Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/G-r3S7eK5mA63l9T_fAC9UIVsD8.roa
File: G-r3S7eK5mA63l9T_fAC9UIVsD8.roa (raw, json)
Hash identifier: ZGn0z+tOvtcShDEzANLW4Z6q1mb6qfZP74ugUFKWpwU=
Subject key identifier: 1B:EA:F7:4B:B7:8A:E6:60:3A:DE:5F:53:FD:F0:02:F5:42:15:B0:3F
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0783
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/G-r3S7eK5mA63l9T_fAC9UIVsD8.roa
Signing time: Tue 29 Sep 2020 09:59:58 +0000
ROA not before: Tue 29 Sep 2020 09:59:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 123.110.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1923 (0x783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 09:59:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1BEAF74BB78AE6603ADE5F53FDF002F54215B03F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2b:e3:20:2d:33:68:76:fb:35:fb:c3:57:aa:
e3:01:d2:1b:dc:53:b0:7a:cb:7d:7f:33:54:a8:6e:
c7:3b:a0:92:73:16:80:ee:e7:18:5a:c5:1d:9f:43:
17:a0:a9:96:98:af:33:e7:65:66:4b:6e:c8:8a:d1:
eb:af:5c:66:46:8f:9d:bb:36:96:4a:c3:f7:33:bd:
fb:ee:e9:43:7b:ee:15:1f:e3:71:96:97:06:c2:bb:
b5:7f:d2:e5:71:e8:a0:ff:0d:cd:08:bb:18:71:17:
b2:e8:b2:b2:47:ba:fe:03:e6:be:63:75:a0:fb:d8:
c4:d3:3e:cd:66:eb:fb:48:78:87:9b:9f:2d:48:3b:
5e:83:d6:1d:da:25:32:b2:ca:84:03:2c:f1:84:e3:
4b:09:f5:64:c5:ab:6e:41:c5:0d:6f:0c:c7:09:77:
6d:1f:f9:b1:05:10:ca:74:6e:2c:d7:38:89:71:49:
21:78:b5:ec:be:17:8d:ea:36:dd:2b:ce:04:7a:04:
c7:de:d3:a9:df:84:8a:ac:c2:03:dc:36:28:ac:af:
a2:26:95:33:b5:b5:e8:28:71:78:57:54:fa:a5:c4:
c4:d3:a0:71:e7:0a:6e:63:59:ff:95:ef:21:9b:aa:
ee:f4:e1:29:96:3a:d0:7b:4c:94:c6:bf:4a:da:a8:
d1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EA:F7:4B:B7:8A:E6:60:3A:DE:5F:53:FD:F0:02:F5:42:15:B0:3F
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/G-r3S7eK5mA63l9T_fAC9UIVsD8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5c:f8:d2:94:ae:9c:14:4f:ad:41:d3:9a:00:1b:3a:5b:5f:8b:
64:59:c4:c2:93:c4:3e:d7:cc:ef:59:7a:72:89:3d:10:77:9c:
d0:48:6e:90:d8:89:aa:25:4c:d6:68:14:85:0b:b3:84:59:f0:
f9:eb:80:fd:44:2c:5e:32:90:72:c7:31:a8:78:1d:ea:c6:c5:
9e:3d:86:48:6a:1c:d1:d4:8d:5c:1a:7c:be:dd:8b:a7:11:5f:
f1:a1:de:86:6d:c6:67:cc:14:71:bd:62:9f:c7:61:4f:53:20:
71:11:eb:85:b8:9f:6e:8e:f3:e6:72:87:73:2d:21:12:94:14:
55:0c:13:63:e0:95:f6:16:78:f6:ff:ab:bb:7c:59:fb:aa:0e:
37:19:81:5c:fb:65:4c:17:7c:68:8f:b9:7d:e9:bb:50:22:d3:
43:e2:b8:c5:a7:98:ca:1c:03:f1:48:ba:94:bf:55:33:b9:25:
d7:0f:23:f0:1b:20:5d:68:8e:b0:c8:75:af:3d:aa:ab:54:d7:
2d:ff:c6:3b:78:a2:6b:7f:0b:0d:eb:e8:24:5b:44:89:5c:60:
49:40:a1:25:60:f1:b3:55:23:a4:db:00:26:b7:cb:8e:15:74:
54:da:f9:75:24:60:e2:7a:9b:25:43:fd:15:7c:82:c7:33:2e:
bd:59:24:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org