Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bihQabpm6NJDjChPu0MYmvsL_dI.roa
File: bihQabpm6NJDjChPu0MYmvsL_dI.roa (raw, json)
Hash identifier: uO7KIm2jJ78GksXvdgkK9IGY9bjkmVdKDLpQNHOT7Xs=
Subject key identifier: 6E:28:50:69:BA:66:E8:D2:43:8C:28:4F:BB:43:18:9A:FB:0B:FD:D2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1477
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bihQabpm6NJDjChPu0MYmvsL_dI.roa
Signing time: Sun 07 Feb 2021 11:58:45 +0000
ROA not before: Sun 07 Feb 2021 11:58:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5239 (0x1477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:58:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E285069BA66E8D2438C284FBB43189AFB0BFDD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b8:1e:0c:33:ea:2b:45:7a:03:2c:97:9c:c3:
fa:74:2f:f0:b9:53:0d:a4:42:47:c7:13:74:6e:90:
1e:ca:5a:35:f5:a8:17:25:2b:06:0b:e1:71:ad:19:
5a:db:29:2d:91:94:32:b2:6d:63:bb:2e:ae:33:55:
f4:c2:38:1a:f4:a3:42:84:c7:bd:91:b3:79:33:18:
39:8c:89:52:0a:a5:a7:ff:98:54:2c:ae:05:f1:74:
fc:1e:d3:9b:a7:b1:40:ad:d7:81:20:b5:d0:f1:9a:
58:a5:70:83:06:9d:88:2e:2a:8f:2f:ef:08:e4:35:
5f:cf:28:0d:d9:d8:eb:41:04:f9:b1:ec:20:34:4b:
89:d8:1d:06:cb:15:ea:c9:cd:b4:bc:9f:08:a8:f2:
29:d2:53:5c:e5:64:6a:d6:0f:99:c8:41:ac:f1:60:
a7:74:21:e9:85:7f:52:f7:73:cf:f4:de:f6:e2:26:
b5:1c:f6:66:31:99:7e:a5:6d:ec:21:ac:6e:46:9b:
47:44:a6:5d:e0:f2:cd:17:d3:de:ea:63:a7:05:90:
52:b4:25:6d:d7:c6:d3:65:07:83:65:d1:5f:70:ef:
36:78:66:fc:96:21:ed:0d:96:ee:e4:01:24:b3:ea:
a1:f4:77:e7:0f:a3:7f:48:89:33:a6:a2:7e:db:17:
74:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:28:50:69:BA:66:E8:D2:43:8C:28:4F:BB:43:18:9A:FB:0B:FD:D2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bihQabpm6NJDjChPu0MYmvsL_dI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.176.0/20
Signature Algorithm: sha256WithRSAEncryption
11:31:2f:6c:1b:d8:c5:ca:a8:b6:33:e5:a8:4f:70:4d:42:8a:
a0:98:b2:99:a7:16:a7:b7:29:0f:98:20:53:7e:61:5d:b5:90:
64:37:21:0a:73:33:3e:0e:b5:66:6b:ca:79:9e:b0:35:6b:f2:
3f:91:ce:b5:01:05:a0:7f:1b:9a:7b:36:7b:68:88:96:69:52:
0f:76:2a:58:1d:f2:19:61:84:bb:71:2a:05:97:76:37:e7:c7:
25:ef:76:98:d7:f9:6c:91:10:d7:ee:8a:2c:dc:08:06:a1:46:
5f:9c:e9:89:8e:11:3d:a6:77:12:66:2e:39:91:dc:f9:5d:05:
44:71:f3:0e:4d:53:16:d3:db:25:84:82:0c:96:e8:1f:7c:70:
ca:63:3a:c9:d6:3e:fc:7d:7e:d2:fa:00:a4:8f:44:12:14:af:
dc:8c:a9:bf:7a:5c:c4:bd:a0:9a:ba:84:b3:cb:d1:15:b1:d5:
0d:6d:83:6c:ab:eb:39:aa:49:8b:84:56:ab:ac:4d:33:70:23:
f3:ed:0d:97:f7:1c:4c:77:4e:71:17:2a:a5:b4:d5:9e:17:9a:
47:01:f5:b6:20:0a:fd:c0:ee:80:4c:31:62:9d:ce:db:70:a1:
cf:f0:c5:c0:c3:d9:ec:64:1b:f9:90:4b:68:18:f2:10:e1:2f:
7e:a9:51:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:35 2023 by rpki-client on console-fra.rpki-client.org