Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dv5QLEnLyBtPwW8NszhwPhyJFlg.roa
File: dv5QLEnLyBtPwW8NszhwPhyJFlg.roa (raw, json)
Hash identifier: uCBOIaq0u4U/RBzyXb5WWj5t2Dy2sCvE+HnHjdeSfEQ=
Subject key identifier: 76:FE:50:2C:49:CB:C8:1B:4F:C1:6F:0D:B3:38:70:3E:1C:89:16:58
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E73
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dv5QLEnLyBtPwW8NszhwPhyJFlg.roa
Signing time: Tue 03 May 2022 06:30:02 +0000
ROA not before: Tue 03 May 2022 06:30:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7795 (0x1e73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 3 06:30:02 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=76FE502C49CBC81B4FC16F0DB338703E1C891658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:44:b1:85:8c:31:52:de:82:4c:e1:0c:50:9a:
40:6c:5f:02:f1:3c:4a:e6:45:ef:7f:09:d2:e3:9d:
0e:3e:c3:bb:c1:a1:eb:4b:96:9b:64:3a:49:dd:dc:
9c:51:5f:44:4c:9b:d4:66:42:4d:b1:a2:09:ee:a1:
5f:e6:55:f5:d9:e0:54:d5:1d:dc:18:00:22:47:fc:
3f:77:e7:1d:40:08:5f:75:bb:84:8f:4e:30:63:9c:
b4:bd:af:6e:61:3b:7f:73:4e:d9:03:31:aa:d6:ec:
c5:a1:88:d9:4e:52:83:9c:14:51:50:e8:fa:73:41:
37:86:1f:59:ae:2d:f9:81:ca:be:cf:6b:3a:36:65:
7d:c8:72:ad:c9:ed:0b:14:25:5c:a7:90:bb:35:c7:
30:c0:f8:69:6c:8e:01:2e:84:a1:2d:99:0b:f0:b6:
71:2d:7c:da:b9:c3:de:9f:7c:19:6a:6f:af:12:54:
86:48:3f:e6:5d:6c:01:0e:c5:e8:95:f7:22:be:a1:
a4:79:62:82:dd:0d:d7:51:11:2a:27:ac:23:f1:b2:
ed:e2:2e:80:50:ca:59:5c:c9:f9:40:f6:b3:0f:32:
b2:a0:e6:91:9f:da:87:cd:db:3d:89:22:6e:42:3f:
63:d2:a9:e2:b4:28:8f:56:be:23:74:f4:8c:59:7d:
40:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FE:50:2C:49:CB:C8:1B:4F:C1:6F:0D:B3:38:70:3E:1C:89:16:58
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dv5QLEnLyBtPwW8NszhwPhyJFlg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.244.0/22
Signature Algorithm: sha256WithRSAEncryption
01:92:8f:ab:c8:33:65:fd:0d:b2:86:05:a8:b7:f8:e2:01:4f:
4c:9a:3b:6c:8d:69:1b:c9:19:04:c5:20:46:1e:a5:fe:fa:a1:
71:aa:52:66:a2:4e:86:68:99:6b:6c:db:dd:b1:c8:af:11:88:
25:4b:d9:ba:33:f2:fb:98:26:bf:65:51:73:41:ed:96:28:63:
e9:54:df:ea:3b:01:31:cf:9a:83:24:8a:22:60:9b:d7:b4:ca:
24:dd:db:a7:eb:90:8b:d3:92:25:30:b5:80:39:3c:b0:ba:54:
da:7e:e9:91:2a:46:0b:7c:53:c2:ee:d3:d8:6b:55:d1:53:53:
a6:99:9a:2f:4a:1b:8a:c4:21:e4:b0:0e:6e:9a:ae:8e:1e:25:
8a:f8:6c:7a:48:1e:b7:f9:d0:df:22:2b:83:f5:2d:65:12:f4:
fd:9d:8a:4e:0a:02:60:7b:11:63:2a:7e:65:4a:97:4e:1d:73:
a4:13:fc:ce:5d:3d:98:d2:45:e1:57:bc:f8:c3:61:15:d1:c7:
ce:ee:6b:31:2d:02:15:08:87:03:6e:21:ae:6d:ee:59:32:3d:
5c:79:72:76:b6:3d:03:f9:9b:bf:49:1f:11:d8:0b:68:0a:7e:
14:6a:4e:bc:47:2f:a2:54:5d:62:8d:dd:6e:d1:a0:b4:21:00:
d4:71:8b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org