Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/owXf1KsSNVDNoXJ2ljgL3d5Ru7U.roa
File: owXf1KsSNVDNoXJ2ljgL3d5Ru7U.roa (raw, json)
Hash identifier: r1991797/2OLxOnQZKz7UQDiuiauWZFRmmPWG6tyJpo=
Subject key identifier: A3:05:DF:D4:AB:12:35:50:CD:A1:72:76:96:38:0B:DD:DE:51:BB:B5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/owXf1KsSNVDNoXJ2ljgL3d5Ru7U.roa
Signing time: Thu 15 Sep 2022 02:54:12 +0000
ROA not before: Thu 15 Sep 2022 02:54:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A305DFD4AB123550CDA1727696380BDDDE51BBB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a1:80:39:d2:13:86:44:2d:47:a8:3e:e9:0c:
be:01:c4:51:82:6d:82:8f:7d:9c:c4:c0:1c:4c:09:
e0:dc:2e:32:e4:04:8c:ac:34:ee:01:29:47:df:48:
cc:bd:9a:4a:68:1f:a4:db:57:bd:90:83:0e:8a:25:
f5:62:71:a7:2f:01:e9:a7:d9:c1:30:b7:96:3d:d8:
fd:e5:87:c8:46:39:b1:93:62:c2:9f:36:89:50:31:
fc:19:13:3a:b6:59:23:f1:00:00:22:70:b8:df:c5:
18:c9:a2:24:9f:f8:f0:db:bc:18:4e:ff:e2:85:d7:
d1:6b:75:68:5a:96:ea:ae:39:b0:a5:f3:ce:d1:5a:
26:d0:a6:72:60:d0:29:27:01:70:39:3c:86:b2:3e:
34:98:c5:29:0a:3c:4c:5e:81:88:13:75:ff:09:40:
95:85:74:38:6e:52:78:03:c4:c2:b7:e5:8d:9a:8c:
66:19:ef:05:7e:d9:6a:96:d4:e5:b3:a2:c8:18:d6:
ee:e1:42:16:05:8b:d2:64:00:89:64:dc:9f:dc:51:
f8:84:32:a8:2b:87:9c:d8:96:c4:64:34:f2:7e:a4:
bf:fe:aa:0b:14:a8:7d:93:ec:45:4c:1e:3d:1b:bd:
83:53:e8:8c:77:d1:15:02:de:07:88:59:82:83:5a:
60:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:05:DF:D4:AB:12:35:50:CD:A1:72:76:96:38:0B:DD:DE:51:BB:B5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/owXf1KsSNVDNoXJ2ljgL3d5Ru7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.68.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:9e:ae:8c:79:6f:8b:c0:7a:85:d3:9a:7b:4a:f9:4d:f7:92:
65:23:40:7f:47:94:6d:81:af:02:07:16:0c:5c:a9:45:9f:46:
71:87:c6:24:11:df:24:2b:64:96:a8:c4:6f:d1:6f:b2:fe:da:
a2:68:4d:b4:78:8f:02:62:6d:81:9d:aa:e3:d9:3d:b3:b3:76:
9a:4a:42:87:e7:9c:e8:ee:a2:ec:7a:f9:77:55:6a:92:4a:03:
92:bf:3d:11:10:d0:b7:f6:71:78:ea:e2:fc:31:fd:1f:dd:2c:
37:b7:bd:dd:68:47:04:c8:c6:e5:93:1c:42:61:69:22:df:1e:
c4:3c:cf:88:1d:2f:1f:28:4b:b0:5b:a3:ab:83:87:6c:fe:74:
14:5e:a8:81:85:24:1c:01:18:10:d7:ba:9f:ee:e6:2f:4d:c0:
c2:db:9c:50:83:9b:a3:c2:c8:d4:4d:38:25:04:13:67:50:ff:
68:17:4b:6e:b0:c8:88:10:27:d2:db:2e:cb:b2:5e:1f:d0:fd:
b3:90:f5:e5:a7:73:30:3a:96:01:a9:f4:15:a6:7c:29:c3:f1:
de:59:73:6a:98:47:80:b1:f7:6c:27:46:ea:ca:ff:af:2b:39:
b4:4d:bd:38:80:a9:44:59:79:e2:b0:47:f0:45:50:81:de:f0:
f0:11:9e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org