Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xHY8HEEysrmc_1vqCizD7KWZeHA.roa
File: xHY8HEEysrmc_1vqCizD7KWZeHA.roa (raw, json)
Hash identifier: XSxkCZ3d4JEjmg6uRz3BqhZ2vmBxLfbpl4P8tt+P4jE=
Subject key identifier: C4:76:3C:1C:41:32:B2:B9:9C:FF:5B:EA:0A:2C:C3:EC:A5:99:78:70
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xHY8HEEysrmc_1vqCizD7KWZeHA.roa
Signing time: Thu 15 Sep 2022 02:52:50 +0000
ROA not before: Thu 15 Sep 2022 02:52:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C4763C1C4132B2B99CFF5BEA0A2CC3ECA5997870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2d:6b:e1:fc:0b:3b:28:d8:05:a5:e5:31:d8:
c2:f1:5a:43:d1:01:8d:fb:e5:9e:0a:aa:d9:c1:2a:
7e:08:f8:1c:31:96:09:f1:1f:9c:2d:ce:c5:c6:4f:
7c:91:9c:99:a2:0d:cf:d5:8d:f7:e3:72:04:4f:da:
89:04:ae:d8:cc:9b:38:f5:c5:0e:ce:93:2e:22:88:
22:9d:52:cd:ea:d2:7e:85:f4:13:94:f4:e2:37:db:
c9:56:c9:a0:f6:03:9a:14:cd:23:60:5b:f0:a9:b5:
49:17:62:4d:cd:e2:b9:1d:5a:d7:e2:82:61:38:4b:
a3:38:61:2f:82:a9:ac:b1:f5:10:7a:2f:1b:e3:ca:
f8:dd:46:93:58:2c:b8:32:be:11:dd:fb:b2:e8:56:
29:c0:2f:ac:0b:bd:1d:67:13:04:d5:e8:73:c5:a6:
43:f5:5e:0e:7a:ec:7c:f7:b9:bd:3d:e7:b0:de:b5:
8e:08:5b:14:a6:10:bb:f7:76:db:39:52:06:bb:05:
dc:18:2f:7a:bb:2c:fd:a7:4e:8a:1a:d1:07:c2:3c:
61:71:68:ab:5b:9d:87:4e:9b:10:b7:5e:ac:66:b7:
18:24:08:f0:d0:23:83:b0:43:79:79:10:62:0f:c3:
37:5e:43:d0:dc:cf:e4:79:12:c0:0c:75:24:be:26:
b9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:76:3C:1C:41:32:B2:B9:9C:FF:5B:EA:0A:2C:C3:EC:A5:99:78:70
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xHY8HEEysrmc_1vqCizD7KWZeHA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.128.0/19
Signature Algorithm: sha256WithRSAEncryption
44:bc:7c:dd:c0:14:0d:5b:78:45:dc:31:d7:5e:0c:f0:8e:c8:
b4:31:71:3f:52:82:0f:6b:46:06:f6:ba:d3:1c:17:58:4b:86:
6c:5f:a0:2a:df:7c:d7:ab:fb:b1:aa:51:51:eb:87:23:4b:2e:
9b:e8:a5:bb:9b:09:62:0d:4a:fa:95:65:7c:e1:c8:d4:7a:2d:
21:d8:84:d6:4d:da:59:c9:a1:08:21:ef:2b:91:b1:c9:a0:32:
f0:15:05:1d:4c:65:65:b5:46:48:f9:53:a9:4f:21:ef:60:3f:
30:cd:b5:60:55:b8:bc:07:3f:06:ad:b5:47:21:8e:19:aa:a5:
e9:19:e4:39:8b:b2:ea:48:51:98:f2:70:c4:da:bf:a9:3c:99:
4d:be:5e:e2:e8:10:1b:25:ba:37:22:bb:99:d9:86:b3:cd:5c:
4f:57:ae:ff:56:72:09:77:f8:0a:f4:b8:76:7f:d2:c1:cc:df:
de:f3:99:4f:91:d7:2a:8a:ed:e3:58:13:62:20:d7:63:ee:32:
e3:4d:28:2b:74:65:ea:3a:91:75:2e:e9:2c:b2:88:31:e3:30:
f0:7f:6c:63:e2:6b:44:0b:9f:b7:d0:3e:21:5e:87:57:bc:c3:
73:ec:9e:9b:91:03:ef:27:51:a1:a1:5c:48:ca:a3:55:47:50:
b7:5c:1c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org