Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lSfqLSa0ZVntOONAZhKD8AdKEGk.roa
File: lSfqLSa0ZVntOONAZhKD8AdKEGk.roa (raw, json)
Hash identifier: 0QTCOYWVd6HrJlmcc134UA6ZSej8Mmu/F4mFAiI/iWY=
Subject key identifier: 95:27:EA:2D:26:B4:65:59:ED:38:E3:40:66:12:83:F0:07:4A:10:69
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0ED2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lSfqLSa0ZVntOONAZhKD8AdKEGk.roa
Signing time: Tue 29 Sep 2020 09:56:11 +0000
ROA not before: Tue 29 Sep 2020 09:56:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3794 (0xed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9527EA2D26B46559ED38E340661283F0074A1069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d5:69:95:9a:5e:7d:3e:7d:c7:3d:10:b0:15:
04:2d:fe:12:78:22:3d:8b:24:d6:68:07:9e:92:eb:
92:64:59:d4:86:3e:44:dc:1d:1d:09:48:b4:59:dd:
7a:ac:33:3a:ac:82:5c:5f:4b:82:dd:7e:1d:16:00:
a8:0b:1c:7c:0d:92:0a:9d:45:6b:87:b0:d1:5d:45:
18:d4:65:9b:38:37:79:93:ef:5a:b4:3a:68:05:d6:
70:66:93:16:b0:cd:37:63:fa:ba:49:c3:d7:4f:43:
68:07:1f:5b:80:b1:ab:92:ba:8b:88:19:fe:3f:d2:
da:c7:65:3c:e0:aa:8f:12:c8:66:65:25:fa:6d:1a:
40:27:c8:9c:e0:8f:fe:66:b7:ae:e0:e5:df:42:99:
1f:1f:79:a1:85:33:06:53:ef:1b:e2:3f:7b:00:ee:
cf:70:1c:db:95:49:47:57:a0:98:73:db:99:b0:88:
16:b4:33:3e:b9:3b:4a:96:fd:65:85:1f:b5:13:6c:
39:bb:60:de:67:8b:47:36:ec:4d:ac:e1:63:43:52:
ae:3e:f4:ad:ad:58:a1:57:5f:64:b6:a0:5a:3f:44:
86:74:72:cd:eb:03:64:72:e0:ab:e7:26:c2:8d:a9:
bb:d7:e9:43:a2:87:63:99:f0:59:6f:29:d7:b4:a3:
2e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:27:EA:2D:26:B4:65:59:ED:38:E3:40:66:12:83:F0:07:4A:10:69
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lSfqLSa0ZVntOONAZhKD8AdKEGk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.72.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:1f:45:a7:0f:99:44:38:8c:c2:17:1a:3c:b6:0d:2a:c5:44:
de:18:3b:2d:ef:c7:49:1b:fe:d2:93:9e:5c:17:92:2e:cc:a9:
bc:09:f3:a6:d9:01:a9:e0:d0:0c:9c:fe:71:82:1a:0a:4f:b3:
d3:70:bd:20:7d:f2:32:23:88:86:9c:fc:40:47:95:18:e1:1e:
b4:c1:45:7b:ca:ae:31:a5:73:6c:9e:ca:02:0e:09:c0:d7:9a:
ce:c9:4f:5c:01:96:c1:6c:af:e8:35:c7:98:c8:18:11:08:61:
80:49:db:2f:e5:8f:db:b8:4b:08:28:f1:7a:90:6c:26:92:7f:
f5:ed:24:ea:41:64:ce:92:47:58:19:50:82:ca:a1:f0:c7:dc:
d9:e7:b7:5c:01:22:47:b2:bb:7d:c0:74:11:47:2a:59:24:c5:
e0:14:87:88:bf:39:e1:f2:a2:f3:12:1a:47:6f:cc:fa:67:1a:
ca:80:a2:8d:df:8a:39:17:b1:2c:13:54:fc:c6:3a:2a:1a:7e:
29:df:a2:20:4e:8e:ca:ae:8d:86:44:bb:5c:2f:a6:df:ef:31:
bb:2b:b3:ad:c2:1a:7a:ec:1e:2d:17:ce:8b:7b:a5:9d:f0:36:
54:ff:a9:b1:a3:ed:ed:d9:a4:df:9b:80:59:26:0c:d9:2c:ef:
a8:4f:d0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:27 2023 by rpki-client on console-ams.rpki-client.org