Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oJxkVoWVjWTbo8h0sViCtDJRFds.roa
File: oJxkVoWVjWTbo8h0sViCtDJRFds.roa (raw, json)
Hash identifier: n/9KMb8eMDyL24OTxgmad2G1BeS0HtNwobjE1HXLc/U=
Subject key identifier: A0:9C:64:56:85:95:8D:64:DB:A3:C8:74:B1:58:82:B4:32:51:15:DB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C5F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oJxkVoWVjWTbo8h0sViCtDJRFds.roa
Signing time: Wed 29 Sep 2021 02:47:40 +0000
ROA not before: Wed 29 Sep 2021 02:47:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.205.16/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7263 (0x1c5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A09C645685958D64DBA3C874B15882B4325115DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:67:f6:b5:de:de:45:7f:eb:f9:54:f2:41:
f0:32:26:01:4d:e4:fa:e6:9c:59:74:6f:25:6f:de:
01:b4:d4:c2:62:6a:5f:43:93:6a:f5:14:87:1a:c3:
8b:f9:24:81:ae:a8:8c:61:3e:90:d7:02:f6:75:49:
ed:ed:cf:9e:22:64:cd:7c:f3:ae:64:62:3c:47:66:
cd:37:22:17:a0:8f:34:8a:03:0c:54:22:cf:1d:b4:
36:ce:d5:71:0a:96:b8:48:62:a3:a0:f4:3b:8b:bc:
26:60:b6:cb:5e:7e:74:74:72:4c:b2:b7:5d:86:ae:
70:b9:3b:ac:62:0b:7b:cd:27:98:ab:ba:e0:d6:2c:
94:12:e1:88:e7:df:96:32:6f:bc:1b:89:b5:06:5f:
5c:5a:bb:11:a5:fd:73:ac:cf:74:ba:ef:13:b2:f6:
17:bb:b7:b9:90:60:28:8b:4a:1f:c4:dd:d5:9f:f4:
10:76:8e:3b:f5:e0:26:43:69:69:d1:70:79:d8:d0:
e9:3f:a2:54:a3:f3:fd:53:d0:b0:5c:21:d2:ff:90:
03:30:bc:aa:43:91:a3:a2:dc:6e:5e:4c:b0:86:e8:
fe:e7:e1:34:1c:11:b0:f1:7c:a8:3a:8c:42:0b:59:
d4:31:d7:fa:cd:6c:e0:6e:8f:f1:31:86:97:82:ed:
71:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9C:64:56:85:95:8D:64:DB:A3:C8:74:B1:58:82:B4:32:51:15:DB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oJxkVoWVjWTbo8h0sViCtDJRFds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.16/28
Signature Algorithm: sha256WithRSAEncryption
ae:c4:dd:c4:ec:0c:07:e2:43:21:a5:16:57:fd:d4:25:43:10:
90:ef:9c:d1:83:b7:cf:49:df:5a:87:1e:02:1f:df:9a:5d:a1:
3d:ea:ba:29:ca:91:98:37:ba:e7:fc:91:15:48:1e:e9:cc:31:
3b:83:eb:96:7a:2d:8c:cc:f1:57:09:17:18:02:44:5d:21:fe:
c6:d8:a5:10:7c:46:5f:51:95:e3:ee:44:42:4f:fa:a7:f8:a3:
8c:65:e0:35:2e:eb:6b:bc:f2:cf:6c:c8:14:89:eb:fe:c2:17:
97:d8:1d:33:55:6b:ea:ee:09:e7:cd:db:a2:30:f5:fc:46:e1:
a5:fb:83:0b:a1:5b:6d:bf:6e:00:68:34:fb:0a:c0:75:8c:05:
d7:88:f8:fb:c9:a2:8e:b7:bb:5e:26:bf:e3:16:8d:0f:c9:b3:
ac:d2:f6:c8:d2:dd:f1:3e:55:50:3a:31:99:ac:25:4d:93:06:
bf:ac:5d:a0:0c:66:61:67:d6:40:91:04:da:80:47:c0:f0:45:
2a:30:3c:54:ad:e7:47:78:14:ba:a8:69:44:7d:a7:e7:04:47:
c4:a8:65:55:e8:c4:77:cc:a9:bf:0f:46:0a:7d:bc:f6:e4:56:
18:a7:29:2c:5a:35:a4:5e:66:2b:4b:27:98:91:13:2d:3d:fb:
54:03:ed:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:40 2023 by rpki-client on console-fra.rpki-client.org