Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ypR3MrdM0NAgrX4ohzRHNmxpwTs.roa
File: ypR3MrdM0NAgrX4ohzRHNmxpwTs.roa (raw, json)
Hash identifier: idvsmF1u9OzEHy3Uf0o9s0yHT4J3Da3ZzOl+HQFTTOc=
Subject key identifier: CA:94:77:32:B7:4C:D0:D0:20:AD:7E:28:87:34:47:36:6C:69:C1:3B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0EEE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ypR3MrdM0NAgrX4ohzRHNmxpwTs.roa
Signing time: Tue 29 Sep 2020 09:56:18 +0000
ROA not before: Tue 29 Sep 2020 09:56:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.205.0/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3822 (0xeee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CA947732B74CD0D020AD7E28873447366C69C13B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:da:87:8d:ad:90:f8:6f:43:40:b2:2d:7c:b6:
70:6e:34:c6:eb:41:99:15:c1:bd:df:06:90:0c:0d:
be:b0:46:26:05:f9:5e:eb:3d:32:61:a2:cf:33:07:
ef:82:6e:ba:48:e8:5f:e6:b6:fa:8f:72:01:70:14:
46:f8:a7:f4:56:0d:47:ca:be:83:e2:7a:48:64:96:
92:79:26:17:c9:85:8d:81:32:12:d9:6d:84:9e:f3:
15:45:c6:16:fd:26:f8:53:fb:5a:19:18:b5:07:42:
3b:05:aa:cc:58:72:1a:97:4d:3e:79:fa:51:fe:6e:
75:b8:4b:1e:08:24:1c:b6:fd:16:d0:d3:f4:f2:74:
7c:5e:34:3c:2c:6b:c7:73:aa:b2:41:2a:2d:93:a3:
80:e3:26:78:14:e7:7f:ec:9e:a0:a0:1b:d7:5b:14:
3f:aa:6d:5c:55:4c:35:3a:39:fd:b6:36:a2:d2:a2:
d5:69:54:16:90:de:60:8b:e6:c6:49:b3:99:af:94:
59:dc:09:ae:13:b2:c0:0f:a2:93:84:df:3a:d9:88:
1d:56:2f:d1:58:b2:2a:23:4a:89:62:90:99:3c:a4:
29:34:d5:ca:a6:6b:67:33:17:1f:66:75:4f:c8:eb:
eb:0d:59:f4:7f:3d:dd:5e:91:68:56:45:af:50:f9:
bc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:94:77:32:B7:4C:D0:D0:20:AD:7E:28:87:34:47:36:6C:69:C1:3B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ypR3MrdM0NAgrX4ohzRHNmxpwTs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.0/28
Signature Algorithm: sha256WithRSAEncryption
7c:49:31:67:ce:1e:b8:1a:d1:ab:da:97:57:27:a3:c2:95:b9:
05:dd:67:54:7f:6f:33:47:6c:84:98:8a:d7:49:1f:c5:e5:c3:
62:10:ac:75:c1:b7:82:24:ce:36:6b:e1:b0:d3:93:8e:6e:2a:
05:f3:f7:28:ce:6c:e4:4e:6d:ab:12:f7:d8:17:59:9a:88:02:
09:9f:d2:08:1f:7e:6d:58:b0:60:b0:8c:f1:6e:ec:03:25:ab:
25:6d:05:ba:00:11:75:55:b2:f0:7e:b3:b3:83:90:71:ed:0a:
a0:bb:9f:91:2b:d7:d2:51:87:d2:36:6e:f0:4b:2e:8b:96:7d:
fe:3d:2b:14:c0:e5:ef:88:20:a1:a7:ca:f4:63:6e:2e:63:ca:
6b:ee:1b:90:07:1c:31:7c:4c:d5:57:db:ab:b9:73:e5:22:03:
9d:f0:74:ad:ac:02:8c:30:73:d4:a5:5c:de:97:1a:8b:26:6a:
64:13:5c:09:c0:22:f8:0e:29:4b:4e:82:05:bf:8a:57:63:bf:
4f:b1:db:03:2a:cc:97:bb:36:e0:cd:87:f9:8d:21:69:11:ac:
db:7a:76:2a:15:bb:1e:2f:ac:87:54:21:e6:8b:d9:ae:1b:ec:
ea:1b:f2:86:9b:89:dd:9a:b1:e8:79:7b:3f:58:f6:a7:1e:1f:
20:2f:37:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org