Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/24ySj-sqo-Ynqb1SFHdXQEkN730.roa
File: 24ySj-sqo-Ynqb1SFHdXQEkN730.roa (raw, json)
Hash identifier: Y1uzCXWkJoeDq84IkoxbxSjcNsEKKhPzMkn6eveOJ8w=
Subject key identifier: DB:8C:92:8F:EB:2A:A3:E6:27:A9:BD:52:14:77:57:40:49:0D:EF:7D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A90
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/24ySj-sqo-Ynqb1SFHdXQEkN730.roa
Signing time: Wed 29 Sep 2021 02:45:29 +0000
ROA not before: Wed 29 Sep 2021 02:45:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6800 (0x1a90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB8C928FEB2AA3E627A9BD5214775740490DEF7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:e1:e5:1c:c0:3e:98:30:15:ef:4d:ff:79:
67:0a:ac:fe:fa:17:a9:31:43:c7:2a:30:39:7b:5f:
3e:ba:e8:a1:64:1e:7a:9a:a4:d5:d4:e8:9f:72:41:
b9:0f:f8:23:93:6d:35:1f:42:ed:d1:35:d4:bd:28:
6f:e4:bf:f2:20:86:d2:e9:af:67:c7:64:04:ef:ab:
ac:d6:64:e0:7e:9d:04:69:be:ce:99:95:6a:2c:e8:
4b:a2:ec:63:db:5e:95:9d:0d:7e:99:b5:fe:4a:e0:
eb:7e:0f:a6:13:64:a5:1d:34:db:34:b7:4a:e1:5e:
79:3a:a7:dc:c9:03:20:c4:be:47:9f:20:81:69:b3:
1e:e9:ab:4b:cf:b8:9f:c9:1a:88:25:28:c5:38:b6:
c6:c5:0e:05:cf:20:23:ba:bc:08:75:ab:e0:08:9e:
f5:66:78:0f:48:c6:13:38:06:9f:0e:8b:d0:7d:af:
78:5a:4c:4b:02:14:03:dd:7d:15:3f:f3:da:a2:c0:
2e:a1:e2:3e:1f:06:ca:3f:8e:34:cc:24:96:54:9c:
1f:45:dc:ac:04:54:5f:31:a6:cf:91:31:03:b1:79:
b6:c3:70:ea:f1:6e:3a:72:b4:da:44:f1:25:4d:83:
2d:fa:85:46:e8:66:b6:73:20:2b:35:9f:c8:3b:5f:
fd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8C:92:8F:EB:2A:A3:E6:27:A9:BD:52:14:77:57:40:49:0D:EF:7D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/24ySj-sqo-Ynqb1SFHdXQEkN730.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.0.0/17
Signature Algorithm: sha256WithRSAEncryption
4b:17:0a:96:cd:ad:2f:7a:c6:ff:e5:39:a9:e0:82:f8:5a:25:
84:6e:14:39:df:48:46:d6:44:8f:10:6f:2b:ca:6d:3e:bf:b6:
00:2d:15:24:6a:be:e4:3f:3f:9e:81:fe:28:c1:38:71:18:e9:
cd:9a:d4:ff:de:f0:c4:15:97:78:9f:04:9e:a0:02:aa:f7:a5:
85:03:d8:6e:5b:30:86:4f:b5:99:71:f4:a5:ca:e0:c6:60:1e:
33:87:8c:ff:2b:93:51:68:9c:50:d3:40:11:90:f5:73:9e:15:
6e:a4:fd:dc:00:4a:09:c3:98:e6:21:f8:15:fe:37:a4:53:f7:
87:29:6c:05:35:ee:35:71:0e:6a:85:c5:36:d9:e9:a5:e6:16:
d0:c8:3a:bb:b8:88:fd:1d:c6:2b:bd:cc:75:f3:42:9d:10:76:
91:8d:aa:98:c4:06:03:12:ba:3e:24:76:8f:82:2e:11:2f:ec:
50:82:5a:df:98:70:5c:9c:8e:76:4a:e2:f5:45:b6:d6:13:14:
36:4d:10:ff:ee:c8:02:5d:44:70:8d:93:5e:68:82:70:61:ec:
6d:c8:36:66:a5:e2:85:fc:50:14:4b:1f:b8:b3:9b:a2:41:99:
be:d9:04:7b:17:3e:ee:57:52:98:a5:56:97:07:5d:25:97:8b:
6f:af:5a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org