Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zhPgjvcaeEnpZA_OQw-y2TXwYq8.roa
File: zhPgjvcaeEnpZA_OQw-y2TXwYq8.roa (raw, json)
Hash identifier: ckBW1gNz88Hrzv/B3AloNTZ/BJ0C9+BVwfYCPQKnZfQ=
Subject key identifier: CE:13:E0:8E:F7:1A:78:49:E9:64:0F:CE:43:0F:B2:D9:35:F0:62:AF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B05
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zhPgjvcaeEnpZA_OQw-y2TXwYq8.roa
Signing time: Wed 29 Sep 2021 02:46:01 +0000
ROA not before: Wed 29 Sep 2021 02:46:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6917 (0x1b05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CE13E08EF71A7849E9640FCE430FB2D935F062AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0c:d7:93:86:2f:5d:f9:5f:af:fe:39:d3:4e:
da:7f:22:36:83:1b:5b:68:47:98:a4:21:f6:d1:99:
6f:58:b1:41:96:a8:a1:57:82:25:31:24:83:5c:02:
92:46:19:a8:0c:7e:cd:bd:c5:cf:2a:d5:af:95:fb:
54:30:93:cd:48:0f:a6:53:2a:7c:a6:6f:05:f1:55:
14:68:a6:a3:3f:fc:f8:70:68:81:63:c8:2f:fd:4a:
15:4f:87:58:14:fd:43:e3:d8:0f:95:1a:aa:55:56:
76:12:69:39:97:c1:43:d3:c1:24:2c:66:03:6a:92:
55:94:be:11:38:3a:ae:96:f5:07:e9:63:b6:93:14:
17:b6:0d:db:31:0e:73:d0:72:d5:f3:e0:22:5b:60:
ab:13:fd:31:95:71:20:10:7e:97:be:df:03:c8:74:
96:06:fb:ff:a6:1b:c7:af:48:03:6b:be:bc:cf:4f:
42:0b:1d:6e:89:fc:30:a6:a9:67:2c:e5:eb:57:f4:
18:24:cd:5d:fa:c7:e7:78:0e:4d:74:77:c6:db:44:
2e:0d:2a:28:e9:ee:c5:12:81:a6:bd:81:4d:60:83:
b3:8c:62:0f:34:0e:fa:fa:11:e6:72:1e:a7:ba:6d:
b2:73:ba:9d:07:22:c4:8c:b3:32:1b:09:09:c2:39:
6e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:13:E0:8E:F7:1A:78:49:E9:64:0F:CE:43:0F:B2:D9:35:F0:62:AF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zhPgjvcaeEnpZA_OQw-y2TXwYq8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.176.0/21
Signature Algorithm: sha256WithRSAEncryption
b4:5b:24:22:db:6d:e7:30:75:23:2a:16:47:b2:d0:19:f5:75:
45:98:d6:94:a9:9d:50:d7:32:e7:6d:4c:87:35:83:50:36:60:
d1:f5:fe:75:f0:37:c7:a1:2b:ce:be:1c:92:6f:df:43:27:4f:
45:d7:01:d8:2e:de:72:54:eb:9e:e3:a3:df:44:57:0f:42:af:
33:9b:3e:04:2d:ff:d2:07:d7:1a:6c:b2:bb:ae:2f:aa:ad:2e:
0b:29:e6:ae:68:28:19:54:49:d9:18:35:ad:98:37:8e:7a:89:
1c:38:cf:46:cd:2e:44:86:a0:2e:90:ad:ed:9c:e7:61:16:47:
b5:a1:d2:78:23:96:2b:6a:29:c2:20:cb:99:c4:0f:2e:82:37:
33:c5:04:5a:4d:77:84:7a:f7:b0:fc:80:c6:56:d6:91:0e:0a:
00:cd:51:6b:66:6a:c5:31:91:6b:95:73:16:23:9e:1b:cd:9f:
31:96:d9:f2:e5:15:16:8a:e8:5b:bd:d6:5a:69:b5:e9:d8:97:
0e:e9:00:29:55:53:4b:46:c6:7e:c7:5f:10:29:5e:a6:e7:87:
f7:5b:88:38:d0:16:19:e1:21:20:b1:44:b2:58:4b:6e:8d:90:
88:db:d6:c3:dd:ef:d5:f3:2f:85:ac:6d:41:a4:99:3d:27:89:
9b:26:f8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org