Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z-_bIyW_cPmGNtUT8He0jMz-D8I.roa
File: z-_bIyW_cPmGNtUT8He0jMz-D8I.roa (raw, json)
Hash identifier: E1hT2dOn1czPhu8s2zyI0gCKcCZT5F6x8V/4NY9BMJo=
Subject key identifier: CF:EF:DB:23:25:BF:70:F9:86:36:D5:13:F0:77:B4:8C:CC:FE:0F:C2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z-_bIyW_cPmGNtUT8He0jMz-D8I.roa
Signing time: Thu 15 Sep 2022 02:45:13 +0000
ROA not before: Thu 15 Sep 2022 02:45:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CFEFDB2325BF70F98636D513F077B48CCCFE0FC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7d:31:fc:f5:07:81:8e:a2:61:1b:9f:72:07:
fb:8b:e0:3d:de:5a:d4:c8:86:60:37:d1:0e:11:79:
5c:7b:54:b6:e7:40:72:46:5e:53:83:0e:4e:49:75:
7c:78:7f:aa:a2:ca:2b:51:d4:d8:e9:81:e3:70:70:
28:da:29:22:ff:ce:2f:a6:01:1e:29:6c:d4:f0:15:
f6:9e:82:63:ee:12:d5:84:09:f7:d5:cd:14:dd:c2:
61:f3:54:cc:ed:2b:a3:8c:aa:2d:bd:10:f0:8e:80:
9c:6c:9f:c9:87:5f:cd:aa:d8:23:d7:23:3c:d2:1d:
96:69:5f:75:a7:f0:da:d9:90:46:35:b7:6a:12:ef:
de:27:50:51:9a:9b:cc:9c:88:7e:31:9a:0f:2d:4c:
f8:26:9d:6e:c1:c6:97:dc:a1:f8:8d:72:b9:47:25:
e5:e5:41:70:7d:5e:20:89:fe:48:d4:95:21:02:ff:
4a:0a:22:23:da:8b:8f:0b:58:71:6b:d2:81:86:89:
25:26:30:ab:e8:15:2d:ac:7f:d3:91:6e:7d:e6:ef:
c1:49:8c:6b:f2:65:10:ad:19:a3:60:9a:13:d0:c8:
b3:14:8d:e4:4b:21:bf:9a:fe:65:7f:dd:ed:92:4f:
b0:d9:92:0b:24:45:4c:4d:c1:aa:cd:8f:39:49:9e:
24:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:EF:DB:23:25:BF:70:F9:86:36:D5:13:F0:77:B4:8C:CC:FE:0F:C2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z-_bIyW_cPmGNtUT8He0jMz-D8I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.100.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:e8:40:ec:f2:9a:01:4f:7e:14:58:14:c4:ba:39:83:2b:e8:
e9:f2:b3:fd:bf:54:bd:c4:bd:a5:dc:75:3a:8f:95:2d:d1:75:
4b:6a:8d:e2:ae:72:d3:24:9e:02:d2:cf:81:c4:6b:c6:5b:b6:
ab:45:3e:0d:58:0c:b8:61:73:b5:72:d3:74:f2:20:a6:f3:50:
00:55:5d:72:23:6b:15:7b:b0:67:95:cd:30:03:8a:87:7b:6c:
6b:c2:6b:68:0a:58:15:13:f2:90:be:fc:9f:e9:9a:17:9c:b1:
58:6c:3a:f6:c8:35:4a:05:b9:d6:e9:e0:c0:e6:ca:b8:dd:46:
5b:45:ad:38:3e:f9:38:5c:e6:d2:d6:b3:fe:a1:e8:da:4f:2d:
8c:3e:0b:b6:9f:70:71:ec:fa:e2:7d:c1:b0:e4:ba:f1:8b:0e:
d1:c1:0b:b0:79:b5:67:30:28:df:bd:b6:4d:d3:ae:59:13:8a:
66:86:b7:60:a8:eb:83:98:f4:f6:f4:4b:b3:ae:01:dd:7b:62:
21:46:43:e6:dc:29:54:26:8c:1e:10:4b:26:d6:dd:58:8e:9b:
ca:39:13:84:a8:1c:df:f5:c8:0e:ea:16:c3:b0:23:f4:89:8c:
34:a6:b3:0b:18:f4:74:92:da:80:df:2b:74:ea:c2:2a:d0:2d:
af:96:57:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:00 2024 by rpki-client on console-fra.rpki-client.org