Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLjgW5ymVe6jrZwc0IOdPVKTUAU.roa
File: iLjgW5ymVe6jrZwc0IOdPVKTUAU.roa (raw, json)
Hash identifier: FQ07P06FvY2mga0JNDsBGj3PontIIAO/BH4iO4aK8zI=
Subject key identifier: 88:B8:E0:5B:9C:A6:55:EE:A3:AD:9C:1C:D0:83:9D:3D:52:93:50:05
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLjgW5ymVe6jrZwc0IOdPVKTUAU.roa
Signing time: Thu 15 Sep 2022 02:44:56 +0000
ROA not before: Thu 15 Sep 2022 02:44:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=88B8E05B9CA655EEA3AD9C1CD0839D3D52935005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:de:0c:d4:cf:0d:46:f6:d5:7a:93:11:81:68:
78:21:79:aa:78:bc:27:04:f4:30:79:c6:d9:f9:70:
5f:45:97:65:f6:da:6c:ae:0b:4d:23:08:86:16:3e:
a8:e3:f4:79:28:13:50:3e:74:75:35:e8:c3:45:e8:
0b:9a:54:24:86:1a:03:dd:8c:e8:f3:22:ba:69:da:
aa:5b:59:60:e2:35:26:74:36:e5:36:94:ea:c3:dd:
cf:86:81:06:ec:b7:dd:ae:d0:b3:2b:6c:11:ac:53:
33:d9:fd:c9:f0:ed:2f:99:dc:5b:e4:a4:06:06:2e:
27:db:0d:e3:fd:ae:1c:64:8e:4a:8c:26:71:f7:bc:
3b:a1:85:51:74:07:8e:18:06:e8:53:b3:2c:b3:26:
30:38:7a:04:fb:e6:f5:d5:7e:ae:57:91:17:76:09:
4a:e8:41:f1:a7:2a:79:44:09:40:0c:f1:e6:25:38:
51:58:9e:fc:72:30:87:2a:74:47:4d:1c:9f:86:73:
01:ae:84:42:ed:7c:b8:39:e4:57:0a:39:ab:d3:ca:
cf:ed:81:7c:91:28:b8:e8:97:9e:71:0b:07:a7:24:
88:cf:90:6b:40:1c:f0:57:4d:84:d9:3b:0e:84:b8:
f5:32:bd:aa:d5:15:77:0e:22:4b:51:d4:38:1e:75:
f1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:B8:E0:5B:9C:A6:55:EE:A3:AD:9C:1C:D0:83:9D:3D:52:93:50:05
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLjgW5ymVe6jrZwc0IOdPVKTUAU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.32.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:2b:fc:ad:98:a7:2b:48:ec:20:3f:be:32:1f:f0:84:8e:db:
91:e9:a2:cc:25:d6:93:1d:83:04:65:11:da:3d:a6:65:b9:65:
72:d2:91:c3:cc:25:08:57:7e:80:24:9b:a7:83:de:b8:10:46:
14:a3:53:87:ef:a3:05:1b:4c:96:70:e8:61:59:3a:fd:3a:50:
96:11:2f:f5:8a:b5:b8:cb:f1:21:b0:d6:77:15:30:62:4c:6e:
34:0d:c7:a1:b4:65:08:ec:6c:8d:dc:47:3d:b3:b2:6b:df:5c:
5e:e0:52:8d:35:02:b2:d2:b8:8e:c6:c0:6d:c9:7e:f5:3f:51:
37:19:1d:af:78:7b:9f:83:e5:cb:94:89:0b:36:92:e1:84:4c:
12:2e:ed:fb:fc:93:47:be:88:00:82:51:9c:18:3e:fd:e9:af:
f6:ae:43:96:2d:01:f6:25:e1:3e:e8:ca:74:6e:98:f3:a0:fe:
9b:31:00:5a:34:77:2f:8c:8a:37:f8:6a:1b:20:bb:8a:4a:d5:
48:df:54:b2:d3:c1:bc:58:d2:57:e0:b9:6b:d9:66:1e:e9:26:
fd:63:de:e8:bb:4e:dc:ec:63:e0:9b:44:8b:21:4b:85:32:f8:
f2:14:17:0d:4c:35:9b:b4:01:e6:66:64:7b:44:c6:47:4c:0f:
4c:9f:ac:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org