Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bfYkiC0Bz_nUmCKSvFU29ajXluU.roa
File: bfYkiC0Bz_nUmCKSvFU29ajXluU.roa (raw, json)
Hash identifier: w2ND0k141kRfH4Q1n8h6SAEjkBrLhalpc46vU9IXKTg=
Subject key identifier: 6D:F6:24:88:2D:01:CF:F9:D4:98:22:92:BC:55:36:F5:A8:D7:96:E5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1EB1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bfYkiC0Bz_nUmCKSvFU29ajXluU.roa
Signing time: Wed 04 May 2022 07:49:42 +0000
ROA not before: Wed 04 May 2022 07:49:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 123.192.240.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7857 (0x1eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 4 07:49:42 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6DF624882D01CFF9D4982292BC5536F5A8D796E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e1:a3:76:9d:64:19:7f:fa:6d:3e:85:e5:15:
51:31:ae:e9:f1:1d:d2:36:63:7c:dc:5c:4b:77:91:
8d:65:2d:48:f8:8d:cf:9a:45:89:d8:3d:21:4e:88:
ce:87:1e:cb:3d:1f:17:5a:ae:5b:b8:4e:3d:2d:7d:
e8:36:5c:02:e9:7a:6a:66:74:5a:5e:a0:14:19:c2:
54:48:7b:15:21:89:44:ba:b9:9c:3a:2a:ef:af:0f:
35:d3:5f:fd:38:3e:d7:7e:98:66:32:f0:1a:07:b2:
d5:a1:e3:a8:b0:29:cd:59:c2:44:15:17:c8:62:ab:
60:d8:72:c4:04:8e:e5:aa:a8:71:57:20:bf:0d:a9:
fb:8e:e5:ae:4b:de:c1:7f:78:9b:a2:86:f3:44:94:
25:ab:eb:77:ac:51:2e:0c:a8:c7:95:b1:d6:bc:0c:
ca:7a:4d:cf:50:27:a9:95:f1:27:65:80:76:f9:a6:
e4:30:99:6c:c9:7d:b5:4d:1c:d4:2f:db:e7:6a:04:
ff:9c:1d:f9:07:88:86:8e:6f:91:49:4a:4d:20:c3:
7e:c3:96:03:42:d0:27:45:41:84:d7:84:62:a4:36:
83:37:fd:82:a1:ea:aa:6a:c9:15:58:86:dd:8d:8a:
e0:19:f4:ed:72:d5:3e:04:c9:bc:30:69:4c:7f:9f:
95:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F6:24:88:2D:01:CF:F9:D4:98:22:92:BC:55:36:F5:A8:D7:96:E5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bfYkiC0Bz_nUmCKSvFU29ajXluU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.240.0/21
Signature Algorithm: sha256WithRSAEncryption
96:bf:4d:72:0b:7c:02:00:97:77:86:27:05:4c:e5:e3:bd:d7:
fa:41:9e:69:51:29:cd:46:bc:25:78:d1:51:41:20:a9:6a:23:
df:58:c8:7f:24:cf:b5:96:dd:89:67:77:a0:ed:62:68:15:6d:
f6:6c:fe:f1:a2:ab:7c:85:6c:9f:48:91:82:74:e5:08:b1:c4:
9c:30:78:c6:df:42:28:23:f9:fc:b8:b8:7b:94:00:2b:43:f3:
f5:8a:6c:0b:e1:b2:42:4d:1f:6e:98:59:46:3b:df:a5:bd:ec:
47:1c:b5:3b:8d:4b:b9:87:36:b5:51:9b:80:f1:08:6e:b4:d1:
0b:63:b8:84:f5:5e:a3:cd:d1:e2:78:50:4a:22:b8:4c:39:cb:
46:56:9b:93:ac:df:16:1c:b3:85:3d:c2:2f:37:6d:cd:af:59:
92:5c:4d:f0:3a:16:92:06:11:e5:23:98:04:98:46:0c:53:c7:
f4:1e:80:da:60:76:7b:d2:b1:08:0c:01:ac:1e:b5:1f:22:cd:
28:dc:f5:03:03:bf:e1:7d:e0:96:af:d8:c3:56:0d:7f:6e:e8:
61:06:55:d0:15:44:ae:72:c1:3a:3d:90:76:e2:d1:cf:51:06:
eb:c8:8b:96:88:47:40:ee:77:20:e3:64:50:34:b6:f6:91:1d:
23:47:53:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org