Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lUh-wphZtsvHhLFvmPxmOJh9Uy0.roa
File: lUh-wphZtsvHhLFvmPxmOJh9Uy0.roa (raw, json)
Hash identifier: LYDIafG2UGAoyJd75/rq5gOCbKdmJVo7J09ENm+1r84=
Subject key identifier: 95:48:7E:C2:98:59:B6:CB:C7:84:B1:6F:98:FC:66:38:98:7D:53:2D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lUh-wphZtsvHhLFvmPxmOJh9Uy0.roa
Signing time: Thu 15 Sep 2022 02:52:53 +0000
ROA not before: Thu 15 Sep 2022 02:52:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=95487EC29859B6CBC784B16F98FC6638987D532D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ac:3a:0d:f4:9b:2a:60:b0:23:86:f8:a5:80:
35:80:4e:1f:60:1f:df:3c:aa:91:a9:d5:21:7b:09:
51:81:40:d4:90:0d:a9:c7:a3:ce:54:24:5f:5b:ad:
46:13:d8:f2:39:a0:08:cb:b7:9e:79:07:22:1c:7f:
07:57:f4:2a:28:69:65:6b:36:81:21:73:c6:02:4e:
dc:39:d0:f8:13:05:7c:4c:42:06:8a:57:fe:17:70:
25:79:82:59:85:01:87:d1:58:4a:30:3d:f0:2f:2e:
92:84:49:ee:2e:ea:b9:c3:20:be:43:2e:32:dd:4c:
92:c8:c2:e6:5e:3f:da:fd:8c:a7:f1:40:b1:44:7b:
fc:e7:f9:f7:09:7b:4a:19:13:68:f8:47:ca:64:8c:
bd:b5:ad:6f:05:ec:e3:0e:bf:68:51:e5:a5:9d:2b:
7c:be:58:5d:02:e8:16:24:a6:76:93:51:41:ae:01:
3e:ca:22:c8:4f:7e:18:dc:dd:36:a8:37:58:86:eb:
19:80:06:5b:39:28:b2:c8:48:1d:0e:17:de:16:fe:
99:7b:47:22:51:c3:d2:a7:4e:8f:1c:a5:ad:a0:f6:
a1:96:07:c5:a3:10:e8:f8:4d:ad:26:bc:29:a5:6e:
f6:0d:73:34:2a:50:f0:e0:9e:27:5c:7d:8c:a2:3f:
7a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:48:7E:C2:98:59:B6:CB:C7:84:B1:6F:98:FC:66:38:98:7D:53:2D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lUh-wphZtsvHhLFvmPxmOJh9Uy0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.228.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:f9:52:74:1f:2a:b0:23:b6:57:88:4b:99:b1:c7:fe:cd:5f:
aa:0e:a2:73:99:43:93:84:34:63:65:bc:d4:07:dd:34:f5:20:
26:19:4e:89:e5:81:1e:3b:24:e4:b3:82:f2:d4:cf:72:33:73:
e2:af:6f:7c:ea:76:dc:82:4f:4b:02:ed:c1:9d:7a:36:46:d1:
63:4b:c8:fc:f0:a8:21:84:91:b3:22:4a:15:d3:42:7a:05:bb:
03:dc:82:3f:44:5a:b4:25:7b:3a:d6:53:0c:77:d1:2a:74:82:
21:11:0b:6f:14:08:86:eb:bd:c4:d1:8f:58:c4:9c:09:d2:69:
c0:96:9d:b2:d7:0a:38:c0:57:18:ff:ad:57:c0:cd:77:26:02:
2f:e6:6d:99:31:36:8f:cc:da:a1:54:9d:18:5a:68:c8:31:c2:
c3:64:71:9a:7e:2f:cd:ed:a8:a3:ef:a9:5b:d6:8d:b0:68:99:
4d:d2:9c:25:07:9f:c2:96:ba:2b:d1:a3:40:cc:f0:3f:9f:27:
a9:05:5c:27:d4:74:2f:0c:56:42:a6:d4:25:52:62:a0:ec:74:
ca:c6:98:e5:27:79:75:f4:0c:b1:a2:7d:37:ae:3d:7f:5c:49:
ee:44:fb:ce:71:7a:dd:97:68:e7:5d:2f:67:a8:bb:4c:6e:c2:
75:8d:36:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:39 2024 by rpki-client on console-ams.rpki-client.org