Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2okjqKa_Tsji11MinO3vakp_b10.roa
File: 2okjqKa_Tsji11MinO3vakp_b10.roa (raw, json)
Hash identifier: /xU571XGZF1s5Y2+ZawBuJih8snXk3vCUguM7OUWhrg=
Subject key identifier: DA:89:23:A8:A6:BF:4E:C8:E2:D7:53:22:9C:ED:EF:6A:4A:7F:6F:5D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AE0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2okjqKa_Tsji11MinO3vakp_b10.roa
Signing time: Wed 29 Sep 2021 02:45:52 +0000
ROA not before: Wed 29 Sep 2021 02:45:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6880 (0x1ae0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DA8923A8A6BF4EC8E2D753229CEDEF6A4A7F6F5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:92:16:74:93:0b:fa:ab:fd:76:d6:cc:77:0e:
96:bb:28:45:f3:aa:89:25:4c:77:69:9d:d2:78:4a:
8f:bb:83:a8:2e:6e:95:13:04:c8:c4:02:3d:b3:81:
3d:cb:45:53:00:d8:67:2d:37:80:99:97:5a:3f:5b:
7b:2a:9e:9d:6d:e4:82:d9:0f:fa:fd:23:c1:71:a3:
c8:50:e0:e2:d0:d0:e4:47:e8:f3:46:99:ff:ca:de:
a2:58:fd:5b:f0:8f:d1:10:29:9e:e5:5c:dd:2a:98:
63:7d:25:e6:a8:a8:8e:10:09:98:3f:7a:1d:f5:20:
74:80:b3:3d:61:83:b0:84:4c:77:98:63:f9:bd:54:
14:29:b7:86:db:14:5f:43:d6:bb:47:8e:a7:81:f4:
84:8a:9a:0f:ee:11:f3:66:99:94:da:82:00:61:14:
2b:6d:be:52:3a:eb:02:b2:90:db:df:a1:b1:00:e2:
95:18:73:71:b6:9f:ab:3a:b6:d5:9d:aa:bd:0e:c2:
cc:3d:7d:e2:62:99:df:13:48:a6:42:64:5f:30:4c:
6b:8f:50:5d:03:8b:fe:56:e0:5c:56:47:fb:dc:43:
9e:47:c0:92:32:d1:21:c5:28:80:f9:11:81:c8:08:
27:c3:d3:48:cc:ea:59:3f:32:cc:8e:1f:4a:fa:f7:
91:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:89:23:A8:A6:BF:4E:C8:E2:D7:53:22:9C:ED:EF:6A:4A:7F:6F:5D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2okjqKa_Tsji11MinO3vakp_b10.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.176.0/20
Signature Algorithm: sha256WithRSAEncryption
a3:88:81:53:42:90:bb:eb:ef:99:2c:81:81:04:be:c4:de:9d:
78:c0:99:7d:c9:c3:1e:e7:1a:7e:f9:11:8a:0d:15:2f:c3:73:
83:cc:29:e8:02:82:2d:cb:06:e6:48:ca:01:56:f9:0b:34:43:
3e:2c:7f:4f:0a:3f:9d:27:7e:55:cb:09:46:c2:07:62:f4:e7:
59:00:1e:45:91:d8:25:f6:ed:39:97:06:18:a0:13:70:86:16:
a5:57:99:06:88:69:43:b9:f6:6f:d2:87:90:9c:74:b5:61:5e:
e8:45:84:e8:f6:ef:79:8e:03:09:46:05:d2:f1:d7:48:86:7b:
fe:51:8d:66:05:d3:8f:6f:fa:d1:f4:0c:fe:1e:a5:66:b2:28:
5b:a9:e6:c6:bf:4b:0c:c2:cf:58:82:96:aa:a5:af:38:61:a5:
8c:f4:e9:e9:6f:ba:1a:82:b3:ad:0a:31:5d:4c:f2:0f:7d:24:
8f:e5:2c:a4:2e:19:73:28:6a:bf:5b:dd:81:46:8c:41:fc:16:
42:cc:1f:2c:26:bd:b3:37:6b:e3:8c:fd:68:27:cc:11:b3:c3:
fa:06:8f:84:2c:cc:e2:b5:64:b9:5e:26:61:09:a3:45:89:80:
7d:d9:01:72:43:cf:41:dc:23:bc:b5:ef:86:75:f1:6c:ad:5d:
7a:4a:25:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:16 2025 by rpki-client