Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_UmDbMfFkBviCCtRpHd5F-uZfX8.roa
File: _UmDbMfFkBviCCtRpHd5F-uZfX8.roa (raw, json)
Hash identifier: xdab+TrK+99X3NchoJy+C/hXBfzSZXXr9VbQdrIyljs=
Subject key identifier: FD:49:83:6C:C7:C5:90:1B:E2:08:2B:51:A4:77:79:17:EB:99:7D:7F
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08DD
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_UmDbMfFkBviCCtRpHd5F-uZfX8.roa
Signing time: Sun 07 Feb 2021 11:53:55 +0000
ROA not before: Sun 07 Feb 2021 11:53:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 123.240.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2269 (0x8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FD49836CC7C5901BE2082B51A4777917EB997D7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2c:50:d0:43:d7:18:b8:ac:65:a7:b5:a2:a5:
55:27:a1:8e:f3:f0:04:cb:fc:e3:b1:34:a3:00:f2:
e3:77:33:ec:64:d1:be:f1:57:7b:28:ed:b6:40:05:
32:43:15:3e:48:45:43:2d:50:4e:e5:4e:06:ca:14:
5f:3e:f3:af:12:54:93:be:91:a1:31:6a:43:f9:7c:
bb:40:8e:34:1c:f0:bd:31:f1:2a:69:18:0a:cc:0f:
1d:7e:9a:bc:86:bc:75:a7:9d:8c:d6:f2:3e:0d:7c:
6c:3f:0f:f9:0b:ad:b4:25:af:d7:2b:d3:e2:eb:58:
80:aa:46:f1:9a:b5:da:17:04:ed:a7:74:bb:a1:8c:
f2:a8:48:8b:60:cc:8c:6b:d1:d5:a6:2b:03:7b:bf:
77:d6:a3:f8:d1:4e:1d:b8:87:f6:d1:8d:e7:a1:dd:
bc:53:a9:30:1a:11:ad:1c:fb:b2:96:1b:7c:ae:ba:
11:1d:ab:01:1c:ea:4d:b3:bd:fb:ce:9b:58:88:ad:
b4:08:ff:75:f0:f3:05:66:92:ce:38:5e:5b:41:0e:
5f:99:ed:c8:e2:74:05:ea:9e:49:c4:8f:c9:ef:82:
c7:36:0c:45:14:c0:ee:10:1c:f2:9c:23:71:9e:c5:
9c:ab:c2:db:eb:a9:d8:1f:47:13:16:53:d8:ab:50:
9c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:49:83:6C:C7:C5:90:1B:E2:08:2B:51:A4:77:79:17:EB:99:7D:7F
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_UmDbMfFkBviCCtRpHd5F-uZfX8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.240.0.0/15
Signature Algorithm: sha256WithRSAEncryption
8c:96:fc:ef:76:da:d8:2a:e5:40:5e:af:3d:ad:3b:71:e4:97:
db:c0:5a:43:9e:40:1f:74:50:e5:3b:d7:c6:9f:70:50:7d:50:
e4:b2:12:d9:14:b4:d8:be:f8:31:c3:c2:ee:b7:7b:58:6d:db:
7e:cc:14:10:14:15:23:4d:72:59:f9:14:a1:a0:c0:e8:d1:68:
02:d5:27:39:38:54:15:f9:42:20:70:27:91:6c:a3:da:1b:e6:
38:a9:c7:8e:67:aa:6a:16:c3:1b:db:3a:7a:6b:89:64:c9:9f:
49:b3:b0:5c:8d:ad:75:78:fa:2e:21:ce:cf:e2:86:47:a1:15:
d6:41:b4:fa:04:ba:ba:b6:ca:d7:ec:55:f0:a8:fb:10:ff:4f:
05:14:52:20:ec:1d:34:cb:e9:fa:ec:f3:8f:9f:c5:5c:a0:18:
6b:33:d9:42:cd:6a:93:f7:ec:00:69:01:0c:82:8b:83:0b:59:
04:65:f9:07:01:12:73:96:b9:d8:8a:65:08:25:54:58:0d:37:
eb:a4:5a:a6:e4:d0:b4:0b:88:d3:16:7f:10:3c:2d:01:5b:87:
1d:27:05:0e:c1:46:9f:2b:43:ea:e9:52:9d:52:fb:60:0c:d1:
5e:f9:30:8a:5b:c8:6c:06:fc:a9:04:8a:fb:e1:4d:e8:d8:a9:
f8:d1:56:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org