Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lP2o5i0eNSJkRqBNzzh8P9uU1gU.roa
File: lP2o5i0eNSJkRqBNzzh8P9uU1gU.roa (raw, json)
Hash identifier: PzNa/S3UKMJaz8iXSgwMcLauf13cbfZtFjRj2aIy4wA=
Subject key identifier: 94:FD:A8:E6:2D:1E:35:22:64:46:A0:4D:CF:38:7C:3F:DB:94:D6:05
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2213
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lP2o5i0eNSJkRqBNzzh8P9uU1gU.roa
Signing time: Fri 25 Nov 2022 04:40:44 +0000
ROA not before: Fri 25 Nov 2022 04:40:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8723 (0x2213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=94FDA8E62D1E35226446A04DCF387C3FDB94D605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:38:c8:50:f4:bf:27:26:8f:75:27:c7:07:d9:
10:7f:a6:41:4b:d4:08:97:d4:0a:02:ca:57:2e:22:
39:c8:32:8d:6c:2b:81:90:a5:75:4d:30:54:ed:12:
03:ed:7f:92:62:c7:32:69:ef:93:79:db:ab:33:b2:
d8:8e:14:8f:de:aa:06:36:f6:8b:7b:fe:3e:ca:b5:
af:6e:5d:a7:10:62:b5:49:03:cd:e1:e0:1b:de:66:
38:a6:ef:a2:9a:5b:09:dc:09:8d:be:4c:78:79:97:
57:52:a0:8b:72:f9:4a:a8:14:cd:3f:9f:65:a8:93:
53:56:39:19:a3:8a:1f:f8:bf:7c:5d:fa:b8:08:4a:
32:b3:38:0c:0d:28:6f:43:05:05:bd:87:f6:71:fd:
d8:b4:3c:ab:c6:c1:57:fd:3f:ab:f7:5c:32:08:5c:
c1:c7:d3:93:ea:9b:ff:6f:e8:e1:ee:e2:91:f9:ac:
dd:31:f4:59:21:9e:b7:42:f2:c7:1f:b0:86:4a:d6:
aa:1f:9c:d3:3c:85:7e:c5:d8:d5:ec:b1:51:d6:00:
78:8b:43:c8:a4:0a:cd:78:35:b4:9f:21:dd:dc:c7:
88:3e:08:c7:ac:94:6e:d5:54:be:24:33:be:d0:c8:
c3:cd:e6:5c:8f:2f:c7:1a:81:74:33:69:b3:f5:b2:
4b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FD:A8:E6:2D:1E:35:22:64:46:A0:4D:CF:38:7C:3F:DB:94:D6:05
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lP2o5i0eNSJkRqBNzzh8P9uU1gU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.36.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:69:2f:c8:f4:f7:f4:a4:26:19:c2:e6:09:0c:b4:53:d9:c4:
f3:20:bc:19:ea:aa:02:82:54:87:b7:e9:fe:43:ec:d6:11:bf:
3a:a6:74:2b:4d:b7:4c:92:c0:88:cf:30:e0:a0:80:dc:ef:cb:
37:cd:52:7a:18:d2:c9:0c:9f:34:33:26:a2:de:4f:63:f2:e9:
ad:f4:d5:c5:73:6f:c2:17:7e:af:76:de:68:d8:56:fa:fe:b8:
d1:c3:aa:cc:f1:1f:9a:56:03:c3:30:c9:7b:1f:35:aa:dc:e8:
c0:27:9a:89:70:49:91:da:e6:73:73:3d:07:02:71:39:2f:2f:
40:43:8a:75:5c:02:ae:44:94:70:35:55:81:c1:4e:98:82:bd:
7d:c0:a4:01:a9:5c:d0:fe:aa:00:f7:6c:0d:02:e9:a6:a0:1e:
45:a3:91:18:9f:e1:72:9a:f4:71:ec:22:d0:30:26:52:76:34:
cb:d5:17:db:43:39:3e:40:54:17:b3:d4:a9:ca:77:c3:6a:ed:
54:9a:35:53:06:4b:12:65:0e:1e:c5:2b:0f:19:d4:ed:58:a1:
a0:8a:fd:e1:5d:b4:36:39:b6:ef:05:bc:17:b4:ab:22:56:41:
8a:c0:4f:29:27:23:0d:4b:89:bf:56:fd:c2:dd:7d:d2:6f:69:
7d:f6:2b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org