Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d2Y1jnHEhfqj6CPO8L9qW5dUO0I.roa
File: d2Y1jnHEhfqj6CPO8L9qW5dUO0I.roa (raw, json)
Hash identifier: xtINOg9Ot7HFxCrCP0wGwGfbbfJd3UU2Sx7Hr/oZX5I=
Subject key identifier: 77:66:35:8E:71:C4:85:FA:A3:E8:23:CE:F0:BF:6A:5B:97:54:3B:42
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2055
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d2Y1jnHEhfqj6CPO8L9qW5dUO0I.roa
Signing time: Fri 25 Nov 2022 04:38:35 +0000
ROA not before: Fri 25 Nov 2022 04:38:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8277 (0x2055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7766358E71C485FAA3E823CEF0BF6A5B97543B42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:11:6b:58:1f:4a:f9:58:fd:80:87:c5:90:c7:
ea:7a:c1:29:64:a8:bd:7e:38:87:4c:0e:8f:09:ad:
98:05:4a:ee:22:9b:27:2c:b8:f0:73:71:1c:9c:0d:
b6:53:1f:46:31:b7:33:90:73:7e:5a:16:16:5a:bb:
bb:69:5f:0a:32:a1:80:bb:32:e1:28:55:3e:85:6f:
3f:27:e8:7d:ae:a4:1c:3a:33:62:ab:22:e2:02:c7:
17:ab:cf:87:e9:c7:12:4b:73:a6:11:4c:30:3c:77:
f3:eb:f4:25:71:ff:03:2a:31:44:ff:88:c7:85:cf:
a0:ba:8e:23:21:2a:b4:8d:f5:ed:0f:27:32:ad:9d:
9f:60:3f:b9:11:12:83:54:f1:e1:e3:83:51:e6:11:
3b:3c:c2:51:bc:f0:32:2c:ba:02:68:2a:71:55:34:
6e:0b:e7:2b:b5:52:f8:41:87:af:f4:77:50:03:27:
9b:b4:a3:79:36:0a:d9:bf:6e:50:44:cc:dd:79:f2:
11:fb:ca:b6:a5:c2:df:62:da:8e:bf:bf:4f:45:63:
77:9a:71:92:70:7d:0a:43:d7:2d:eb:42:98:f3:da:
b6:ba:29:91:1d:0a:2d:62:a4:e1:29:f2:bb:c9:f8:
b6:ea:82:3c:1c:d7:0a:1a:89:8e:c3:c2:c8:c4:9a:
d8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:66:35:8E:71:C4:85:FA:A3:E8:23:CE:F0:BF:6A:5B:97:54:3B:42
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d2Y1jnHEhfqj6CPO8L9qW5dUO0I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.168.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:ea:72:01:8d:d0:da:4d:f0:a4:1e:dc:a9:09:89:9e:fc:d4:
0a:24:0b:74:68:c2:b4:b4:d7:57:28:67:0e:93:d7:97:44:fe:
de:20:eb:23:b0:14:1f:c1:26:64:62:61:e3:94:bd:3d:6c:32:
41:d9:8e:ae:84:d4:6b:c8:13:53:9f:ef:71:8f:25:ef:f4:b9:
10:58:c1:f6:c0:98:4d:55:10:76:af:ad:4b:6f:0a:ae:6e:00:
b0:77:3d:96:d3:dc:0f:f5:7c:83:98:52:22:47:89:0a:01:fc:
ee:10:2c:b7:dd:31:a0:58:7b:6f:88:4b:4f:18:50:d8:dc:34:
7f:ab:5a:29:8d:69:78:52:cc:22:c0:c5:cf:ce:7b:ea:b0:12:
ab:cb:16:3a:87:b8:28:30:9f:f2:3b:54:30:1e:d2:70:26:ea:
99:84:b4:89:56:2a:21:ab:91:86:c3:0f:0c:89:b3:ed:d3:e7:
d6:b3:b4:73:51:56:da:0c:a0:3e:ab:cf:41:02:98:e0:80:6a:
8f:66:83:74:d6:a3:b9:f3:2c:69:2a:98:5d:95:1e:1d:47:62:
73:8d:c5:95:c2:01:0a:2a:d3:c5:8f:d4:9b:65:1b:50:37:73:
f6:e8:34:9f:d0:a2:42:b0:e7:c6:c0:4a:88:4a:e9:f4:5b:d5:
97:5b:9f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:36 2024 by rpki-client on console-ams.rpki-client.org