Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kvvnpixI9Z9tVsKq0ftgMqp0m6w.roa
File: kvvnpixI9Z9tVsKq0ftgMqp0m6w.roa (raw, json)
Hash identifier: woJUKwIyRnF2R30WjZRPQI+DIxomSJVpnDqM1MWtiW4=
Subject key identifier: 92:FB:E7:A6:2C:48:F5:9F:6D:56:C2:AA:D1:FB:60:32:AA:74:9B:AC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B5B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kvvnpixI9Z9tVsKq0ftgMqp0m6w.roa
Signing time: Wed 29 Sep 2021 02:46:30 +0000
ROA not before: Wed 29 Sep 2021 02:46:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7003 (0x1b5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=92FBE7A62C48F59F6D56C2AAD1FB6032AA749BAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a3:b2:8d:b9:01:e5:9e:38:70:4b:cd:fe:46:
80:43:e6:7a:35:98:42:b1:58:b2:26:5a:b0:8d:cb:
b7:e5:3f:d3:4d:bb:8a:86:26:4b:f1:3c:80:7a:dc:
01:9f:19:4c:dd:e0:8e:4e:92:fc:1f:49:ca:c7:46:
81:c8:fc:18:72:9e:33:21:1c:08:e1:47:90:9e:d4:
fd:47:0f:40:ae:6b:0c:9d:0f:38:ef:71:b8:d2:27:
53:d9:1b:a6:25:f0:f4:bf:63:ed:a7:ec:0b:f3:a3:
b3:2a:67:1e:b8:1b:1d:5f:0a:3d:c5:c7:75:81:9e:
1b:6d:c7:1d:5b:bf:1d:4c:0b:d2:dd:d1:50:d7:f9:
a5:26:17:b0:26:96:02:05:52:58:d2:fa:6b:11:4c:
e6:6b:40:b6:22:b9:52:03:af:21:ac:51:a1:0e:82:
5d:a5:1c:45:14:0f:46:b1:f3:2d:bd:0a:6a:fe:75:
7b:ca:2d:95:41:36:1f:98:65:d4:33:d0:55:b4:1a:
12:df:6d:eb:bb:29:1c:78:4f:09:9c:1d:ce:d4:59:
5a:e9:27:76:87:47:06:a1:ea:d4:ae:73:ac:66:2f:
60:68:e1:48:1b:63:c2:f7:51:60:03:b3:fb:45:a7:
fb:3a:c0:df:76:b6:1e:ac:50:55:db:07:5b:63:99:
8e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:FB:E7:A6:2C:48:F5:9F:6D:56:C2:AA:D1:FB:60:32:AA:74:9B:AC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kvvnpixI9Z9tVsKq0ftgMqp0m6w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.112.0/21
Signature Algorithm: sha256WithRSAEncryption
42:80:1d:7b:59:3d:6d:a8:bf:db:10:f6:42:ba:c3:52:0c:13:
c7:26:6b:3b:64:c4:4f:3c:27:66:d4:29:5a:87:d8:07:bd:f8:
0a:df:8d:18:d9:59:6e:47:48:cf:a7:fa:49:e4:e7:a9:d9:d0:
9c:eb:20:61:88:a4:16:73:8e:a2:0a:cc:1c:71:63:60:96:ef:
00:64:ff:54:4b:52:22:21:6a:2b:17:9c:ce:3e:38:39:8b:b7:
d8:1f:39:29:85:8f:81:a0:80:cc:3a:f8:47:7b:ca:66:ad:d3:
5e:11:ce:3d:0e:56:b7:8d:cc:79:28:0e:3a:14:11:ea:af:51:
fb:1e:fc:f7:5b:cf:8d:e1:f7:e3:12:25:a1:f2:f6:22:7a:23:
21:88:4a:22:c9:d9:fe:07:42:a3:13:a6:6e:0c:bf:22:2c:94:
54:f1:cd:ea:10:18:ff:54:bf:f5:71:4e:96:4a:eb:5e:79:bc:
04:ab:e9:11:7f:69:31:79:13:ec:e2:0c:17:da:81:72:ac:98:
05:15:6f:f1:48:86:7e:84:52:68:01:c3:4c:3a:34:02:b8:79:
40:3d:47:4a:42:b5:d9:46:31:25:eb:84:53:10:5f:49:6e:7a:
c2:ab:aa:53:ae:d6:bd:f4:ea:53:07:06:1d:b5:ad:f7:ca:ab:
8f:c2:75:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-fra.rpki-client.org