Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gHN8Dw94XKU1S1yaFMdodRfrl9k.roa
File: gHN8Dw94XKU1S1yaFMdodRfrl9k.roa (raw, json)
Hash identifier: nvgbkOK8Ryex1DNk6gUFFSXtylSPq0f2mWwAYg4dQxI=
Subject key identifier: 80:73:7C:0F:0F:78:5C:A5:35:4B:5C:9A:14:C7:68:75:17:EB:97:D9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 14D3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gHN8Dw94XKU1S1yaFMdodRfrl9k.roa
Signing time: Sun 07 Feb 2021 12:00:13 +0000
ROA not before: Sun 07 Feb 2021 12:00:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5331 (0x14d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:00:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=80737C0F0F785CA5354B5C9A14C7687517EB97D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:04:b8:af:50:55:57:07:ce:51:09:30:41:9c:
b3:78:94:aa:c1:4e:03:2c:6c:5f:79:c3:f2:a1:94:
92:3c:64:43:8f:24:fb:54:5d:0e:ef:13:b9:3a:d6:
64:51:3f:a6:47:fd:33:e8:cb:cd:49:50:f6:e0:09:
c8:b9:8d:dd:22:1e:de:fb:59:74:6a:d8:93:0a:5e:
0e:18:5c:ee:45:ff:10:4e:db:0d:01:fc:f9:51:e4:
65:82:a9:20:fa:23:0f:d5:30:33:63:ad:5d:5b:ec:
29:5d:5b:cb:3c:fb:e4:c9:c0:dc:76:c4:4a:01:e3:
f1:8a:b6:68:41:61:3c:8b:20:12:89:a5:3b:b3:e5:
85:3e:fe:58:56:8e:18:a0:d2:2e:d9:a4:58:91:d1:
81:b8:eb:a2:e1:c4:c5:18:5a:07:1d:72:7c:df:3a:
b0:84:fa:d5:08:9d:36:bc:4d:2f:fd:8d:8d:25:24:
2d:e1:4f:3e:95:43:dc:fc:f9:9c:33:fc:65:60:3d:
c7:6d:71:a7:94:2b:8a:c3:60:7d:e3:98:31:a9:fc:
88:26:f2:77:f9:8d:58:7d:2c:dc:89:25:ce:83:20:
d4:fc:41:1e:b5:fd:ca:ca:81:0b:d3:af:b0:5d:b4:
a0:73:27:6f:87:d0:32:d9:bb:a7:02:0c:e9:74:6b:
97:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:73:7C:0F:0F:78:5C:A5:35:4B:5C:9A:14:C7:68:75:17:EB:97:D9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gHN8Dw94XKU1S1yaFMdodRfrl9k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.168.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:3e:d6:e3:e7:d4:a1:38:7d:a1:d1:73:07:90:62:ad:df:e2:
49:ba:7f:80:d5:b4:a2:a8:15:e7:1d:a6:c8:20:52:00:6a:ac:
42:d2:7e:5a:99:f0:46:ad:76:3a:c7:1d:5d:e2:17:cb:3a:73:
9b:f7:91:06:88:f2:c6:90:a1:b7:82:11:9a:5e:f7:31:78:77:
8d:2f:b8:cf:9b:35:0a:1d:4c:c4:37:ac:b3:71:1f:2b:ae:31:
fd:3e:1a:21:3a:cc:25:f5:22:3c:0b:a7:6f:3c:e9:ce:cc:4d:
3e:c0:8e:61:ec:66:cb:26:e7:bd:e0:6a:12:af:7a:0d:6c:f1:
ab:04:aa:4b:c5:fe:3b:be:60:17:f1:8c:ac:7f:9d:68:33:44:
7a:f5:96:e8:e2:07:25:4c:f2:33:d9:ad:1a:a2:ff:4a:b2:e1:
f3:1a:a6:20:a1:6b:ae:47:e2:23:5a:8a:b4:5c:3f:df:33:1f:
c7:ef:bc:7f:42:e9:0d:40:96:79:b8:cd:c7:5c:5f:0c:50:47:
4d:58:4b:dd:4d:2c:8d:7a:4a:74:02:ef:44:09:e9:46:b4:68:
fa:2a:de:6e:c5:55:9c:b4:ea:10:8a:6c:32:df:51:09:2f:7a:
03:c9:f2:1e:f1:56:c9:6e:a5:49:28:bc:6f:69:31:c0:9b:1a:
fb:22:35:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:37 2024 by rpki-client on console-ams.rpki-client.org