Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wq7O_BxKnw5mXd8-x_lsNyrnC_I.roa
File: wq7O_BxKnw5mXd8-x_lsNyrnC_I.roa (raw, json)
Hash identifier: L9iUe+qGA6q6gtPu9J4h5b3sPvkm0GZu/R9i2NGZEnQ=
Subject key identifier: C2:AE:CE:FC:1C:4A:9F:0E:66:5D:DF:3E:C7:F9:6C:37:2A:E7:0B:F2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 15B1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wq7O_BxKnw5mXd8-x_lsNyrnC_I.roa
Signing time: Sun 07 Feb 2021 12:06:00 +0000
ROA not before: Sun 07 Feb 2021 12:06:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5553 (0x15b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:06:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C2AECEFC1C4A9F0E665DDF3EC7F96C372AE70BF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2c:66:8e:57:e5:3d:10:51:46:4e:79:0c:ec:
d1:9c:55:12:93:3d:57:c1:2a:af:e8:1e:d7:fb:66:
b4:95:6f:d0:dc:c1:fb:c0:bb:43:1f:9c:10:cc:27:
b4:53:9c:e0:72:7c:ad:ec:d7:1a:cd:d1:aa:13:cc:
e2:2c:45:ee:d7:ec:a3:a0:ec:24:3a:06:2c:0f:dd:
c1:1b:72:11:ae:74:21:79:5a:5d:ca:b3:83:76:c4:
46:2d:cb:11:66:c5:22:4d:c1:3d:11:f6:9d:a4:bc:
6a:f0:95:e3:b4:91:65:d3:a9:1c:ee:2d:aa:20:f2:
a5:c8:fa:a3:29:eb:04:7e:d6:e4:16:2d:81:61:85:
1e:5b:c3:60:bc:b4:c8:3e:7b:28:7c:eb:62:3a:42:
bc:27:4a:55:c4:9d:13:60:28:b5:3a:34:c3:93:32:
ac:7a:10:2d:04:0c:05:65:66:e3:8b:1d:39:2e:e7:
78:30:01:7e:60:6e:b5:8c:b0:34:42:68:2b:bf:34:
24:9a:50:56:0b:c7:86:42:61:b2:82:82:e6:e3:16:
b1:cf:2f:41:5e:54:a5:03:40:e8:c8:94:42:ee:b9:
7d:df:72:ef:b3:37:69:1e:bf:55:09:bb:67:77:12:
d2:6f:9c:22:fa:c6:87:25:f3:9c:d9:73:ab:7a:a4:
3a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AE:CE:FC:1C:4A:9F:0E:66:5D:DF:3E:C7:F9:6C:37:2A:E7:0B:F2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wq7O_BxKnw5mXd8-x_lsNyrnC_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.108.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:ca:56:76:c9:da:85:4a:12:5b:88:d6:16:54:46:f9:7f:3e:
13:b2:d9:7e:19:14:5a:4b:a3:af:97:a8:c1:f4:02:d9:35:76:
4f:30:61:c6:15:55:43:e0:6e:ce:b4:f2:9c:6d:69:15:92:d8:
22:84:3b:07:e3:48:1a:24:a7:7b:39:74:b5:13:4d:d3:24:90:
0f:e5:15:7f:2f:c9:5b:87:5f:c0:32:c5:ef:b3:48:c4:7a:90:
57:c4:93:b8:a3:61:be:4f:ef:3c:cb:53:71:92:a1:5a:b0:76:
6c:64:84:3b:f1:58:2e:ac:f2:d6:28:06:f3:1c:d9:13:c3:c4:
24:2a:43:fd:06:56:6b:92:eb:4a:1e:92:c4:d6:3f:73:8f:bc:
48:1b:43:37:c8:62:f6:95:02:a2:c9:dd:0c:b4:fc:7f:e4:8b:
39:82:a0:95:08:5f:3d:c6:7e:75:a5:67:a9:13:6a:ef:f8:a4:
bc:6a:9d:88:e2:33:a1:1f:c9:60:e6:0b:44:33:60:8d:f0:42:
d7:7d:1f:6e:97:fa:c3:5c:94:12:93:71:f0:bf:52:7b:18:ee:
15:5c:da:f4:ca:d7:67:be:e2:4a:91:2c:e4:a6:95:5d:59:e2:
c8:82:05:93:12:5d:f7:50:ed:a8:d5:5a:f3:07:5a:6f:40:23:
5e:b9:f1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:31 2023 by rpki-client on console-ams.rpki-client.org