Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zkTo3DZYQWfvPXTrhacqho6F1HU.roa
File: zkTo3DZYQWfvPXTrhacqho6F1HU.roa (raw, json)
Hash identifier: yjAJdo4FYitxDYj+Q1pVqkjv+YSXzss3cl4lPl1nVkc=
Subject key identifier: CE:44:E8:DC:36:58:41:67:EF:3D:74:EB:85:A7:2A:86:8E:85:D4:75
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zkTo3DZYQWfvPXTrhacqho6F1HU.roa
Signing time: Thu 15 Sep 2022 02:45:47 +0000
ROA not before: Thu 15 Sep 2022 02:45:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.160.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE44E8DC36584167EF3D74EB85A72A868E85D475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:8f:2b:c2:7e:a4:d5:33:c0:6e:db:5c:15:
9e:bc:08:ab:07:dd:39:bb:a4:b8:e0:d9:65:aa:9e:
cb:90:d1:0f:28:0f:a2:17:fa:0e:01:84:cb:99:59:
f7:a7:f1:6f:51:b6:30:0c:58:2b:ff:bf:c5:3c:41:
c3:f6:eb:49:11:57:fc:e5:99:6a:20:94:35:12:09:
45:46:f0:b5:8a:ec:3b:1a:10:ee:73:63:54:0a:13:
ea:d7:5f:6b:82:62:5f:fb:cd:44:28:14:ad:e0:a6:
5c:29:91:fd:36:e7:ad:b3:34:6b:24:ff:56:93:b5:
0a:10:1e:7a:43:be:d4:de:94:ab:c0:04:63:41:f9:
35:6b:60:fc:1d:02:e5:c9:e2:c4:fd:e9:71:67:54:
9b:43:51:35:32:7f:84:fd:0b:ea:1e:7d:65:f3:a4:
f9:ee:08:e4:fc:42:f0:73:c0:58:61:0b:44:f3:93:
94:2e:9e:16:f3:28:93:36:f8:e4:5d:46:4f:fd:b0:
3f:7e:a5:a5:fe:6c:b2:64:2c:6e:3e:33:64:db:d1:
8b:97:6a:0d:1a:d7:9d:d6:df:e0:cc:5b:e2:2f:d2:
e3:85:d0:70:62:e4:19:fc:b1:26:a3:20:9a:96:df:
dc:76:27:6b:c2:b6:0c:44:6a:a0:00:a6:8c:69:89:
fe:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:44:E8:DC:36:58:41:67:EF:3D:74:EB:85:A7:2A:86:8E:85:D4:75
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zkTo3DZYQWfvPXTrhacqho6F1HU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.160.0/20
Signature Algorithm: sha256WithRSAEncryption
ab:6e:39:be:f7:a7:c4:ab:cd:4e:37:b1:7f:fe:f4:9d:6e:bd:
93:96:ff:9d:f9:91:d2:40:b7:84:84:ed:dd:0e:8f:92:28:be:
29:69:91:6d:17:2e:22:37:4d:db:e7:e2:42:a7:e4:c9:c4:85:
c4:56:79:c8:de:d3:e6:b6:80:3e:22:b6:46:d3:a6:d3:8c:18:
83:39:cc:3f:63:41:b1:9f:3d:3e:6f:43:ea:28:5d:f7:6d:4e:
8a:92:32:42:85:f9:db:89:1b:e1:1d:db:e1:f2:45:79:8e:b8:
d5:1d:14:33:98:d0:63:1e:54:ec:6b:0e:cd:7c:4c:f1:81:54:
a2:09:03:fd:f4:57:46:77:d2:b1:f7:9b:25:f3:71:0c:77:25:
27:96:ee:21:0a:cb:b9:b4:3b:29:35:1f:fa:00:55:4d:a0:14:
ff:75:11:1c:3d:ee:d0:8e:95:0b:d7:c2:6e:bf:75:08:8b:9d:
ab:06:f6:2b:01:09:3d:eb:56:61:32:6d:f5:50:62:7f:40:8a:
21:7c:96:64:d5:53:99:e8:f1:20:2f:e4:51:44:25:02:2d:c8:
8d:d6:04:80:ec:c8:22:a9:37:ab:8e:ba:b4:d6:37:e2:3f:a0:
c2:71:70:62:e2:3e:0b:4f:ca:35:af:bf:c3:f2:9e:66:80:1b:
db:fd:11:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org