Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rh0BfpT1WctS5duR2uEXBtjPggk.roa
File: rh0BfpT1WctS5duR2uEXBtjPggk.roa (raw, json)
Hash identifier: HDJbfa4UdEysLsMy6scYOg2p2ZkQ+f+V0k5g1iwNA6Y=
Subject key identifier: AE:1D:01:7E:94:F5:59:CB:52:E5:DB:91:DA:E1:17:06:D8:CF:82:09
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DB5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rh0BfpT1WctS5duR2uEXBtjPggk.roa
Signing time: Tue 29 Sep 2020 09:54:52 +0000
ROA not before: Tue 29 Sep 2020 09:54:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.193.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3509 (0xdb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE1D017E94F559CB52E5DB91DAE11706D8CF8209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bd:eb:f1:e2:c8:a3:63:db:6a:71:70:cb:44:
4c:b1:27:4b:d0:3d:a2:49:4c:fd:e2:f2:bb:4d:f7:
42:cd:20:2d:02:16:04:b5:ae:c8:f6:65:53:0c:e8:
53:0b:50:45:72:14:e8:36:c7:7c:9d:e9:bc:54:d3:
57:17:88:58:b9:e8:05:d6:2c:14:bf:fa:d6:96:05:
44:c0:78:a2:8b:a7:a5:42:52:97:37:bc:02:01:c7:
f8:38:20:12:7e:41:e5:dc:cc:10:10:fe:fb:ce:53:
04:8c:a7:cf:7d:f0:89:30:e9:4f:65:59:4b:17:28:
d2:25:96:ec:17:4c:e7:9f:ee:2d:14:db:ae:68:bf:
c7:1d:2e:1c:b3:4c:37:c7:f4:33:2b:eb:4e:a5:34:
85:70:60:39:f7:4a:ea:f4:64:20:bb:b6:cc:7c:9c:
09:39:d8:e6:04:c8:26:c2:88:56:02:56:c0:08:e2:
4a:0a:10:0d:08:cd:58:59:02:04:43:0d:2a:e9:b7:
27:2c:03:a4:12:80:ab:e9:fd:94:c2:c0:5b:16:e7:
4a:53:29:40:81:c4:6c:c4:bc:11:e2:87:7a:b9:8b:
78:ee:62:7a:59:32:d0:81:da:5d:ae:82:bc:c4:f4:
62:0f:99:81:03:45:82:68:0a:a0:0f:2f:63:73:9c:
b9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1D:01:7E:94:F5:59:CB:52:E5:DB:91:DA:E1:17:06:D8:CF:82:09
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rh0BfpT1WctS5duR2uEXBtjPggk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.96.0/22
Signature Algorithm: sha256WithRSAEncryption
31:47:aa:fc:dd:04:ac:10:76:3b:95:56:fe:91:4a:a1:08:08:
48:83:0f:6f:f3:d2:1e:16:bc:a5:f4:66:1f:56:8a:c6:03:d0:
8f:85:41:ed:57:bd:66:c6:a6:1f:37:10:fd:ed:29:f9:38:a0:
81:33:2c:25:5d:77:03:c8:b3:f8:8a:74:2b:1a:3f:c4:86:a1:
6c:85:3d:8a:9c:c7:1e:5a:87:c2:ac:5b:ae:94:17:d0:69:80:
76:c9:df:5c:02:5c:fd:25:d1:89:69:b5:0d:46:2a:c4:73:89:
65:b8:ad:dc:68:1a:a1:7b:b6:83:8f:9b:08:dc:e6:48:46:94:
b5:50:ee:38:13:28:47:6c:7e:10:94:7a:4b:b5:45:e5:81:cd:
6b:90:c7:93:7f:05:83:fb:01:ed:bd:a3:98:40:a1:9e:c0:ce:
d4:50:31:bc:0e:05:58:11:53:d7:0b:b1:90:f5:83:e8:c3:12:
9b:a5:8b:af:c5:1b:32:c9:3a:e1:d8:78:f3:e3:05:c5:a9:53:
a6:12:5a:25:84:e9:f7:08:8b:14:8e:03:a1:95:c2:a9:c8:12:
be:ae:a1:2b:50:e9:bc:d4:a2:39:61:bf:5d:de:3b:de:24:0e:
3c:5b:31:45:f7:57:1f:fd:21:b5:58:08:de:55:c1:79:ca:ce:
1a:5c:07:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:41 2024 by rpki-client on console-ams.rpki-client.org