Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa
File: yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa (raw, json)
Hash identifier: B4I8jSr3hvzpNM7LJA58+YD8QyS7/ViqB+VaIIEgbOs=
Subject key identifier: C8:2F:E6:C0:D6:EB:1A:9F:4C:99:AF:DA:F6:5B:05:11:82:BA:05:21
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 18FB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa
Signing time: Sun 07 Feb 2021 12:55:49 +0000
ROA not before: Sun 07 Feb 2021 12:55:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.195.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6395 (0x18fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:55:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C82FE6C0D6EB1A9F4C99AFDAF65B051182BA0521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:06:a4:a5:1a:0d:03:1c:93:b1:eb:5d:a5:53:
e7:1a:cc:d3:00:b6:b7:ed:3a:57:1e:aa:5c:9c:d2:
d6:ed:8d:bb:3b:51:dd:ae:2a:14:6b:0c:49:65:17:
0f:fe:a9:b3:0e:53:71:4c:68:97:d3:a7:56:fc:73:
a6:be:0e:3c:e6:0b:21:3f:d7:b2:8e:db:5a:3d:8c:
86:fb:ba:72:82:5a:6e:37:6c:74:a6:fd:9e:c8:35:
c4:5b:08:1c:11:16:3a:1a:e3:b8:8a:04:72:d3:35:
a8:08:85:0c:ed:20:17:1a:fe:36:37:5b:c8:d6:1d:
13:45:da:16:3f:10:44:dd:3e:ee:fd:6f:e8:89:09:
28:8a:68:9c:33:c9:35:44:cc:9d:4d:bd:3e:78:ad:
d4:2f:bc:d3:b9:5b:34:36:f8:a3:f7:bf:f5:91:5c:
f5:fa:6c:7e:d5:3f:f5:56:05:f5:42:7c:37:ec:57:
23:fe:55:1e:29:ca:bb:67:08:16:f3:9e:58:d6:af:
d0:48:a7:78:2c:28:44:a3:1f:b9:56:6e:10:f3:36:
d6:6f:08:0b:a5:fb:c6:1d:69:de:e9:45:c0:f5:60:
b8:99:8d:5d:24:52:fa:d3:0c:6c:6a:90:52:e5:8e:
8d:c4:37:53:74:19:30:aa:16:46:5c:3b:89:3f:83:
85:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:2F:E6:C0:D6:EB:1A:9F:4C:99:AF:DA:F6:5B:05:11:82:BA:05:21
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.128.0/19
Signature Algorithm: sha256WithRSAEncryption
3f:66:c2:75:9c:ce:33:0f:db:3d:53:e8:66:18:d4:9f:0b:c5:
24:10:1a:2c:63:04:42:11:71:d9:b2:63:e8:b3:ec:dd:e0:cd:
42:26:0f:8d:b2:04:03:26:13:b9:1a:8c:56:20:7e:d9:c8:ff:
7d:a1:e7:d3:25:be:2e:a8:20:b0:83:eb:a0:ad:40:b7:e9:6c:
f8:3b:50:16:fe:ef:50:b2:b2:f9:6b:96:c5:39:f5:94:6e:80:
c7:2a:27:b0:45:e1:f8:43:a8:b9:9f:31:4e:e3:e4:72:16:2a:
08:c2:1a:63:0b:6a:bb:0f:14:b5:b8:17:6f:43:de:ce:ae:e2:
fd:2b:a0:07:4a:ed:80:37:c3:2a:7e:bb:4c:52:ce:5d:b1:10:
f6:dd:7c:bf:0a:f8:9c:73:b4:20:10:e9:8a:79:3f:a6:5e:41:
55:59:2b:30:aa:4e:8c:ac:57:df:b2:34:b4:05:d2:a2:9c:fa:
1b:b7:15:2a:25:31:90:a1:92:02:e7:f1:44:9d:52:e1:b8:95:
9c:71:57:5a:a3:85:8b:c5:6a:78:a7:33:05:17:b8:af:df:c3:
c0:9a:5b:2d:bb:e0:fc:73:89:f2:9e:0e:66:03:be:b0:17:56:
0d:92:d2:01:c4:31:ee:0a:10:98:91:55:31:07:a9:c0:a8:e5:
c7:40:c4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:31 2023 by rpki-client on console-ams.rpki-client.org