Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lrBWHJ590k7siGi4dniPKiZOUf4.roa
File: lrBWHJ590k7siGi4dniPKiZOUf4.roa (raw, json)
Hash identifier: waZmQ6Aq3UnMr7dpk/EcVX6cOUtU6A5S31hnBhMHAbc=
Subject key identifier: 96:B0:56:1C:9E:7D:D2:4E:EC:88:68:B8:76:78:8F:2A:26:4E:51:FE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 18D1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lrBWHJ590k7siGi4dniPKiZOUf4.roa
Signing time: Sun 07 Feb 2021 12:54:04 +0000
ROA not before: Sun 07 Feb 2021 12:54:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.193.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6353 (0x18d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:54:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=96B0561C9E7DD24EEC8868B876788F2A264E51FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:44:41:8e:86:6c:e5:80:51:26:36:a1:38:33:
02:58:db:ef:5d:42:a1:92:8d:dc:54:fe:b3:f0:40:
47:60:3c:c7:39:f8:44:77:90:5e:83:2b:12:0f:e5:
d4:b7:70:5f:93:4a:bb:cf:6d:96:81:65:ba:2c:40:
5a:46:b0:2d:79:84:a3:2c:48:f6:b2:03:44:65:8f:
1d:9f:cc:2d:57:cc:b6:56:2a:ee:dd:a9:e9:e8:3f:
dc:6f:60:19:6a:5e:c5:f7:a3:1a:28:b7:09:a4:a6:
f3:1b:31:16:29:d0:25:a3:53:2b:3f:69:a4:6b:96:
70:df:dd:e6:0b:7e:d8:3b:c0:6d:be:53:15:11:98:
06:69:b2:01:1e:a2:a3:f0:9b:74:c9:92:af:d3:1b:
14:23:fe:b3:f2:ed:35:e4:ba:fe:fc:07:ae:d1:ff:
7f:82:e6:74:2d:3d:fa:b1:68:7e:48:17:c9:d3:f3:
ae:ac:fb:c5:f2:5e:e1:9f:c5:21:b0:94:9a:eb:fb:
a1:59:9b:99:f8:09:30:ce:02:80:76:d3:d8:73:e5:
b6:f3:0d:94:0a:d3:f8:79:3e:5f:5b:27:d7:dc:20:
45:76:29:d7:49:b1:ce:07:10:fd:f3:0f:b1:4b:6e:
62:54:ce:8f:41:f8:96:c8:a1:ad:a4:b2:b9:72:93:
92:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B0:56:1C:9E:7D:D2:4E:EC:88:68:B8:76:78:8F:2A:26:4E:51:FE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lrBWHJ590k7siGi4dniPKiZOUf4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.176.0/20
Signature Algorithm: sha256WithRSAEncryption
35:88:97:d2:a8:f5:d6:c5:89:49:f8:18:3f:fc:a4:57:12:bd:
ac:4b:7d:05:2d:d6:b9:c8:82:e5:6e:ec:5f:4a:6a:04:4b:e9:
a6:c6:f7:43:5e:58:d0:9b:13:75:a6:0c:e0:c6:84:a3:11:78:
c6:bb:46:9d:44:6f:74:24:94:10:a4:75:c3:99:ed:57:d9:69:
7b:66:e2:c0:eb:ef:74:05:b3:89:57:44:00:d3:61:91:ce:2c:
fc:a0:b2:1d:12:91:c9:51:77:63:a0:be:5a:08:09:14:3d:1b:
2f:c3:02:f6:ba:04:72:97:7d:91:06:b4:ec:72:53:46:e4:4d:
70:b0:40:0e:89:a5:f0:6a:62:a6:81:a0:1f:40:a3:6c:f8:01:
81:57:1c:89:08:51:e6:7e:01:45:c2:02:b9:7c:2c:af:f3:fd:
75:0b:6c:5e:6e:7c:26:b6:bc:b6:b6:11:b7:ff:a6:11:fc:c4:
f9:ad:07:74:cc:01:a9:8e:93:18:17:08:2d:d7:d9:3f:2f:f9:
cb:b0:e3:13:e5:65:22:08:89:32:de:c0:34:77:d1:d1:fd:c2:
ed:6a:b7:0a:af:b5:bc:be:7f:76:6b:21:34:a0:b8:c9:f8:4d:
81:a8:fe:c1:2e:d3:81:82:97:17:6f:51:2b:43:7c:d4:6e:ba:
f1:fa:17:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org