Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xeLlYjhAs5a1XF5pG0kSwdPwRCQ.roa
File: xeLlYjhAs5a1XF5pG0kSwdPwRCQ.roa (raw, json)
Hash identifier: JYKbGqAukF5k4t8vz94jsfdLeVQLG5yS27tH0rLAC3s=
Subject key identifier: C5:E2:E5:62:38:40:B3:96:B5:5C:5E:69:1B:49:12:C1:D3:F0:44:24
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21A1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xeLlYjhAs5a1XF5pG0kSwdPwRCQ.roa
Signing time: Fri 25 Nov 2022 04:40:08 +0000
ROA not before: Fri 25 Nov 2022 04:40:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.24.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8609 (0x21a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C5E2E5623840B396B55C5E691B4912C1D3F04424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fe:95:2b:11:fb:c0:8d:b0:60:39:40:23:dc:
b1:d8:93:c0:91:11:a4:1b:43:f2:e0:9a:de:43:ad:
1f:d9:e2:65:79:1a:4e:bd:99:af:a8:be:59:b8:d0:
0c:11:51:b1:8c:45:21:20:af:b5:bf:22:83:e9:13:
cd:e5:d3:b9:3a:fd:de:7c:42:0f:db:94:0d:a9:83:
73:c1:61:2a:75:0a:81:95:91:de:7d:48:a3:35:88:
7e:15:7b:d0:90:84:d7:7f:0f:e9:d8:1e:b5:b9:59:
5b:c6:79:94:4e:00:b2:5f:fc:f2:1c:d8:2e:3b:bf:
f3:bc:03:2a:33:5f:fa:ce:98:43:85:eb:df:ec:f2:
19:34:3c:e2:ae:44:4c:c0:81:da:e6:ee:aa:9a:94:
4c:b6:6e:79:97:7e:75:88:5b:23:0e:f0:c1:d4:9d:
d0:72:1b:4d:29:46:4c:8a:59:17:5b:d3:c8:3a:ab:
ec:65:f5:8b:61:39:18:f3:35:71:e7:30:a3:51:42:
e9:dc:6d:2e:21:1d:5f:99:ba:94:b8:01:dc:b2:91:
04:e4:2b:7f:6c:50:9b:ba:a5:45:76:f6:b5:1f:5c:
3b:8c:06:b3:58:6d:26:e3:45:c6:f2:92:53:f8:cf:
fb:b1:87:27:6e:e6:57:0d:41:cc:a0:89:f2:33:b7:
fe:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E2:E5:62:38:40:B3:96:B5:5C:5E:69:1B:49:12:C1:D3:F0:44:24
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xeLlYjhAs5a1XF5pG0kSwdPwRCQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.24.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:71:e4:b6:08:fa:ff:ac:a7:44:2e:d2:ee:cc:2a:d2:7f:25:
df:f9:f8:7b:f0:47:b7:1f:9d:7b:1e:0e:70:92:c7:75:3f:2f:
56:02:0d:5e:cb:c7:9b:eb:85:ef:4a:f1:18:25:5e:01:6a:09:
f6:6c:0a:a8:29:f5:93:b5:b8:8e:f3:be:68:83:93:57:ba:4f:
c6:1f:f1:f9:31:36:9f:89:da:7a:cc:86:c1:da:33:26:ac:a1:
b8:88:bb:93:41:22:6b:d0:50:44:d3:e1:ef:dd:ce:fb:3c:53:
d6:91:b5:d9:9d:3c:81:93:0f:e5:f6:23:79:c4:92:e7:5f:2f:
67:56:3a:38:ed:cf:a4:50:78:40:84:bf:7b:47:0c:90:e8:8a:
39:52:15:c2:76:c1:49:43:4b:c7:3c:3b:b0:78:5f:1f:43:25:
d7:0e:99:73:7f:ea:55:9e:cb:3b:11:82:23:10:fd:89:7a:81:
22:d5:12:92:f6:c0:92:dd:ce:3d:56:0b:67:bb:16:b9:d9:14:
1e:d6:8c:57:d8:c1:22:cc:cb:6b:86:bf:c7:42:82:a2:2b:97:
3f:7c:32:11:ba:ea:e5:61:52:8e:81:29:ac:c9:57:af:23:9d:
61:b4:60:21:ba:e5:53:c2:72:38:4c:c6:34:64:63:35:e4:dc:
95:66:91:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:00 2024 by rpki-client on console-fra.rpki-client.org