ea:85:25:a0:16:a9:03:a7:b8:a7:bf:0b:29:
de:76:02:25:13:16:e7:24:24:c5:b9:a0:53:8d:b9:
30:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E1:A9:79:6D:D8:B6:46:B9:4F:7C:4E:B8:19:89:DD:23:B7:D4:6B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aOGpeW3Ytka5T3xOuBmJ3SO31Gs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.164.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:d2:cb:8f:db:9d:03:74:6d:d2:09:dc:f2:f6:d4:a6:6d:a5:
e2:d2:59:ab:a0:78:94:5c:90:85:b8:a4:c8:f1:e6:c7:75:be:
0c:51:78:d8:c2:8c:7e:fb:b1:d8:b2:69:12:10:2f:a7:8c:93:
2f:e8:2f:2c:93:73:9a:76:fa:26:22:2d:02:25:74:c7:91:c1:
f7:c2:39:ac:d4:11:3c:c4:74:89:f8:a6:27:6a:4d:b8:19:f8:
2b:b5:7a:8b:69:43:bc:36:9a:47:91:44:53:a6:b6:0a:8c:3f:
1d:bc:9e:6b:d3:24:d2:ce:09:07:f3:de:b5:6a:c2:81:63:45:
af:15:b5:70:b8:9e:95:0d:d5:db:18:31:82:b6:19:74:6a:4c:
35:93:db:ec:e9:0c:d3:ee:c5:b0:1a:bc:4b:99:f3:22:7c:ae:
d5:f8:c5:f0:af:a7:41:b9:d0:fd:75:c1:db:93:c9:90:54:d3:
69:43:8d:9f:9e:71:ed:24:70:f7:48:fe:d2:6b:91:0b:78:c8:
80:2f:aa:e5:2c:e0:30:a9:04:01:d5:d6:1b:b5:5a:29:92:b1:
5c:49:10:27:0a:f0:db:c0:e0:a4:91:14:70:a2:2e:33:32:9b:
95:c3:d0:d5:53:58:a5:c4:4e:f4:9e:d2:22:e2:48:b0:15:e8:
85:b6:f1:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org