Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dTS4WznXFiaV_R90gK8bMugXJXY.roa
File: dTS4WznXFiaV_R90gK8bMugXJXY.roa (raw, json)
Hash identifier: 0YeyYJ9sEhnGsKj/tuLWA0ZPSij847RS4pqe9jmng3k=
Subject key identifier: 75:34:B8:5B:39:D7:16:26:95:FD:1F:74:80:AF:1B:32:E8:17:25:76
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 157F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dTS4WznXFiaV_R90gK8bMugXJXY.roa
Signing time: Sun 07 Feb 2021 12:04:57 +0000
ROA not before: Sun 07 Feb 2021 12:04:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5503 (0x157f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:04:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7534B85B39D7162695FD1F7480AF1B32E8172576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:14:f5:e5:90:ab:d0:65:6b:ff:12:3a:70:96:
6d:6c:c9:1b:f8:83:f0:9e:7e:12:53:97:e7:14:a1:
40:69:3f:ef:ac:34:0d:b5:37:b3:e9:10:0b:b5:8e:
2d:eb:dc:85:8d:9a:7a:40:0b:60:e6:4f:a2:67:7e:
a3:7b:4a:9c:33:fc:78:aa:b5:f2:25:2d:f7:4d:3e:
02:c7:ad:d5:20:bd:21:8c:b7:79:62:c5:0a:de:50:
54:aa:8a:15:4a:18:46:8c:e0:3d:cb:11:c2:fc:d7:
d7:97:69:f0:99:c1:f7:8a:f0:ef:20:5f:45:06:59:
56:2b:ce:0a:4a:f1:8d:93:ed:f4:08:24:4d:1c:56:
c1:e1:0d:bb:35:bf:3b:5b:7c:5e:4d:7d:41:6d:e2:
88:cb:60:1c:53:cf:ef:b1:c6:7b:68:c9:50:97:e5:
fa:f9:cd:ac:32:8b:78:68:51:47:6c:cb:86:05:d2:
07:9c:45:22:cf:38:d5:79:65:0e:5b:1a:e7:22:62:
61:33:90:bb:e6:f1:8a:09:5d:0d:bc:0c:4d:26:c3:
44:71:40:92:ff:19:e3:0c:2f:e0:a7:9a:0f:4e:db:
9b:c8:fa:47:2f:7d:2a:80:4f:b6:bd:7a:93:7f:50:
46:64:cd:cc:70:7e:03:a2:17:47:d3:4f:8f:28:8b:
18:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:34:B8:5B:39:D7:16:26:95:FD:1F:74:80:AF:1B:32:E8:17:25:76
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dTS4WznXFiaV_R90gK8bMugXJXY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.4.0/22
Signature Algorithm: sha256WithRSAEncryption
82:7c:51:32:be:2e:0c:63:e5:e3:5b:43:11:9f:5d:54:76:f0:
8d:02:56:cf:10:3a:d9:88:b6:60:38:ef:64:38:99:f7:48:44:
7e:4d:4e:82:8e:8f:53:61:d8:ef:68:ed:3f:56:06:84:f7:1c:
38:d7:2c:f9:e6:ab:8a:b0:60:59:74:b5:80:ee:3e:93:18:35:
0b:81:a9:f3:a4:7a:c6:dc:82:07:fc:67:c1:cd:4c:7a:5c:f0:
a7:ac:00:a0:da:bc:c0:f5:fa:78:ac:a7:60:ef:4a:0b:8d:cb:
1b:8e:57:12:d3:58:3d:24:0f:29:ca:76:e0:c8:7d:99:02:dc:
3e:b8:1c:94:7e:a9:c8:29:65:c3:c7:84:e9:45:53:f2:c6:5d:
2f:3e:a1:6d:57:39:f9:e9:97:0d:61:f0:40:0a:93:5a:1b:bc:
82:ac:78:9d:e5:f4:3f:90:f1:ae:1d:d8:06:13:28:c6:5f:3b:
5e:14:80:97:d6:ab:65:fa:f3:85:d0:6d:6f:cc:e2:60:e0:9a:
9d:56:f6:31:75:61:63:00:8d:fc:0a:22:60:dc:91:55:a5:f0:
49:01:7c:22:a1:80:d7:8e:cf:2e:87:15:a4:02:21:80:9d:cc:
a2:fa:cc:f2:43:68:48:2c:10:94:c2:58:7a:f9:33:ad:ec:81:
c0:31:69:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:24 2023 by rpki-client on console-ams.rpki-client.org