Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/crNv0rwle8N5YGPtYJ7-X2KRSms.roa
File: crNv0rwle8N5YGPtYJ7-X2KRSms.roa (raw, json)
Hash identifier: 3+00IVroZSQ0tRJ+0vTGmJz08wGLnMsJWXpDXiXq5C8=
Subject key identifier: 72:B3:6F:D2:BC:25:7B:C3:79:60:63:ED:60:9E:FE:5F:62:91:4A:6B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0ECB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/crNv0rwle8N5YGPtYJ7-X2KRSms.roa
Signing time: Tue 29 Sep 2020 09:56:09 +0000
ROA not before: Tue 29 Sep 2020 09:56:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3787 (0xecb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=72B36FD2BC257BC3796063ED609EFE5F62914A6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:33:f3:5f:f2:db:8b:23:e1:be:bb:d5:22:25:
80:52:40:95:46:eb:60:de:32:af:ed:6e:51:fb:2d:
1c:0f:ad:32:04:cc:ec:12:d5:68:99:e0:c4:4c:f5:
9f:52:58:40:2e:6a:0c:9d:3f:5b:75:44:fe:39:b8:
ab:25:95:ef:f4:83:68:1b:3d:20:dd:21:c0:ee:b5:
86:3a:7d:f3:af:8e:c4:65:9c:01:89:20:93:b3:0e:
23:14:74:38:2b:80:59:f3:6e:9c:cc:5b:5b:e9:d5:
88:a5:6e:d8:4d:01:f4:11:72:61:0b:dc:93:8b:ea:
d8:59:55:dd:74:7b:96:40:e0:61:6c:f9:b7:81:fd:
ea:85:a2:36:23:5c:7e:f3:cb:0e:1f:90:db:23:80:
31:58:8f:27:9e:42:c4:15:70:68:8d:4b:fa:51:3f:
bf:f5:01:49:17:be:23:e6:71:69:0c:81:d4:a4:bf:
45:e4:67:56:44:ea:75:e4:17:03:6d:b5:25:95:b2:
33:e8:aa:0d:87:a6:f3:9e:12:56:3c:a7:4e:6c:f5:
9b:16:b5:2d:5d:e4:17:66:52:c0:de:de:c4:b6:98:
89:8b:66:83:09:06:21:c3:5f:b4:95:0a:ee:9c:b4:
8f:57:a7:29:e9:de:f2:0d:7c:34:e8:a8:85:e5:c2:
b7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B3:6F:D2:BC:25:7B:C3:79:60:63:ED:60:9E:FE:5F:62:91:4A:6B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/crNv0rwle8N5YGPtYJ7-X2KRSms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.200.0/21
Signature Algorithm: sha256WithRSAEncryption
b7:5e:a3:f5:03:2e:e9:f5:5c:a8:b6:2f:d4:fe:9a:04:c9:75:
5d:8a:6a:26:86:1e:82:81:3c:8e:b4:53:10:5c:47:43:cc:bd:
91:93:54:8f:07:83:8f:ef:33:f4:91:a1:dd:69:7b:f4:bb:f8:
b8:d3:94:d7:75:b5:5f:ef:35:b3:7a:47:b9:2f:12:d6:28:f9:
36:82:d0:be:3f:61:72:b3:91:53:67:88:2d:e6:4a:6a:90:7b:
8a:ed:b6:e8:2c:9c:54:d3:23:df:ec:d3:d9:84:7c:55:96:b8:
1d:87:ca:c0:77:e2:c3:19:ef:10:0e:cb:89:20:45:e1:d0:2c:
ec:e3:54:8d:89:20:5d:10:f5:c0:13:65:ed:da:bd:86:42:6c:
49:86:1e:76:a5:f9:d6:76:25:2c:ad:26:96:85:1b:fb:b9:a7:
68:ff:26:e5:63:6d:57:54:3a:f0:f5:e0:64:d5:b1:e0:5f:e4:
fa:9d:c2:e6:9b:70:4d:69:83:31:54:d7:06:f1:e4:1c:18:a4:
6e:ac:65:08:3a:c4:3f:4c:35:58:e0:2b:87:b0:d4:7f:a6:3c:
0c:a7:86:16:32:57:2d:26:ab:7f:e3:c9:c6:33:2d:ed:49:30:
fe:b7:ac:e8:f8:47:6a:43:2e:99:cd:57:2f:19:4b:18:b5:3c:
40:e1:e7:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:36 2023 by rpki-client on console-fra.rpki-client.org