Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dq-_G8MTUVHoyRb0mxG9y9l-rSc.roa
File: dq-_G8MTUVHoyRb0mxG9y9l-rSc.roa (raw, json)
Hash identifier: 7iWDo7cuaD58fraAcWPaD07dy5zGCbVLKJH6p8uHFFQ=
Subject key identifier: 76:AF:BF:1B:C3:13:51:51:E8:C9:16:F4:9B:11:BD:CB:D9:7E:AD:27
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AD1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dq-_G8MTUVHoyRb0mxG9y9l-rSc.roa
Signing time: Wed 29 Sep 2021 02:45:47 +0000
ROA not before: Wed 29 Sep 2021 02:45:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.223.0/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6865 (0x1ad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=76AFBF1BC3135151E8C916F49B11BDCBD97EAD27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d9:11:fb:00:fd:2d:83:85:30:4e:a2:16:59:
6c:7d:aa:c0:0d:90:fb:2b:42:95:f3:81:58:c5:b4:
5c:1d:24:55:27:c5:f1:75:bc:e4:e4:b0:6e:71:bc:
46:05:52:89:36:6e:de:0d:e4:ed:36:b1:5e:58:71:
df:d0:fd:20:69:8d:22:1b:ee:62:60:ef:e4:1c:e0:
51:20:be:19:ea:e5:8c:71:a7:c5:54:6f:98:3a:91:
1d:ab:75:3f:05:3b:3e:96:30:95:66:17:df:1d:9c:
cb:8d:07:43:45:77:3c:98:44:68:58:f8:38:12:83:
8a:34:80:f1:39:35:7f:6d:11:08:90:28:e8:bb:4c:
1b:e1:49:30:dc:3c:69:dc:d8:15:af:aa:56:d0:87:
f6:86:71:9d:dd:76:50:10:c5:c3:7d:0d:ec:27:f9:
a4:46:a1:4e:25:a8:6d:c7:e0:f8:06:38:23:cd:0d:
f4:80:82:ba:f4:69:aa:c3:24:be:72:33:3b:3e:cb:
8a:1b:a3:d6:bb:d8:8d:c9:36:12:8c:bc:41:91:9c:
26:ad:7d:c5:35:46:be:b8:11:9b:71:b0:45:61:06:
56:18:29:1e:04:a8:6d:5d:b0:fc:11:22:c3:11:f0:
5c:bb:67:68:20:07:fc:9e:2c:33:d5:bf:7a:9c:b8:
98:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AF:BF:1B:C3:13:51:51:E8:C9:16:F4:9B:11:BD:CB:D9:7E:AD:27
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dq-_G8MTUVHoyRb0mxG9y9l-rSc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.223.0/26
Signature Algorithm: sha256WithRSAEncryption
8e:90:86:d3:2b:14:0b:38:83:e0:fa:8a:44:ae:28:61:8d:eb:
e0:70:b3:39:9f:c1:04:5f:a0:d8:2d:03:62:05:cf:0f:02:fa:
cb:a3:ff:b7:03:cf:81:27:44:22:a9:ab:6c:3b:e2:40:2b:31:
e3:3b:49:b8:cd:36:08:8a:b3:b7:4c:89:05:e5:65:56:54:85:
d1:b3:59:d6:4c:89:83:75:6c:54:ae:e8:e4:36:0e:5d:d9:c1:
04:e4:1c:eb:50:10:c1:80:8e:59:51:bd:da:02:c5:6d:d2:f0:
c6:10:d9:75:d7:81:88:e8:2f:e2:9e:81:ef:e5:3d:f3:29:8d:
81:a2:e5:04:e0:92:93:99:84:d0:5f:e7:c9:0e:f8:e9:07:10:
ee:23:81:d5:ac:8a:bd:0c:52:4b:6e:87:f5:6e:ec:88:69:2d:
f8:c6:9e:65:6f:4a:56:e5:10:82:48:f9:1a:89:36:e3:ae:c4:
f7:a9:29:d4:34:e1:77:e4:1b:c1:f3:ae:d0:84:f0:c9:7d:32:
8d:8c:4f:ae:a7:b2:c9:d1:4e:e8:e4:63:fa:ea:eb:67:2a:37:
b6:cf:75:c4:66:ff:10:d9:d4:79:45:6e:bb:f4:95:20:a4:2e:
c9:12:2e:01:e5:d1:77:fa:44:af:50:ee:3d:d5:83:fb:87:73:
a9:cf:f9:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org