Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iMWEyqfXxblAu3qzfdJsyCOFPF0.roa
File: iMWEyqfXxblAu3qzfdJsyCOFPF0.roa (raw, json)
Hash identifier: TS1+klg8cU18W1RmByKHXT2WD2cKgCHAcrJ6iNF4Kf8=
Subject key identifier: 88:C5:84:CA:A7:D7:C5:B9:40:BB:7A:B3:7D:D2:6C:C8:23:85:3C:5D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1871
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iMWEyqfXxblAu3qzfdJsyCOFPF0.roa
Signing time: Sun 07 Feb 2021 12:29:25 +0000
ROA not before: Sun 07 Feb 2021 12:29:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.205.64/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6257 (0x1871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:29:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=88C584CAA7D7C5B940BB7AB37DD26CC823853C5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:d0:e9:c0:d9:ba:ca:95:44:9b:5b:e3:1a:
a2:b5:2a:97:91:4b:4a:37:55:bf:a4:d8:86:45:cd:
a4:f4:6c:c7:70:bc:d8:cb:30:5e:ba:6d:f6:ef:f2:
98:52:bd:47:91:0e:9e:1a:0a:f3:01:c5:7d:aa:33:
fe:81:fd:39:0d:bb:e2:1d:ce:74:4e:4b:db:a5:9b:
07:92:32:ae:c6:83:cf:9a:2e:c2:4a:6c:42:ce:c9:
14:37:0a:23:cc:55:37:35:70:73:b1:5c:4f:9c:6f:
5b:db:9f:42:e7:a6:3b:e7:fc:d7:5c:84:60:a8:4c:
6e:46:30:be:91:51:8b:c0:af:73:a4:34:ef:f3:3b:
75:f3:3b:3a:00:06:ea:59:2d:c3:f4:31:39:e8:66:
15:dd:27:19:8d:42:ab:0f:4f:3a:b0:05:54:53:66:
51:46:fa:6e:b9:5c:cb:2a:b6:fc:c8:1b:ec:9d:84:
62:ee:0d:56:e7:db:b8:1f:5c:31:0d:f0:ed:14:a3:
78:e6:19:0f:9b:6c:53:af:ed:39:a9:68:f0:9b:e7:
b1:b0:af:32:4f:44:e7:8f:3c:1b:c3:ae:a6:39:e3:
0d:80:63:c1:f8:9b:b2:43:2d:01:6d:55:5d:88:ad:
b3:6b:81:cf:97:0b:ed:54:53:a9:24:94:92:81:b7:
bf:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C5:84:CA:A7:D7:C5:B9:40:BB:7A:B3:7D:D2:6C:C8:23:85:3C:5D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iMWEyqfXxblAu3qzfdJsyCOFPF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.64/26
Signature Algorithm: sha256WithRSAEncryption
15:29:65:4b:ba:73:d1:10:62:2b:23:2f:b7:05:98:65:f7:d5:
73:f1:38:c6:7e:8b:6d:93:a4:0f:9a:e6:6c:89:e5:2d:09:4d:
15:d8:83:93:6a:a2:1b:81:6d:4f:2e:3d:13:a0:b7:c7:89:f7:
d9:a5:11:5c:06:17:66:23:b6:89:fe:07:b2:bf:49:fc:06:15:
a5:da:4a:64:5b:4f:32:c1:84:99:7c:43:c4:7c:9d:0f:88:7b:
64:e8:6c:dc:3b:74:df:73:51:da:b3:f2:9d:91:2c:de:ea:11:
77:89:59:b0:98:44:79:0c:7f:a1:11:41:be:35:1a:68:1a:a0:
9f:3e:92:05:8e:9b:dd:ef:2a:38:5c:14:d6:a1:5c:7f:a5:9d:
8a:82:a0:c2:c3:f9:be:2a:b1:3b:94:55:c5:0c:2b:70:1a:49:
69:34:e3:a5:e0:f1:b3:26:93:6e:58:ec:14:f6:bc:99:7d:d5:
57:b9:f4:39:ba:c4:35:b6:f6:b5:ab:b6:01:34:fd:56:7c:b5:
c8:c0:ae:13:58:02:c0:9c:db:4b:3b:c7:88:16:87:79:62:ce:
c5:fe:96:1b:2d:50:50:a5:77:f2:f8:5b:4d:aa:d1:e1:a9:9d:
bd:fd:78:9b:97:63:73:8e:18:da:0e:57:55:1e:da:9a:23:ca:
34:aa:a9:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org