Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f7nbUrxp6vNXr41v7efQcunvWuQ.roa
File: f7nbUrxp6vNXr41v7efQcunvWuQ.roa (raw, json)
Hash identifier: i4awz8WgcyZ2IEwdYmt0AIXeVa19mCy49h+NjZYBZNY=
Subject key identifier: 7F:B9:DB:52:BC:69:EA:F3:57:AF:8D:6F:ED:E7:D0:72:E9:EF:5A:E4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 14B9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f7nbUrxp6vNXr41v7efQcunvWuQ.roa
Signing time: Sun 07 Feb 2021 11:59:48 +0000
ROA not before: Sun 07 Feb 2021 11:59:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5305 (0x14b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:59:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7FB9DB52BC69EAF357AF8D6FEDE7D072E9EF5AE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:65:c6:25:e6:d1:57:b8:bf:1d:25:ca:1a:42:
56:5a:b1:9e:69:be:05:e7:f5:ec:5d:bd:d9:3a:68:
7d:36:90:4a:dd:ba:74:7d:d1:8a:6d:5d:5f:b0:a3:
8c:e8:aa:fc:88:88:6b:81:84:99:2d:e5:6f:51:e3:
05:6a:fb:df:f2:b3:0d:d6:cf:66:be:a4:d0:61:70:
6d:40:9d:d7:f0:a3:1a:dc:0a:80:96:9b:67:bf:99:
1c:67:cd:de:7a:52:f8:07:34:59:54:4f:37:35:b3:
80:02:b0:9a:77:44:52:6a:5d:0b:54:29:9a:f1:8a:
01:98:0f:ca:f6:99:e1:f3:60:7a:c2:95:b6:b8:ca:
72:79:03:27:f8:e3:96:bb:9d:70:15:43:6b:6a:c7:
b8:15:63:58:87:b3:ae:02:ad:dc:c9:59:d5:2c:90:
77:50:94:f6:73:24:9b:41:6b:c9:69:30:c9:27:a3:
04:02:24:28:0e:22:40:30:01:df:45:9d:59:9f:91:
09:32:e5:9c:75:8a:68:0a:6e:93:f8:eb:36:12:2e:
8c:50:c9:47:61:a0:bd:ba:62:82:9f:73:79:62:e9:
bc:dc:5f:37:37:a3:68:4b:3d:ee:9a:fe:55:3c:9b:
6f:29:f2:2a:04:3a:25:2e:1f:9f:e3:54:74:aa:88:
c7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B9:DB:52:BC:69:EA:F3:57:AF:8D:6F:ED:E7:D0:72:E9:EF:5A:E4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/f7nbUrxp6vNXr41v7efQcunvWuQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.208.0/21
Signature Algorithm: sha256WithRSAEncryption
33:06:a5:f8:3f:98:4f:18:75:67:cc:04:d8:6f:b2:62:d4:0d:
44:b0:95:df:23:fb:33:3c:72:f5:b6:d4:9b:fc:20:dc:48:cd:
2c:97:6b:01:25:98:fa:97:39:47:53:04:1a:92:d3:27:c6:14:
c0:32:55:77:82:62:75:01:57:5f:38:99:62:b7:61:90:4b:fa:
e6:88:35:ad:31:74:d4:38:7a:ea:5d:6d:23:09:c0:60:d3:86:
e7:81:3c:28:f6:c6:44:9b:72:2b:58:a4:c1:7e:8b:98:df:4d:
13:99:c0:25:d2:0d:f3:fc:ca:9e:ae:69:83:ac:d0:3f:04:57:
fe:67:77:0a:7a:7e:f8:11:b8:80:5d:33:49:87:9d:7a:c2:d9:
49:05:a1:28:2e:a7:78:57:fa:8f:50:83:52:57:ff:5b:be:e2:
1e:6a:fc:6f:16:58:f6:a9:c2:e6:ec:9c:e8:4e:b3:9e:70:82:
e1:ea:bc:90:66:5d:e1:a5:a0:2a:6c:1e:a9:8d:6c:ea:e8:2f:
d4:fe:a1:97:ee:f4:30:36:ba:9f:e9:30:80:d5:89:ab:b7:f9:
f8:16:23:e3:a0:3b:01:1c:c9:c0:32:70:37:80:3a:e5:a4:79:
f8:fd:5c:4e:19:6c:d6:80:54:2e:6a:34:58:f6:de:d2:e6:c5:
e4:81:72:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:37 2023 by rpki-client on console-fra.rpki-client.org