Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cD2snpICl-GYg33LxrBgL3-uwAk.roa
File: cD2snpICl-GYg33LxrBgL3-uwAk.roa (raw, json)
Hash identifier: L+vZLPFuNcsTcw5U7Ahm0CT5AMntSSnbpzq/FFoAE7A=
Subject key identifier: 70:3D:AC:9E:92:02:97:E1:98:83:7D:CB:C6:B0:60:2F:7F:AE:C0:09
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cD2snpICl-GYg33LxrBgL3-uwAk.roa
Signing time: Thu 15 Sep 2022 02:53:02 +0000
ROA not before: Thu 15 Sep 2022 02:53:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=703DAC9E920297E198837DCBC6B0602F7FAEC009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:32:3b:4e:a0:c3:cf:e5:dc:28:e7:08:62:ab:
a0:c6:9e:92:9b:2f:b9:2a:e0:96:39:f8:97:31:fa:
d0:7b:6a:94:e4:52:a0:94:44:92:ae:93:44:87:0a:
66:aa:df:b8:70:11:0f:d2:9c:6b:2e:58:e9:f1:75:
00:32:c6:2d:40:e5:49:df:9c:80:bc:49:35:11:0d:
af:0e:5a:5e:e3:02:b9:7e:92:09:9d:84:3b:1c:01:
02:ea:4d:f0:a0:8c:4a:d2:5e:6d:63:3a:e2:5d:17:
b8:2e:c9:e2:a0:9a:90:7e:fa:27:12:73:6b:a4:9b:
42:5e:ae:32:2f:04:37:32:ea:b5:96:fa:42:b1:51:
59:4f:fd:91:2a:3f:63:f0:31:31:b1:8a:1d:2e:5b:
f6:e9:f3:2b:64:03:91:61:77:ad:a6:d5:4f:2f:76:
6c:67:9b:0c:11:8e:04:03:1e:39:d0:c2:6d:76:22:
44:fd:39:5e:6d:18:62:31:00:a9:2f:97:e8:56:a7:
32:70:27:79:22:d6:75:33:70:9e:42:87:55:7a:3e:
3f:fa:8f:95:ec:ca:a0:dc:cb:e8:8a:9d:93:46:88:
5f:6e:f4:09:6e:dd:ae:eb:ca:fb:12:85:fa:bd:b0:
d3:aa:8b:49:ea:41:a3:41:b6:1b:f3:d1:a8:3b:27:
c8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:3D:AC:9E:92:02:97:E1:98:83:7D:CB:C6:B0:60:2F:7F:AE:C0:09
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cD2snpICl-GYg33LxrBgL3-uwAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.180.0/22
Signature Algorithm: sha256WithRSAEncryption
37:c7:45:6d:fd:de:34:2d:f7:fe:1f:2c:6d:5f:92:1b:ed:74:
88:7e:8a:d5:d6:56:cc:f5:85:41:9c:c1:dc:c6:19:6c:2e:8c:
1c:28:6c:2d:b7:93:02:2f:22:2f:bb:26:ff:1c:47:53:ad:b3:
be:9f:68:19:f5:69:34:a0:fb:b9:81:42:6a:96:07:7a:c8:e0:
3d:a3:6d:68:f5:23:6e:87:30:79:7c:83:44:d1:2e:ef:1e:22:
c3:6a:bc:02:04:16:50:bf:4e:89:b3:6b:f2:6c:3b:e6:bb:25:
da:ac:74:ee:e8:fe:78:91:20:51:81:8a:9a:e1:e7:cf:42:ff:
6c:81:b5:04:52:4e:5a:0d:3f:05:7c:de:4b:0a:dc:47:f7:68:
c0:d1:32:d9:e1:98:08:f4:fe:07:90:ae:d5:ed:eb:3e:c5:c1:
93:c7:40:8b:ac:03:3a:0e:bc:17:71:7a:9f:84:24:03:12:87:
fd:46:88:21:e6:dd:43:96:30:68:e0:50:5e:a4:ec:b6:e2:48:
48:58:0f:9d:43:4c:69:95:e9:bb:5c:8d:d1:b7:4d:17:ae:2b:
97:76:9c:36:63:2a:e2:b3:96:a3:4a:06:45:97:46:bc:e4:f0:
58:ee:c7:0b:b4:aa:0a:6f:0b:c2:82:b0:4f:48:7d:97:cb:60:
ce:31:fa:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org