Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tN4I5MnOv8-fGxv2N5WNyVpVCEI.roa
File: tN4I5MnOv8-fGxv2N5WNyVpVCEI.roa (raw, json)
Hash identifier: 3aeZEKBfM0t34txq/7DRfrzBmOi1lqIW0urWNdut1pg=
Subject key identifier: B4:DE:08:E4:C9:CE:BF:CF:9F:1B:1B:F6:37:95:8D:C9:5A:55:08:42
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D87
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tN4I5MnOv8-fGxv2N5WNyVpVCEI.roa
Signing time: Tue 29 Sep 2020 09:54:40 +0000
ROA not before: Tue 29 Sep 2020 09:54:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.237.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3463 (0xd87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B4DE08E4C9CEBFCF9F1B1BF637958DC95A550842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:06:b6:29:9a:28:cf:50:29:8e:14:e3:97:93:
6a:0a:ce:54:9e:87:82:4f:35:24:b0:d4:0f:9d:02:
0e:25:bc:1a:05:3c:76:06:a2:36:31:dd:69:cb:92:
a4:d2:98:3e:e7:a1:80:bc:ef:bb:fe:74:6e:db:d4:
f3:7d:47:bf:ec:b5:e5:a3:89:18:d6:42:f1:3f:31:
74:fb:b7:c3:fe:63:c5:be:e0:23:d0:6e:1d:ae:a6:
12:48:6f:68:e1:33:c5:01:f2:c1:5b:87:47:9f:4f:
d8:66:b1:1a:d9:12:3b:71:e2:c7:c2:1e:49:61:9d:
5b:61:4a:b1:05:2c:f4:65:0f:0c:8a:90:6b:b9:47:
c0:4a:37:8a:f4:95:ab:cf:a6:f5:f5:30:22:0a:fe:
4e:c9:e8:6a:ed:41:25:79:40:c4:3a:09:4d:f7:5d:
a3:50:f5:52:55:07:b1:5d:a3:97:f1:f3:54:87:5b:
41:16:d4:3a:06:11:25:42:aa:45:b2:79:5f:ce:5d:
c5:71:bf:ce:25:fe:61:d0:b5:a4:45:6e:1c:48:1a:
13:54:96:86:0a:a5:0d:c3:03:2e:40:04:22:6b:bb:
77:c2:a7:d0:81:cd:8e:bf:78:74:04:d3:10:0a:56:
d3:5b:08:c6:94:00:32:5c:ba:f6:3b:3e:5f:2f:f6:
d9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DE:08:E4:C9:CE:BF:CF:9F:1B:1B:F6:37:95:8D:C9:5A:55:08:42
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tN4I5MnOv8-fGxv2N5WNyVpVCEI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.237.128/25
Signature Algorithm: sha256WithRSAEncryption
6b:e3:8c:36:98:eb:2d:d9:9b:f1:57:74:0a:34:d0:b6:fc:f6:
72:60:5c:78:c5:9e:67:75:6c:de:e2:55:57:93:ec:b0:38:07:
7c:39:4a:37:ac:4b:96:30:ce:72:9d:69:b4:41:9f:22:0c:03:
86:e6:2c:79:c3:e2:d4:4b:56:f6:7a:11:14:36:ce:ed:77:7a:
b4:30:d3:d1:40:e8:2d:1d:e0:e0:74:be:f5:e2:18:61:2a:84:
3d:d6:ef:a0:fc:fa:52:fb:0e:f9:aa:84:e6:0e:6f:52:14:d5:
85:fb:fc:e0:fe:95:78:03:5c:ee:0f:97:29:2b:39:4e:89:e2:
21:67:f4:41:41:07:96:c3:ec:ef:59:32:91:5b:ab:a6:a0:8f:
09:f3:a6:49:c7:5e:aa:2a:ea:1f:88:18:8c:be:06:11:8b:2e:
6d:51:c5:b9:2c:29:50:a1:ca:96:73:a8:9e:70:22:5c:db:81:
4e:1c:21:95:50:5b:3d:68:4e:d5:fa:1a:a1:36:ae:e8:ea:05:
2c:d3:20:4d:dc:f6:82:66:64:d0:26:4c:80:97:64:2b:79:95:
a3:15:d5:2a:3c:82:1c:58:ac:85:34:e1:7d:94:6f:52:ea:e5:
f6:b9:81:12:ee:fc:39:df:3d:f1:ff:ef:04:25:d9:ee:a6:d4:
3f:26:f8:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:29 2023 by rpki-client on console-ams.rpki-client.org