Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tN1CD2SmX6iTt1iWyVWZvbOXylI.roa
File: tN1CD2SmX6iTt1iWyVWZvbOXylI.roa (raw, json)
Hash identifier: oYmYq4GTdnDOGvLQrLKmGdQmWQ4LsB9Zm8uruiy47d4=
Subject key identifier: B4:DD:42:0F:64:A6:5F:A8:93:B7:58:96:C9:55:99:BD:B3:97:CA:52
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B33
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tN1CD2SmX6iTt1iWyVWZvbOXylI.roa
Signing time: Wed 29 Sep 2021 02:46:17 +0000
ROA not before: Wed 29 Sep 2021 02:46:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6963 (0x1b33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B4DD420F64A65FA893B75896C95599BDB397CA52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e3:a1:a1:5b:05:f3:07:08:c3:c3:91:3c:0e:
3b:e1:0b:da:18:52:cc:fe:fc:2d:6d:dd:f7:7f:28:
fa:c1:a4:41:eb:59:25:57:4a:1a:a7:ef:b0:66:65:
17:8a:89:86:e8:ab:57:14:50:9a:0a:35:47:c9:2e:
82:78:aa:13:8a:80:bb:23:5c:2d:40:fd:14:51:d4:
37:7a:0e:ad:6d:02:b3:f0:28:19:ff:1d:59:55:68:
4d:9f:48:97:90:ae:50:b1:f5:6e:31:7b:d9:e1:a5:
f5:6e:19:9f:93:c2:0c:28:8b:db:c7:b4:fd:35:31:
37:18:80:7f:4f:d5:a9:e7:f0:2d:aa:ab:cd:7e:91:
58:85:26:2c:56:0a:cb:25:21:8b:04:a7:6a:02:dd:
2b:91:40:8c:f7:58:09:01:5b:ce:b1:df:d4:26:1a:
ee:7f:a4:dc:ea:de:c0:3c:79:3d:90:22:c9:97:b2:
c1:36:a6:8a:70:a2:e8:a2:a4:bc:c6:1d:94:c6:ce:
87:54:f5:90:32:f1:df:5b:74:05:8b:2c:68:37:4b:
ee:38:d6:6d:19:d4:10:1b:d4:9b:68:12:95:c5:67:
31:72:e5:c8:71:30:3c:a3:e2:ff:39:a8:67:87:bc:
33:bb:e5:8b:64:c4:83:09:e9:54:3d:34:68:60:89:
e4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DD:42:0F:64:A6:5F:A8:93:B7:58:96:C9:55:99:BD:B3:97:CA:52
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tN1CD2SmX6iTt1iWyVWZvbOXylI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.72.0/21
Signature Algorithm: sha256WithRSAEncryption
40:f8:a5:c4:12:4f:5d:0c:2e:67:83:18:9a:db:d1:e1:2c:50:
ca:00:71:aa:df:06:d1:20:e5:4f:1f:a9:74:cb:52:cf:1c:55:
66:a3:db:9d:2f:ef:1a:71:4a:d0:53:59:16:bf:c2:59:ad:df:
fc:d5:af:43:e3:7a:47:bf:68:87:fe:95:d4:2c:62:99:fd:d8:
78:dd:bd:8d:14:e8:9b:3d:32:42:ff:5e:1a:13:81:e8:11:bc:
d1:7f:bf:36:9c:92:4b:3d:95:3a:40:fd:9b:e4:32:35:91:77:
3e:b9:4f:63:e3:6e:40:d7:ee:44:3c:28:dc:3e:62:fd:bc:33:
95:9c:aa:52:f8:13:be:11:44:d9:34:96:08:33:9a:01:22:39:
c3:03:17:f4:20:f9:fb:ee:a4:3a:a7:20:1c:6d:34:1a:17:3c:
45:1c:be:78:cf:73:37:10:5f:1f:b6:68:b8:61:d2:06:15:07:
b1:d1:c2:a7:fe:66:24:61:ba:87:62:fd:1a:19:1d:07:ac:e6:
67:df:b4:55:4b:d0:ca:a1:2e:a7:f8:02:b0:22:55:da:61:75:
9f:20:6a:3a:79:f6:70:ba:1b:01:35:07:3c:bc:3e:c2:92:bd:
d5:a8:1d:6a:31:1f:db:38:a6:67:26:a4:cc:a6:7d:09:ef:74:
7b:83:31:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:29 2023 by rpki-client on console-ams.rpki-client.org