Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/16MPvQcXtZUD4mSp11ImpF7BlxM.roa
File: 16MPvQcXtZUD4mSp11ImpF7BlxM.roa (raw, json)
Hash identifier: inewxaST71POt5gva1e+7L0SArrpU/AfsolmoOhLTxc=
Subject key identifier: D7:A3:0F:BD:07:17:B5:95:03:E2:64:A9:D7:52:26:A4:5E:C1:97:13
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E37
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/16MPvQcXtZUD4mSp11ImpF7BlxM.roa
Signing time: Wed 27 Apr 2022 08:36:45 +0000
ROA not before: Wed 27 Apr 2022 08:36:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7735 (0x1e37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Apr 27 08:36:45 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D7A30FBD0717B59503E264A9D75226A45EC19713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c6:c1:f2:4a:c9:c2:e8:02:02:98:a7:e0:f9:
b5:cc:e7:32:c3:ad:03:6a:a5:eb:3f:4e:22:57:d2:
9e:f1:71:42:e7:cf:e1:a6:10:f6:9a:90:62:35:86:
fd:50:5f:96:9b:f4:25:07:a8:40:0d:26:38:3b:16:
14:f1:75:e9:ec:57:84:8d:5e:1f:b9:fe:9f:a4:87:
6d:00:05:ed:81:79:b7:8c:1e:89:f6:c2:c3:24:02:
33:99:86:3b:d1:45:75:81:5e:b0:5c:42:cc:87:67:
d0:6e:13:d1:8c:76:96:55:17:37:42:d1:fa:c9:f2:
86:49:10:93:04:46:26:af:ee:4c:5c:67:84:21:2f:
7c:89:5a:11:fe:47:4e:05:d5:b9:2b:d8:0c:57:07:
27:ff:dd:0c:56:a8:61:d9:f7:d8:9e:e8:7a:d5:23:
54:9b:51:06:9d:e4:2c:06:ab:5b:d7:cf:30:76:9b:
a2:3b:b5:b8:6c:8a:c0:59:70:dd:71:1f:ba:8e:49:
24:03:49:14:ac:f1:da:30:ac:60:f9:e3:b0:2a:5e:
0f:f5:a9:96:f3:8c:03:8c:85:65:79:76:20:8e:24:
bf:25:d0:3c:81:3d:e4:c3:68:cd:bf:f4:f2:9b:0d:
b6:1f:fe:7f:fc:33:53:89:91:50:5c:f6:81:a7:3a:
20:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A3:0F:BD:07:17:B5:95:03:E2:64:A9:D7:52:26:A4:5E:C1:97:13
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/16MPvQcXtZUD4mSp11ImpF7BlxM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:f4:76:85:86:14:a7:04:3c:13:88:02:25:ab:29:c2:83:37:
d9:63:e4:b6:0a:7f:73:dd:14:13:44:bf:e2:9a:a1:ac:06:4c:
ce:17:76:57:d2:d6:74:04:77:b5:d7:89:91:5f:23:07:80:2f:
39:b9:07:66:05:3c:35:3d:36:98:e0:e3:f0:11:c5:e8:0f:bd:
c5:16:b0:df:08:d1:3b:03:a5:3a:32:2a:a7:ad:ab:e9:14:12:
a3:bf:aa:4b:4d:0d:a2:24:0b:3d:1b:6d:3f:93:ca:3b:89:f4:
2b:dd:df:7c:50:12:ac:29:c8:be:70:60:6f:e9:27:d8:b3:7d:
85:77:5b:87:ed:98:81:80:78:e5:15:97:e0:21:2a:2c:80:fe:
01:f0:42:7f:83:a3:fe:5c:f8:e3:a9:fd:6f:19:2a:b1:bd:8f:
d1:fd:2d:6e:49:d6:1b:d8:2c:ca:ac:72:5b:d7:97:6e:33:d6:
ba:1f:b5:af:16:46:f7:d3:02:7e:df:b7:ea:b1:89:a0:a8:3c:
a5:01:68:d3:ec:69:37:d1:17:cc:9a:ee:fb:96:31:22:6f:c6:
ea:4b:5f:55:0d:91:f8:13:10:27:8f:2a:c9:8e:c1:88:32:84:
0a:17:d7:2c:ad:31:38:de:bf:78:a3:d0:8d:3b:f4:bb:b1:64:
5e:11:74:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org