Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bgIlcQFKRRebHhmtjdVtL4YvCTI.roa
File: bgIlcQFKRRebHhmtjdVtL4YvCTI.roa (raw, json)
Hash identifier: 9ibWmbj/127m8+KZhu/W5/QfPm13BjpE03/BJLmbZUc=
Subject key identifier: 6E:02:25:71:01:4A:45:17:9B:1E:19:AD:8D:D5:6D:2F:86:2F:09:32
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21A4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bgIlcQFKRRebHhmtjdVtL4YvCTI.roa
Signing time: Fri 25 Nov 2022 04:40:09 +0000
ROA not before: Fri 25 Nov 2022 04:40:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8612 (0x21a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6E022571014A45179B1E19AD8DD56D2F862F0932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:61:a3:c9:b3:df:a8:9a:97:47:7d:50:27:ab:
d7:d8:97:db:62:59:d0:35:f0:fd:4a:a2:36:1a:c2:
e5:4e:fb:e1:37:c7:72:71:c5:80:ac:03:0f:a6:37:
ff:c8:b1:e1:00:ad:3c:0a:91:ff:bc:02:03:c9:7a:
ba:c8:7b:a0:7b:a9:62:fe:90:9a:47:fd:82:94:01:
cf:90:e5:fe:8a:79:ac:1c:c1:b0:0f:88:08:dd:2f:
3a:f0:2c:aa:47:4c:44:d4:3c:da:ca:97:84:93:3e:
51:a3:55:19:95:10:fd:3f:7f:f5:71:0f:eb:76:da:
ea:99:33:d9:73:ea:79:9a:87:67:49:09:e7:88:ac:
f1:99:eb:35:e7:ab:bc:89:59:12:99:36:8f:40:48:
51:af:dd:bc:31:d4:da:02:5f:da:8d:d0:46:88:d2:
23:96:a6:a4:be:fb:ea:76:2f:30:d8:8d:c4:74:2c:
79:ef:5f:ed:83:3c:13:03:d4:00:31:8f:0f:2f:39:
04:84:81:fe:88:73:c3:b2:a5:f8:e7:4a:d8:90:d0:
7b:97:e1:ee:52:64:2d:03:c9:59:f3:0b:7a:bd:0d:
90:43:6f:fa:7d:65:d7:6c:65:cc:60:c2:67:e5:b5:
4e:f7:f6:90:98:ff:d7:e2:3d:ca:72:a3:7a:31:59:
2b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:02:25:71:01:4A:45:17:9B:1E:19:AD:8D:D5:6D:2F:86:2F:09:32
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bgIlcQFKRRebHhmtjdVtL4YvCTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.32.0/21
Signature Algorithm: sha256WithRSAEncryption
43:9d:52:35:92:65:ec:6d:82:6c:5f:8b:65:86:c9:99:73:d4:
ac:04:e7:c9:73:f0:27:b9:42:6d:3e:c8:06:bb:00:8d:2b:de:
fe:c6:14:76:79:cc:66:45:65:03:ea:dc:41:90:8b:05:c1:5b:
f6:fa:f6:d2:5b:d7:d4:81:a8:08:f4:bd:1d:8f:6b:a4:ea:e6:
c5:7e:95:ed:4c:67:b8:3f:db:e8:6c:b7:6b:8d:74:64:ba:aa:
ae:c6:4f:ff:39:78:ad:d4:58:7c:e4:9c:95:11:d2:56:b4:25:
04:70:c7:6b:75:1d:53:ac:76:5f:5c:9c:da:02:74:dd:61:e2:
df:6d:43:8c:15:1d:6f:3c:3e:a5:f0:bb:75:b3:1d:73:5a:15:
28:5a:66:de:ab:45:7b:d0:1b:fc:78:21:58:de:ae:1a:d1:ce:
98:fe:fb:00:cb:cf:d2:4e:81:e7:61:98:b6:7d:50:e7:b8:41:
0a:dc:7b:83:8c:63:2d:a8:64:5d:f4:d9:05:51:a4:bb:a6:16:
95:b6:d2:6c:e7:58:90:6b:3e:c6:1a:c2:9c:08:bb:df:7d:e1:
93:69:b2:4d:3c:5a:07:bd:08:fe:b3:f6:22:9b:ca:2c:f9:3a:
d3:c5:c1:9d:13:e0:67:6f:4c:6e:c2:bc:07:71:e2:bd:09:7b:
ec:23:b4:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org