Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kXJAZXwO8mjs8sdU3iDCE95s_9o.roa
File: kXJAZXwO8mjs8sdU3iDCE95s_9o.roa (raw, json)
Hash identifier: iCT/nl+NDkB0hYe5XtMprmmodMhUV3ICnI0YBHoImIQ=
Subject key identifier: 91:72:40:65:7C:0E:F2:68:EC:F2:C7:54:DE:20:C2:13:DE:6C:FF:DA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kXJAZXwO8mjs8sdU3iDCE95s_9o.roa
Signing time: Thu 15 Sep 2022 02:52:25 +0000
ROA not before: Thu 15 Sep 2022 02:52:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=917240657C0EF268ECF2C754DE20C213DE6CFFDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:9e:50:5b:a1:42:fd:c9:57:41:d1:9c:02:
4c:2c:ec:66:26:11:1c:19:44:d9:6d:e9:28:c2:31:
23:01:17:2e:3c:dc:25:06:08:97:8c:f2:eb:48:95:
df:46:d7:3c:70:29:8e:f4:ab:aa:ea:b3:a2:01:d7:
af:46:33:b5:9e:80:7d:2a:f8:f4:0e:24:77:3b:93:
02:83:19:fc:03:a9:0e:b7:f7:f1:03:66:17:80:df:
60:88:32:96:90:61:04:53:88:b6:a2:67:40:db:c6:
3c:78:cb:37:0b:60:5f:81:ad:6f:07:73:67:f1:5a:
65:d5:1a:7b:57:7f:9e:e6:1c:71:c7:e7:af:70:2e:
d0:b4:91:7f:11:70:2b:84:98:b0:ff:f2:5a:1d:32:
24:2e:bc:2b:ac:ae:0e:ea:18:71:2a:01:35:55:6b:
ff:26:6f:5f:41:57:7a:68:f6:f3:33:75:e1:dd:85:
5c:68:42:fc:ed:78:8f:d0:ea:96:4b:79:e6:32:3a:
e9:95:c7:47:ff:96:30:79:84:af:e1:35:a0:2d:66:
93:9f:73:a0:57:7d:4d:48:8e:78:fc:9d:92:c2:7d:
e0:65:92:19:da:c3:90:68:e9:05:09:34:55:ad:28:
c3:76:66:88:c8:c7:c7:0e:ae:31:dd:25:fd:82:2b:
7d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:72:40:65:7C:0E:F2:68:EC:F2:C7:54:DE:20:C2:13:DE:6C:FF:DA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kXJAZXwO8mjs8sdU3iDCE95s_9o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.252.0/22
Signature Algorithm: sha256WithRSAEncryption
16:df:16:e9:20:2e:ee:8d:bd:73:67:3d:16:f6:59:1a:d2:78:
1f:61:d1:0e:25:4a:52:43:ca:6a:63:e1:99:92:2f:4e:cb:7c:
e0:a0:c7:3e:f4:6b:03:43:67:ba:14:d8:21:cf:5a:19:58:18:
5b:cd:a5:c9:5e:cc:e5:25:83:3e:7f:6d:7a:30:3f:fd:1e:0f:
57:3a:ed:cc:3e:68:6f:30:04:66:52:7e:93:be:a1:1e:aa:62:
c3:a7:8d:6b:50:67:32:54:04:1f:f7:f7:2e:52:b1:ec:36:38:
58:5b:f3:ca:48:77:f9:a1:b2:69:bc:23:5b:d7:a6:e5:39:ec:
e7:36:69:34:1d:33:98:a5:ce:39:a7:98:53:66:d7:90:d1:05:
11:dc:2c:65:f0:6d:c4:74:c8:46:19:c8:7f:e2:71:86:18:80:
f1:e8:12:73:11:cf:97:22:e8:44:80:87:16:43:36:d1:45:a5:
c5:fb:ca:73:ed:44:68:12:bc:1c:58:5a:f5:c7:7b:23:3b:9b:
17:73:e1:62:91:79:4e:14:24:cd:1a:e5:f6:e4:a6:8a:3b:ce:
99:52:9f:4d:b2:3a:ce:93:0f:d2:2b:a0:f0:ee:1f:2c:ef:1a:
f1:24:ca:d2:11:02:1d:33:3a:4a:0a:d6:fd:24:7d:38:2d:a7:
b2:84:f2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org