Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xfkeOUxIIaiaY7ETt0swd3sO7mk.roa
File: xfkeOUxIIaiaY7ETt0swd3sO7mk.roa (raw, json)
Hash identifier: rO1lCof3u7fs99bxzEC+/3a+2yyF6/NhXD6oBWfvBFA=
Subject key identifier: C5:F9:1E:39:4C:48:21:A8:9A:63:B1:13:B7:4B:30:77:7B:0E:EE:69
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CF1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xfkeOUxIIaiaY7ETt0swd3sO7mk.roa
Signing time: Wed 29 Sep 2021 02:48:25 +0000
ROA not before: Wed 29 Sep 2021 02:48:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7409 (0x1cf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C5F91E394C4821A89A63B113B74B30777B0EEE69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:a6:99:16:c8:ab:d3:2e:13:fc:ea:e0:6a:
18:b4:02:65:89:95:f2:54:24:71:0c:d2:12:cc:19:
e9:34:04:00:0c:2a:fe:31:05:17:de:7b:4e:6a:38:
51:3b:2c:cb:8b:f7:36:4d:5c:d8:42:dc:1e:f2:0b:
41:89:8e:41:3a:1f:e1:03:dc:d4:0d:fc:53:c9:89:
73:5d:6f:31:8d:97:60:e4:a6:44:f1:82:3c:45:e4:
c6:96:19:09:9c:5f:c1:2e:13:1a:55:da:14:ea:fc:
0d:51:ea:07:2d:33:1c:a3:f1:73:7d:26:fa:f4:77:
9c:9b:87:35:dc:64:a3:23:bf:aa:1a:85:c9:38:c8:
c9:0b:5a:1c:54:b3:3e:35:74:bd:90:a6:bb:ce:a6:
5c:98:61:35:92:54:37:f1:f8:99:6e:20:e2:01:6a:
6b:6b:99:33:87:17:30:4f:9d:cc:50:48:4c:5b:f3:
0e:05:eb:c6:c4:f3:43:a3:2a:64:8a:4a:c6:de:07:
9d:99:a4:ec:ac:75:4f:87:e4:92:36:fe:35:40:9e:
54:c0:20:87:e8:fa:23:3a:68:57:a0:85:a2:8f:f0:
3d:31:ea:08:40:2f:7c:4f:2f:7a:34:85:82:f9:a3:
89:ca:ff:da:f6:05:e0:f0:30:39:63:ba:3e:dc:54:
77:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F9:1E:39:4C:48:21:A8:9A:63:B1:13:B7:4B:30:77:7B:0E:EE:69
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xfkeOUxIIaiaY7ETt0swd3sO7mk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.156.0/22
Signature Algorithm: sha256WithRSAEncryption
53:3b:69:46:a2:50:35:34:ee:8d:3f:ad:de:22:81:d4:b8:47:
ba:68:ee:39:72:7f:eb:9f:88:ef:b3:21:97:4d:c2:7e:2b:6f:
e5:68:bb:f1:de:9f:07:66:9b:73:83:d1:41:25:96:59:11:22:
53:7a:9e:3c:83:07:d1:cd:01:26:8b:1c:99:ab:8a:ea:bc:29:
3d:12:b5:58:d1:48:d9:8f:9b:3a:3f:94:44:a9:dd:d6:84:af:
eb:c2:9c:04:23:8f:f7:a6:5a:c3:3c:0b:28:ac:40:9e:ab:47:
7f:ea:c8:72:c7:43:33:7d:35:41:61:14:33:e0:7f:39:df:15:
1c:59:af:d8:5b:9b:fa:64:b2:45:a1:1d:f2:f9:14:61:8e:89:
47:96:d2:cc:83:16:dc:f3:28:79:13:b0:ed:eb:7c:d8:8f:5d:
33:76:d5:20:87:e8:cf:6c:1e:7d:1c:50:d9:a7:80:b7:fe:38:
ad:ee:b7:eb:15:54:c4:44:a5:1c:47:c3:fc:4d:d5:5b:ba:e1:
bd:be:95:e2:17:ad:e3:dd:7b:f1:72:87:ae:78:11:79:70:52:
2d:bd:15:67:62:04:57:58:4e:f0:4a:ea:38:11:b3:06:c1:24:
56:3b:d2:80:8f:ee:cc:b4:35:05:aa:76:ed:16:26:35:20:c2:
7c:56:c7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:42 2023 by rpki-client on console-fra.rpki-client.org