Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/p3AyaAMaLKuMmYqyiWQO5i6eKKc.roa
File: p3AyaAMaLKuMmYqyiWQO5i6eKKc.roa (raw, json)
Hash identifier: Aiy7TS7Ovrb6BwBQEbXcfpRWKd2ZZcuOJI7Puf8ae3A=
Subject key identifier: A7:70:32:68:03:1A:2C:AB:8C:99:8A:B2:89:64:0E:E6:2E:9E:28:A7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BB8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/p3AyaAMaLKuMmYqyiWQO5i6eKKc.roa
Signing time: Wed 29 Sep 2021 02:46:54 +0000
ROA not before: Wed 29 Sep 2021 02:46:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.9.64/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7096 (0x1bb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A7703268031A2CAB8C998AB289640EE62E9E28A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:61:23:b1:24:52:ab:cc:f3:68:e6:ec:84:3c:
1e:24:8f:dd:b0:46:9f:2c:67:df:f4:1d:d0:38:82:
22:54:e0:f9:81:4a:fa:38:a6:97:64:b3:50:86:b7:
02:bd:e7:00:53:23:2d:9f:ee:13:47:9a:91:d8:f4:
69:45:13:2b:cb:74:2c:94:3c:fb:35:5f:b4:ef:1a:
a3:be:1f:f9:6f:dd:18:f8:b8:ff:57:03:ac:35:66:
cd:b1:cd:71:17:40:64:6f:97:dc:08:a0:75:e4:25:
4e:09:6c:ad:1d:80:e0:5f:0d:83:66:34:e6:fa:ac:
e9:68:6d:61:f3:79:44:fc:ec:d0:b0:b6:fc:83:a3:
cf:d1:b9:32:25:53:4a:ab:b7:be:8e:78:d6:e9:76:
56:b7:87:96:4b:9f:62:c8:ae:b7:3b:0f:99:b0:40:
cb:3e:31:52:2a:19:45:07:66:9a:6a:99:07:03:06:
7c:be:bb:08:03:35:ef:90:17:5c:1e:03:9c:03:df:
55:6f:2b:89:f7:a6:d8:63:30:4f:0e:e1:da:2d:f7:
70:75:79:9d:f5:64:15:b1:9c:dc:cd:13:e3:d1:bb:
14:49:01:b1:2d:41:b9:95:58:fe:17:30:e4:03:d8:
bc:c3:44:55:ee:41:50:bd:02:42:9b:3c:f0:97:91:
62:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:70:32:68:03:1A:2C:AB:8C:99:8A:B2:89:64:0E:E6:2E:9E:28:A7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/p3AyaAMaLKuMmYqyiWQO5i6eKKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.9.64/26
Signature Algorithm: sha256WithRSAEncryption
77:64:a4:15:a9:42:fa:aa:26:6c:74:b6:fe:64:24:dc:79:10:
46:3a:a4:65:e0:c6:97:f8:07:97:2f:88:0a:93:24:84:31:4b:
18:d4:a0:f8:fc:bc:27:45:77:e9:5a:65:19:9e:81:ae:db:1f:
26:17:9e:37:5e:d7:a8:5e:a4:d7:2b:95:90:c8:0d:8f:47:45:
5b:52:13:19:0d:94:76:5d:b1:2d:6c:c5:d1:5f:38:16:ce:d2:
68:1b:a6:06:1c:d5:55:b1:ab:b4:7a:ab:92:33:b3:b2:0f:5b:
2b:8c:1c:00:ab:a9:c0:23:a2:cf:e8:5f:9c:4f:5a:2e:0c:62:
66:b4:d1:3c:da:d2:df:4d:a3:5f:83:5d:56:07:01:7d:37:19:
c7:9a:ee:0f:14:41:9a:35:d5:0f:51:ab:88:79:11:57:84:6b:
b2:52:ae:ec:79:ca:b5:fc:91:8f:dd:c9:97:6a:92:79:bd:db:
27:f8:bf:69:90:28:5d:37:39:39:16:f1:6e:4d:a7:6c:da:14:
54:fc:83:53:f8:dc:eb:50:cf:ee:44:6f:42:cf:f5:9b:34:33:
fb:ad:d5:9e:01:2e:ce:6b:96:80:c5:e3:22:15:e2:b0:da:2d:
4f:cd:63:b9:9e:ed:72:92:53:86:01:2a:6e:fd:71:e6:97:b5:
67:9a:d0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:28 2023 by rpki-client on console-ams.rpki-client.org