Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nyCIxXtMHVqCmhF9ZL2c1gFEQZI.roa
File: nyCIxXtMHVqCmhF9ZL2c1gFEQZI.roa (raw, json)
Hash identifier: RYvnlzrjvn6q3aq7Jl6Xb9VXZOV05BmFXn71t84n0aQ=
Subject key identifier: 9F:20:88:C5:7B:4C:1D:5A:82:9A:11:7D:64:BD:9C:D6:01:44:41:92
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21F9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nyCIxXtMHVqCmhF9ZL2c1gFEQZI.roa
Signing time: Fri 25 Nov 2022 04:40:37 +0000
ROA not before: Fri 25 Nov 2022 04:40:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8697 (0x21f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9F2088C57B4C1D5A829A117D64BD9CD601444192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9b:a4:44:a8:15:03:0a:38:e1:9f:d6:44:74:
6b:91:88:f6:8b:0a:d3:40:9c:db:34:63:ea:63:fb:
ec:b5:be:40:30:02:92:cd:9e:78:2f:55:9a:97:7b:
a1:13:67:3c:1b:96:b1:15:97:7b:a0:79:9d:cc:6e:
46:f1:7f:f0:ca:6c:b9:c7:29:1b:cc:69:f5:2f:08:
d7:67:e7:46:71:fb:f1:9b:d8:3d:b0:83:82:32:09:
ec:5a:63:f4:f2:e6:fb:8b:3b:69:31:8d:8f:37:dd:
d0:3e:7f:54:ff:e0:8f:62:dd:e7:2d:36:65:3a:2d:
1e:23:44:be:22:e8:14:9f:a3:81:5b:96:27:7c:5b:
00:fc:6d:b6:61:a7:8f:34:f3:76:36:3c:46:8c:76:
58:05:48:3d:27:0e:a6:01:ca:cf:66:57:f4:68:ae:
b8:8e:ef:ad:65:58:1d:e5:ae:ea:d1:40:6b:01:d7:
f7:e7:ad:f3:50:e3:f3:a2:50:f8:5b:57:e6:38:81:
e8:92:e2:0e:ec:42:a6:64:12:6f:61:9e:94:16:0d:
8a:00:2c:46:91:db:6d:98:13:11:d8:db:e3:54:dd:
54:c3:af:35:01:b3:79:21:84:55:e3:74:e4:17:06:
eb:0f:83:bd:07:d8:8b:5e:72:6d:cb:ee:6d:ac:3e:
dd:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:20:88:C5:7B:4C:1D:5A:82:9A:11:7D:64:BD:9C:D6:01:44:41:92
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nyCIxXtMHVqCmhF9ZL2c1gFEQZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.232.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:e6:c2:9e:80:be:d5:c5:d5:08:36:85:de:95:92:41:9b:2a:
1c:31:01:94:a5:cd:b8:66:ed:56:ae:95:7c:90:ac:7b:a0:bf:
a4:cc:60:f4:f7:71:2e:7e:3a:da:22:03:6b:67:69:3e:e3:9b:
a9:b8:22:66:29:a2:03:2c:ed:14:0a:aa:5d:7c:48:c1:83:b0:
3b:d8:a1:fe:31:f3:03:8c:e9:f5:e5:ea:fa:07:c8:0c:e4:17:
c6:54:cc:20:7f:00:98:22:f1:8e:1f:0a:82:67:27:b8:5e:a4:
5a:9b:fe:27:6b:07:ac:fb:8d:c3:bf:a1:91:88:c4:82:05:a7:
5f:1a:68:96:48:e2:85:b8:05:b4:f4:ba:ef:f6:ce:3a:13:f0:
25:84:bb:b6:40:8a:d9:e0:63:70:81:37:98:1d:73:2f:ae:c3:
d1:94:02:51:33:83:fb:39:e7:bd:a5:89:e2:6b:a5:f5:5e:39:
4a:32:1d:ac:22:fc:8d:0f:92:2b:8d:07:f1:c8:29:f3:31:f7:
71:03:92:7c:7c:56:af:23:1c:4c:cc:38:ed:80:e2:dd:41:9b:
e8:7f:bd:36:ef:26:7e:09:7c:a6:22:a8:56:d5:a3:f6:e0:be:
09:8f:13:f1:3b:93:a7:44:97:a5:cf:5e:86:33:74:1b:b5:ab:
fd:c1:35:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org