Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/on8YwsOaJB-p5pjCArmpe772GqY.roa
File: on8YwsOaJB-p5pjCArmpe772GqY.roa (raw, json)
Hash identifier: pZx2zdJd0riR2wJOWUh4EoN3xRvizM8ruzmbFK8sZAw=
Subject key identifier: A2:7F:18:C2:C3:9A:24:1F:A9:E6:98:C2:02:B9:A9:7B:BE:F6:1A:A6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A91
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/on8YwsOaJB-p5pjCArmpe772GqY.roa
Signing time: Wed 29 Sep 2021 02:45:29 +0000
ROA not before: Wed 29 Sep 2021 02:45:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6801 (0x1a91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A27F18C2C39A241FA9E698C202B9A97BBEF61AA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d4:80:cd:c7:86:29:72:dc:bb:08:48:fa:b0:
c6:7b:cf:b0:05:b0:98:3a:18:a5:eb:22:cc:55:c3:
21:b7:11:b0:a7:e1:4e:ec:76:69:65:56:97:a7:a7:
da:e7:37:c9:e6:ae:5a:5d:e1:32:08:73:d7:7e:71:
e5:26:e5:59:ec:59:ef:5f:bb:08:aa:37:be:af:69:
a1:96:3c:be:ed:09:d0:4d:ac:01:73:4d:1f:17:f6:
b1:d4:49:24:ec:e9:1e:40:0a:a7:c2:58:1b:00:06:
54:a1:29:81:46:13:5a:2d:f3:08:2c:14:f0:d4:2e:
df:a9:03:dc:73:6a:55:c1:74:bb:ff:73:1e:7c:9d:
4e:ea:2a:67:d5:d6:81:73:69:29:5f:b3:43:41:ea:
47:35:ec:2e:e8:fd:be:c9:ec:ac:f6:19:d6:bb:b1:
e4:fe:e7:1e:0e:ce:03:97:a9:9f:3e:66:cd:e9:3f:
e3:6a:8e:e6:a3:28:36:31:56:50:fc:78:a0:58:58:
64:cc:94:d3:66:1a:eb:09:0d:e1:74:09:76:f3:ad:
00:7e:12:4b:ec:c1:3f:aa:3d:7c:71:33:08:27:b6:
4b:bc:b7:61:bd:7d:39:72:cc:ab:ce:ab:38:9b:5a:
e8:ce:39:d6:27:9e:d3:9b:50:28:59:97:67:ab:13:
20:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7F:18:C2:C3:9A:24:1F:A9:E6:98:C2:02:B9:A9:7B:BE:F6:1A:A6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/on8YwsOaJB-p5pjCArmpe772GqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.0.0/20
Signature Algorithm: sha256WithRSAEncryption
85:8c:68:12:8d:43:0e:4a:77:78:f8:7e:42:e0:62:d3:7e:a2:
a9:77:b5:9f:34:a0:40:e4:ee:43:a0:87:6b:6a:76:27:18:11:
fb:8f:2a:b5:67:ad:05:9e:aa:78:65:28:26:70:b0:f3:d2:15:
cf:71:7e:72:90:be:44:c7:67:a1:ce:d1:b6:3d:e4:69:2d:3a:
fa:11:0d:e7:b4:f6:9e:65:89:a0:05:0c:0e:dd:9e:66:7b:8a:
c9:1e:26:11:a7:85:fe:e6:6f:2a:6d:f5:84:1d:d4:18:aa:ac:
1a:81:3b:cb:9f:53:d7:56:e7:f6:36:cb:1e:7f:65:74:4d:0e:
ba:f2:52:ef:89:17:d0:07:21:59:cf:e6:da:e9:d2:43:ea:c7:
c5:71:5f:54:5f:cd:fe:b3:fc:3c:cb:4a:af:e7:41:ce:b6:1b:
e3:07:c2:d1:12:86:9b:4d:b0:36:79:ec:ba:10:71:e5:84:da:
8f:4b:75:8f:9c:7b:53:1f:ab:58:50:44:f2:19:e0:52:30:eb:
ab:e4:39:2b:b3:a2:41:09:b8:9b:0a:29:6c:61:9d:5e:f9:e9:
b1:37:bd:53:cd:d3:22:8f:73:bf:11:a8:19:41:ae:fc:e1:1e:
c7:c7:05:c9:ff:85:45:91:aa:53:b3:ce:50:9d:b2:9b:06:01:
0e:9d:db:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:40 2023 by rpki-client on console-fra.rpki-client.org