Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hPvxGPwXaiti7-LlDBUg6_QwAhY.roa
File: hPvxGPwXaiti7-LlDBUg6_QwAhY.roa (raw, json)
Hash identifier: bIx2+9G9qGWjuc89tNIzKWXIlB3cKFxf6OGlNSGZSRM=
Subject key identifier: 84:FB:F1:18:FC:17:6A:2B:62:EF:E2:E5:0C:15:20:EB:F4:30:02:16
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F36
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hPvxGPwXaiti7-LlDBUg6_QwAhY.roa
Signing time: Tue 26 Jul 2022 03:49:58 +0000
ROA not before: Tue 26 Jul 2022 03:49:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7990 (0x1f36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jul 26 03:49:58 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=84FBF118FC176A2B62EFE2E50C1520EBF4300216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:46:05:1d:a3:e5:99:3b:b8:6d:1b:e4:02:d4:
b3:b5:f3:e6:ce:9f:d7:1a:21:df:1c:ec:94:b8:69:
64:7a:be:b7:ae:97:f7:7e:af:78:47:50:9d:00:e5:
70:da:66:2f:09:8c:92:d5:b8:5f:aa:52:f3:b1:1f:
2e:38:6c:02:eb:3c:e1:b6:2c:f9:ca:a0:ed:bd:e8:
db:98:06:cc:b7:04:64:c6:f0:55:ee:e8:b5:1a:7b:
6e:02:43:8b:96:08:cd:d3:65:1e:b8:2a:e1:20:f1:
4b:87:4e:6f:3d:c6:76:06:0e:b7:47:fa:28:03:fe:
59:b6:7a:2e:1e:2c:a4:d5:5a:cd:e6:db:fd:89:f4:
5e:37:2c:7a:44:2c:83:3b:d2:c9:c7:de:04:26:d8:
e1:bb:b6:ec:ed:dc:4d:ec:33:aa:82:cc:dc:28:01:
c1:5b:1b:3e:51:48:d1:63:7a:d3:d4:95:82:ac:6e:
16:f6:36:71:93:4c:19:6a:43:4b:b5:3c:35:c7:f2:
60:86:69:ea:6a:d2:26:7b:b7:58:53:63:df:45:75:
ca:d0:67:db:50:96:fd:8a:1a:16:ae:e1:f8:55:e8:
6c:7f:1b:ba:c9:80:74:11:4e:89:49:76:d4:3b:da:
76:cb:d9:19:9c:4a:78:c2:95:13:b9:72:c8:ca:95:
69:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FB:F1:18:FC:17:6A:2B:62:EF:E2:E5:0C:15:20:EB:F4:30:02:16
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hPvxGPwXaiti7-LlDBUg6_QwAhY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:f9:bc:1d:14:e7:d1:14:e5:f4:d0:1d:7f:51:ae:ab:19:f9:
96:8e:18:3c:7e:52:7f:20:f9:3a:fb:c2:c5:77:be:7b:f8:ef:
5e:e0:96:40:ce:3b:fe:e2:6f:91:87:4c:70:f9:57:97:67:e6:
1b:49:f5:bf:19:4d:58:4c:e9:e3:94:77:96:50:64:e7:5c:be:
ed:1e:d7:75:93:7b:dc:7b:99:09:99:45:25:22:1c:7d:b5:8d:
60:70:91:2d:a8:c4:5a:57:d8:df:51:ba:06:0e:49:79:23:9d:
ef:e7:e5:8d:26:09:d3:c0:6a:70:7a:e9:54:6a:7d:75:0c:b7:
bd:e8:ca:f1:67:93:21:63:85:f3:a1:69:e7:3b:4f:c7:c6:1a:
94:f6:47:6d:c9:d2:4f:06:b7:eb:10:9f:79:56:a5:ef:0e:93:
94:d5:1d:64:2b:41:56:1f:9c:ea:69:4c:00:c0:6d:66:42:ab:
af:0c:b4:c4:27:65:20:89:3e:08:f8:b1:6e:33:fe:31:fc:c1:
df:e7:a2:d0:68:68:42:af:1e:75:40:33:c6:f6:3e:f4:12:46:
0d:0e:f1:a8:4f:27:a0:b5:64:3d:2f:85:ba:9e:cc:87:58:c3:
ee:6e:21:2e:05:e2:2a:26:7d:e8:bd:b5:e9:d5:2e:e1:25:70:
39:c7:3c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:25 2023 by rpki-client on console-ams.rpki-client.org