Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z_yxpiFCunqGRQZ4-5fiI490KJM.roa
File: z_yxpiFCunqGRQZ4-5fiI490KJM.roa (raw, json)
Hash identifier: lxtSJwYuppyGEZ9o2cpbFZqzni0WgJXPJVyiRvSlQG8=
Subject key identifier: CF:FC:B1:A6:21:42:BA:7A:86:45:06:78:FB:97:E2:23:8F:74:28:93
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CF9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z_yxpiFCunqGRQZ4-5fiI490KJM.roa
Signing time: Wed 29 Sep 2021 02:48:27 +0000
ROA not before: Wed 29 Sep 2021 02:48:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7417 (0x1cf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CFFCB1A62142BA7A86450678FB97E2238F742893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:45:c3:d7:b6:7f:64:20:73:b4:b7:22:1c:bf:
b4:cd:df:89:4e:e0:e2:36:c0:a9:dc:e9:7f:ae:f6:
f7:f9:96:d3:d0:9c:be:35:fc:30:61:07:fb:c7:c7:
2e:79:05:9c:9b:55:ef:d5:04:0b:a2:88:f4:88:9d:
40:18:41:63:59:f8:fe:f5:cc:74:89:45:e7:1f:31:
80:52:f1:fe:7d:76:87:70:4b:f0:61:04:a5:3a:70:
5e:73:10:ed:5d:28:d7:cd:8b:80:8b:d6:8c:f5:b3:
ef:c1:27:8f:df:76:13:35:4e:93:6a:32:eb:6c:fe:
9b:ac:06:12:6a:73:c9:35:3d:be:39:9a:6f:7e:c3:
dd:2f:9c:ba:bf:91:e1:90:6c:6c:05:c2:85:6a:27:
d1:91:66:0f:4e:d7:69:b8:76:95:fd:85:14:d9:62:
b4:33:ae:be:dc:21:1f:d7:60:68:03:64:cd:28:3d:
80:13:ca:70:12:21:e3:f9:a3:1e:70:0f:27:19:81:
56:27:d7:c2:a8:04:53:63:04:69:41:4a:9a:21:4a:
a8:04:ff:24:c8:06:f2:6e:8a:40:81:7c:68:35:74:
1f:78:2c:ab:95:1f:d8:7b:6d:95:d1:b4:76:16:14:
73:35:e5:d2:15:b2:9b:8f:71:b0:de:c0:61:eb:18:
1f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FC:B1:A6:21:42:BA:7A:86:45:06:78:FB:97:E2:23:8F:74:28:93
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z_yxpiFCunqGRQZ4-5fiI490KJM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.196.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:e7:51:10:b6:16:78:5c:33:00:60:22:2c:fd:97:e8:69:fe:
20:1b:ed:ae:9b:4b:ae:7a:c0:f8:3a:bb:a2:7d:f1:37:7f:36:
6f:a5:03:b3:7b:22:95:07:d7:2b:18:73:9e:3c:94:27:69:c7:
65:de:43:36:c0:54:c0:b9:d2:16:0d:f0:f4:10:b5:dc:21:22:
1c:41:a9:d8:c6:74:c0:15:26:ce:fd:55:72:72:68:d2:57:ae:
c9:83:ac:22:8f:a1:15:c7:76:d5:7c:ca:28:86:bd:bc:79:67:
e0:95:a8:8b:f6:c2:fa:22:6f:20:8a:c5:48:f4:15:41:0e:34:
ca:ea:1f:35:e5:95:d5:e6:e9:5d:45:5f:26:9d:df:35:70:82:
6b:de:c4:cf:f4:94:59:bd:59:85:3f:23:a8:81:8c:3e:c3:70:
c6:86:65:29:a7:1c:77:f0:7f:9a:26:38:ed:3b:b5:37:a2:ce:
70:b5:62:d3:c4:a0:d9:a4:8f:82:70:2d:d7:46:25:80:b2:48:
ea:48:46:c3:98:48:71:cb:75:cd:ca:5e:cb:68:0a:ce:04:65:
9c:cc:c0:76:99:e4:d1:7b:dc:0a:4f:dd:23:e8:fb:df:3b:53:
ef:f5:2e:34:10:70:aa:c2:3c:48:02:3e:6e:a8:78:a8:d1:2f:
24:50:8f:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org