Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qPeickbeY9jIimQ_XBxH0DXwWnw.roa
File: qPeickbeY9jIimQ_XBxH0DXwWnw.roa (raw, json)
Hash identifier: L7U6cMFJ8lJRl8Kai4W2h40EBF9S2USs+AeA2R71sSU=
Subject key identifier: A8:F7:A2:72:46:DE:63:D8:C8:8A:64:3F:5C:1C:47:D0:35:F0:5A:7C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20B0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qPeickbeY9jIimQ_XBxH0DXwWnw.roa
Signing time: Fri 25 Nov 2022 04:39:00 +0000
ROA not before: Fri 25 Nov 2022 04:39:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8368 (0x20b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8F7A27246DE63D8C88A643F5C1C47D035F05A7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:f6:75:10:3f:f3:d1:ea:30:94:e6:19:15:
96:57:b0:51:5b:e2:f3:fc:f2:b5:f9:75:64:66:55:
ed:84:9e:df:bc:f4:66:a3:29:d7:77:86:2a:77:07:
e0:f9:66:fc:3a:5b:1e:ab:2c:58:45:0a:f7:e0:c3:
9a:70:70:b1:11:12:52:78:e4:76:76:ee:ab:47:19:
79:64:e9:4b:e8:da:f2:08:a3:a6:de:70:3a:ff:6a:
5e:d2:90:e3:bd:d4:c7:0f:86:ed:33:86:ec:6c:e6:
0b:1d:0b:6f:ca:1e:f6:5a:25:61:96:1d:de:b0:d4:
bf:77:11:a3:de:33:a7:20:90:9a:22:1f:8a:42:6e:
46:3e:8e:8c:cd:bc:4b:04:90:66:60:0d:29:d9:d1:
6e:93:ab:0f:61:67:2c:33:e1:5e:78:6b:b9:42:4d:
05:5a:75:5d:60:73:be:7a:a2:6f:1f:e7:26:55:c7:
58:4c:5b:c1:dd:90:d0:c5:45:58:95:fe:4f:ee:a6:
28:78:f5:82:b3:6d:f1:49:a7:46:4e:81:d5:55:56:
aa:04:a9:74:72:62:ff:f7:9d:b8:54:b3:e5:29:75:
c8:0c:c3:fb:0a:b9:c5:d1:25:df:82:44:f6:c7:3a:
1c:ba:31:31:8e:89:b2:35:6a:9e:77:d5:0b:98:3c:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F7:A2:72:46:DE:63:D8:C8:8A:64:3F:5C:1C:47:D0:35:F0:5A:7C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qPeickbeY9jIimQ_XBxH0DXwWnw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.72.0/22
Signature Algorithm: sha256WithRSAEncryption
04:22:84:a9:47:09:46:b0:ab:f1:86:aa:5f:a4:83:98:63:ba:
06:9f:a2:1c:09:c6:1d:35:bf:5c:44:70:fb:77:f5:70:54:ce:
18:a9:af:3f:06:d5:a8:df:c2:a5:16:c0:11:50:52:57:ac:f8:
a9:c2:dd:9e:af:74:59:ab:9f:6e:b1:4c:3f:1b:ad:11:ad:48:
0c:cf:c7:63:d4:6d:43:95:1b:bd:d8:65:c8:17:92:e6:59:2d:
50:01:d1:22:2d:0b:eb:66:c9:b7:c7:57:d5:3a:cd:19:c4:62:
41:22:ac:43:0c:22:a3:20:ee:c8:1b:42:c6:81:9e:db:06:20:
80:58:7c:f5:d2:5b:58:4c:c4:e5:05:60:ee:05:fe:74:fa:6b:
bf:a7:6a:cd:29:28:74:ab:f2:0a:66:42:d3:d0:d5:80:3a:e6:
91:22:c4:f5:bc:68:5e:1d:59:d9:3c:1d:bf:3b:a6:4c:3e:a6:
4d:2b:96:05:f6:b8:14:2e:b6:9a:d5:2b:a6:0c:f0:fe:ba:f8:
c9:12:0a:70:6a:7b:2c:1e:09:67:49:d0:3e:8b:fa:cc:f0:7d:
e8:b3:17:e5:f2:f6:1d:5c:99:03:fa:71:4c:e0:7c:0e:47:6d:
70:4b:dd:d3:ad:1b:55:df:67:9d:e3:06:74:7c:85:e2:2f:5e:
62:87:2e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org