Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ltZxiKBbWb3jpYx_ruklAkcZAeA.roa
File: ltZxiKBbWb3jpYx_ruklAkcZAeA.roa (raw, json)
Hash identifier: U3cnZq+GX7sOF7NnjKPU5wwrVmmo6jDeCiprmqE2GPA=
Subject key identifier: 96:D6:71:88:A0:5B:59:BD:E3:A5:8C:7F:AE:E9:25:02:47:19:01:E0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 171D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ltZxiKBbWb3jpYx_ruklAkcZAeA.roa
Signing time: Sun 07 Feb 2021 12:16:45 +0000
ROA not before: Sun 07 Feb 2021 12:16:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.193.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5917 (0x171d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:16:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=96D67188A05B59BDE3A58C7FAEE92502471901E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ba:4d:d1:a4:5d:17:da:7f:d7:ba:fc:e7:7b:
1c:9a:0d:35:4e:76:28:7f:4b:4f:94:25:da:75:a4:
f7:f3:16:cb:58:48:cf:0f:88:64:4a:7e:0a:7e:98:
4f:27:15:92:99:74:64:06:16:6e:92:cc:77:a9:e0:
fd:c5:71:e1:27:e5:ca:2f:81:b1:b0:fb:a5:4b:bf:
b6:de:e1:65:4b:8c:c6:0d:f7:03:97:9d:4a:da:22:
dc:cf:c2:4a:47:af:45:22:ab:f6:0c:b6:bb:9e:a0:
db:f0:36:c9:6e:38:61:e3:9e:5b:72:6c:29:94:86:
cb:f7:d9:ba:44:cb:ca:8c:69:18:b3:20:94:b1:a8:
bb:e2:b5:f4:2e:25:35:41:a9:3e:1d:f4:78:fe:3f:
54:35:b0:0a:a2:cb:34:8b:67:1d:cc:d2:2c:1e:99:
9d:38:2a:ef:a2:89:91:f9:3b:25:f5:7b:42:05:b7:
f9:cd:07:99:8d:fb:f0:cc:71:7d:85:21:72:51:9a:
b7:fa:d8:1c:a2:17:e0:c8:c4:eb:85:d4:81:59:68:
26:5f:80:c4:a8:60:ab:a1:9a:46:98:25:70:d0:7e:
02:b5:1e:52:f1:c8:31:61:9d:4f:56:a0:d3:43:b2:
90:a2:22:e9:84:78:b6:f3:51:90:79:d2:fe:4f:da:
7b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D6:71:88:A0:5B:59:BD:E3:A5:8C:7F:AE:E9:25:02:47:19:01:E0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ltZxiKBbWb3jpYx_ruklAkcZAeA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.152.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:13:f7:72:90:7e:32:51:1f:a4:62:18:7c:84:4d:ea:f7:1b:
65:eb:2e:ec:87:55:db:36:ea:7b:ae:50:41:7e:77:4d:8e:7b:
38:65:7d:c7:60:3f:41:b3:1c:00:95:ff:6a:fc:88:10:2c:f5:
8d:06:1b:f8:a1:b1:55:db:8d:5d:36:05:72:b3:68:2d:41:20:
8f:96:81:34:73:c3:23:74:e5:12:3f:e2:ba:1a:57:43:d1:47:
b0:be:de:7b:f0:99:3e:10:61:c4:07:14:95:e6:a2:46:3f:bb:
3f:c4:ed:33:78:aa:7c:21:8f:0a:20:5c:06:5c:6e:ac:09:b5:
fa:7c:0a:5b:42:02:ca:60:b5:29:b0:e1:5f:a7:50:13:fb:78:
f1:db:4d:3c:e1:f6:d1:8b:d5:d6:f7:a6:60:e4:b6:52:59:b2:
f6:0a:5f:98:07:b8:dc:61:9a:71:e7:43:08:80:28:e9:ea:b9:
c9:e0:dc:92:f2:79:c1:68:7f:1c:2e:72:0f:96:73:a2:b4:e1:
9a:1e:d1:33:38:9c:ad:0f:26:25:70:8a:98:e5:75:d8:93:ef:
7d:30:a2:66:1d:41:05:35:43:77:81:9f:f9:66:cc:fe:43:21:
91:bc:59:4b:3a:c5:ba:b3:3a:a8:32:da:0c:fb:65:1a:f8:d9:
53:c4:c4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org