Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hIyukBC1luSKpFYMn51_M0crVsg.roa
File: hIyukBC1luSKpFYMn51_M0crVsg.roa (raw, json)
Hash identifier: mKaA/Dy+30Ue4z8P8RPUZAvP+FEftBAhOQtUvL47alY=
Subject key identifier: 84:8C:AE:90:10:B5:96:E4:8A:A4:56:0C:9F:9D:7F:33:47:2B:56:C8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B38
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hIyukBC1luSKpFYMn51_M0crVsg.roa
Signing time: Wed 29 Sep 2021 02:46:18 +0000
ROA not before: Wed 29 Sep 2021 02:46:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6968 (0x1b38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=848CAE9010B596E48AA4560C9F9D7F33472B56C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b8:e9:14:b3:05:68:76:29:be:df:ad:7b:eb:
a2:21:12:d2:f0:ba:22:6f:ef:d6:ab:f1:65:68:7d:
17:6c:87:8e:6a:3b:97:d1:50:54:5f:97:89:f3:3f:
93:20:ea:39:04:65:db:df:bc:e9:d6:a3:d4:49:4b:
f1:e5:37:29:2f:11:6f:9b:fa:19:7f:f5:fe:d0:b2:
eb:b1:98:fd:24:61:3a:6e:23:0c:95:e3:2c:c9:d2:
d7:3b:93:40:76:43:3b:99:d9:05:e1:6e:31:d5:43:
36:0a:63:02:88:b6:ed:63:be:44:5a:08:23:d4:17:
3c:51:b2:25:8b:b1:1a:cb:c6:f5:ab:17:0a:76:e8:
96:a7:24:4f:ce:12:28:f4:2b:57:f2:56:e5:81:6e:
60:6b:fa:71:91:0d:0a:1b:9c:66:10:42:d7:be:6e:
c9:60:f7:61:50:9c:32:50:54:f5:8b:d1:74:c6:ed:
aa:ad:36:a6:e2:11:1b:c4:5c:f3:e4:77:13:a3:67:
c1:ea:cf:06:1a:10:86:af:45:0d:b7:e5:c1:62:22:
ef:0e:72:59:70:20:84:59:e8:fe:8a:09:65:25:d4:
97:d7:d3:49:be:f7:7e:c4:65:f7:13:2b:9a:6e:93:
48:a5:df:35:73:05:c0:a8:e0:f2:c7:9f:20:3f:4d:
18:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8C:AE:90:10:B5:96:E4:8A:A4:56:0C:9F:9D:7F:33:47:2B:56:C8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hIyukBC1luSKpFYMn51_M0crVsg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.9.0/24
Signature Algorithm: sha256WithRSAEncryption
74:fc:f2:25:f4:14:c4:7f:83:5d:c1:c6:ac:f2:5f:c4:14:1e:
66:69:0c:df:bc:70:06:e4:58:e1:7c:9e:5b:a1:6c:a6:f8:6c:
6d:e2:4d:36:28:1e:86:a0:bf:e6:68:c9:e2:7a:63:97:4f:77:
10:08:7f:5b:01:95:17:11:e2:da:36:e7:fe:0c:b2:f0:68:61:
71:12:db:06:c1:11:af:be:18:20:c2:5a:69:45:55:84:80:1f:
5a:e4:f9:1e:1a:9f:47:90:b5:84:45:93:50:6b:bd:7f:71:6a:
8e:d3:2a:e1:36:e9:db:cb:16:6a:4c:1e:4c:73:51:01:6f:64:
84:63:a3:76:36:1e:4a:dd:e1:d7:39:d2:6a:48:a2:5e:05:ef:
91:64:11:9e:4f:70:50:4c:b0:e4:43:32:b2:84:ac:81:fb:a7:
2b:e2:5b:3f:26:d3:5d:75:b6:91:ca:60:a4:e9:7e:08:6a:1c:
6f:f0:a1:e3:4b:67:35:32:33:ff:b9:f1:50:87:5d:48:00:81:
1a:83:f3:92:40:a8:7f:43:69:38:54:35:56:50:89:60:0a:b7:
15:5b:b7:ad:82:4d:3a:77:93:c6:61:2c:2d:38:ab:3f:2d:b4:
70:0f:06:aa:5c:09:3c:4f:c0:6a:88:7e:ec:7c:c1:ee:71:d0:
5e:32:6e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:25 2023 by rpki-client on console-ams.rpki-client.org