Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jepjn1zEwuHELxh4QpRw7u46RX8.roa
File: jepjn1zEwuHELxh4QpRw7u46RX8.roa (raw, json)
Hash identifier: eFNrGbbFqRpOOwCCx/hmv1wbYxFNRGZSqH/ANJY2/F0=
Subject key identifier: 8D:EA:63:9F:5C:C4:C2:E1:C4:2F:18:78:42:94:70:EE:EE:3A:45:7F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D4E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jepjn1zEwuHELxh4QpRw7u46RX8.roa
Signing time: Wed 29 Sep 2021 02:48:51 +0000
ROA not before: Wed 29 Sep 2021 02:48:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 123.195.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7502 (0x1d4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8DEA639F5CC4C2E1C42F1878429470EEEE3A457F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a8:95:c8:90:fd:4d:7d:2d:65:63:6c:56:2b:
86:dd:e6:25:13:ea:6a:b5:86:c0:0d:f4:29:03:6f:
01:0c:2e:80:83:8c:14:64:58:2d:62:79:72:39:a4:
4b:a7:f6:41:b6:b8:6b:88:08:42:5b:11:2c:72:eb:
09:2e:c9:02:92:a1:d8:82:8a:48:16:2d:89:e6:2b:
7f:41:32:44:dd:25:b3:a6:6f:22:a0:3a:f8:8e:78:
89:a9:e5:35:32:9e:84:86:55:3d:0b:35:8f:8b:ac:
6a:69:7d:cb:ea:b4:87:b4:ca:b8:38:6b:98:c1:a7:
4a:54:be:e4:fc:38:9e:f3:61:a4:d0:6f:7e:7c:48:
49:61:7b:57:8e:c9:1a:63:86:be:1e:66:d5:bd:3c:
de:3a:ab:98:db:52:72:67:5c:8d:2e:28:b8:8f:99:
37:63:68:2f:08:37:b4:f2:aa:c9:f6:06:11:65:57:
f9:3a:1a:6f:9c:d6:05:ce:d6:e4:63:5f:16:8f:b4:
0e:84:e5:6e:bf:0d:ce:40:70:3c:38:98:0c:a4:36:
da:54:19:71:32:05:2c:4e:b4:14:e5:98:cd:ee:d3:
74:b9:9d:17:3e:ef:4c:a7:7a:22:39:76:b4:59:e5:
9f:7e:fb:b6:a6:56:a1:b1:74:31:c1:d2:e9:39:e5:
58:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EA:63:9F:5C:C4:C2:E1:C4:2F:18:78:42:94:70:EE:EE:3A:45:7F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jepjn1zEwuHELxh4QpRw7u46RX8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.236.0/24
Signature Algorithm: sha256WithRSAEncryption
08:89:a7:94:71:e3:cf:d2:49:57:e9:ac:45:19:91:a5:86:be:
3a:50:e6:21:78:f4:98:47:e6:88:36:38:71:0e:a9:62:23:43:
81:04:74:fd:ab:e9:d3:94:fd:45:b2:cf:51:e9:a3:55:de:c2:
d8:ea:04:49:a4:e3:24:b9:cd:d0:c8:b9:c5:de:c8:1e:21:06:
65:e7:87:e8:54:56:20:2b:22:b9:eb:a1:9a:92:94:c8:0f:97:
03:93:9a:71:75:e9:eb:d4:52:dc:23:a3:44:a4:70:e6:18:33:
2e:55:09:6d:66:d0:ee:e0:86:ea:63:07:83:14:f2:83:7d:a2:
5e:f9:d3:0e:57:1b:32:d6:f1:3c:88:a0:4d:32:59:bd:a8:71:
f9:7b:d1:fd:b9:26:ba:33:08:c1:08:4b:34:c6:7c:1c:ac:a4:
31:2d:ec:5f:3c:75:58:05:e1:2f:03:68:b8:c4:61:62:59:13:
a4:b9:fd:e9:b0:ef:07:f5:77:76:5f:a2:06:ee:5d:8c:ca:de:
62:bf:09:6a:9b:e8:cb:7a:29:c4:16:2f:0e:0b:17:db:2f:93:
ae:43:b2:0e:80:a1:32:42:0e:7b:f8:75:62:8c:01:80:3b:bc:
5a:1c:e8:6d:76:71:92:a4:df:02:c1:f2:b7:a8:7f:3b:c0:c7:
2a:23:9d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org