Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lgwPovxDeoeHTfjt2TMU0jx0Lb4.roa
File: lgwPovxDeoeHTfjt2TMU0jx0Lb4.roa (raw, json)
Hash identifier: c6mbxCyRD8/qmvGKAtzvAYyX+QXonmGf3NwkZYk4OdU=
Subject key identifier: 96:0C:0F:A2:FC:43:7A:87:87:4D:F8:ED:D9:33:14:D2:3C:74:2D:BE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AA1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lgwPovxDeoeHTfjt2TMU0jx0Lb4.roa
Signing time: Wed 29 Sep 2021 02:45:34 +0000
ROA not before: Wed 29 Sep 2021 02:45:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6817 (0x1aa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=960C0FA2FC437A87874DF8EDD93314D23C742DBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:9f:1b:18:17:6f:e4:0f:04:17:19:91:83:
66:65:65:7b:f5:75:ef:ce:d5:5b:1e:c3:ca:2a:20:
71:9a:f0:b9:9b:80:f8:1b:17:cf:58:42:5b:e3:72:
6e:a6:1f:e4:7f:b7:c8:97:22:71:ac:27:3f:e9:f3:
bb:22:87:c4:02:77:d8:e8:d0:38:10:f5:cc:a5:47:
86:ea:8a:66:4e:53:15:66:fa:c0:83:15:9a:aa:34:
ee:bc:2f:4a:25:df:25:ea:5d:97:aa:7b:dd:b0:26:
16:27:4a:ec:0e:11:d2:59:8a:55:93:9a:2c:b5:eb:
27:5b:b0:5e:32:2a:44:28:d8:69:a6:e7:2e:7c:42:
52:ca:62:30:49:74:a6:ab:f6:92:7e:70:c7:4e:7b:
8b:4a:0d:93:23:68:f7:0d:95:e5:27:9a:6a:fa:84:
be:41:a5:20:d1:2e:19:b7:3f:4e:ba:f3:2f:d0:3b:
69:92:32:c4:e0:9f:b6:2c:92:09:78:ef:4f:6e:25:
ee:6f:a4:3b:1d:2b:0f:f3:e5:3d:27:8b:6b:9e:2a:
2c:bd:52:d9:3f:7c:31:15:79:3a:e2:a0:49:68:8e:
d1:6b:6a:e0:3f:d8:46:26:74:8d:64:4e:34:9f:dd:
c7:71:f1:01:8a:b4:da:bd:97:61:2a:84:c8:a0:f7:
d3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0C:0F:A2:FC:43:7A:87:87:4D:F8:ED:D9:33:14:D2:3C:74:2D:BE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lgwPovxDeoeHTfjt2TMU0jx0Lb4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.32.0/21
Signature Algorithm: sha256WithRSAEncryption
49:76:03:6e:eb:8e:9c:6a:f7:c5:c3:ee:84:2e:36:93:ae:fd:
32:bf:a3:5c:21:97:a4:7f:5c:65:29:df:79:0f:7b:99:3d:80:
1f:73:26:e9:5a:21:70:b6:30:9b:3b:ec:5a:8b:b1:d6:18:f9:
d1:f1:c5:01:13:d1:79:ab:d9:f0:1b:8e:81:e7:76:48:9a:1c:
3c:7b:71:c0:58:6f:57:24:e7:13:7e:d6:62:45:84:2e:eb:41:
d0:2b:01:31:72:33:6d:2e:e7:81:f1:2c:38:0d:a0:d7:c0:be:
11:48:e3:a1:f2:f7:24:aa:a5:17:f9:8f:54:1a:70:75:bd:f7:
c8:c1:c6:67:ad:2a:9b:0d:d8:bb:38:a1:55:c5:70:d1:0e:59:
79:5b:49:56:d0:ea:5c:96:9b:82:fc:63:75:95:79:97:88:32:
42:ff:20:c3:90:61:d3:20:8e:fe:10:d0:8e:7a:85:90:16:2f:
e0:d7:88:8d:a4:d1:bc:00:13:35:d3:3e:5c:0b:36:61:1a:75:
68:6d:f4:9e:30:b7:8f:6c:e1:13:2b:8b:db:55:46:01:10:08:
84:07:de:20:a9:c3:17:51:c8:5f:d4:dd:d1:c0:c8:bb:81:f8:
44:a9:5c:f3:4e:d3:f8:2f:0c:0d:bc:29:9d:a0:44:f3:9c:c2:
2a:b2:26:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:27 2023 by rpki-client on console-ams.rpki-client.org