Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2stR8r8ePc0zV8R9krakfJXaKyQ.roa
File: 2stR8r8ePc0zV8R9krakfJXaKyQ.roa (raw, json)
Hash identifier: dKhcHNicgEdac4ZphEu4/tOk/CvUB8bJYgvkhZiNE5g=
Subject key identifier: DA:CB:51:F2:BF:1E:3D:CD:33:57:C4:7D:92:B6:A4:7C:95:DA:2B:24
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2stR8r8ePc0zV8R9krakfJXaKyQ.roa
Signing time: Thu 15 Sep 2022 02:44:40 +0000
ROA not before: Thu 15 Sep 2022 02:44:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DACB51F2BF1E3DCD3357C47D92B6A47C95DA2B24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:ec:e2:29:c0:e2:f2:5a:42:79:54:03:24:a9:
fe:7a:f5:f4:f1:b2:ce:54:ec:bb:08:2e:cc:bb:ea:
42:ac:9b:5c:8d:ad:22:0b:fb:52:50:4a:8b:d4:a8:
3e:5d:df:56:ea:c5:32:d3:48:e2:f9:be:50:e4:13:
b3:ac:41:7f:ef:13:62:c2:20:23:61:b2:0d:09:54:
c8:72:1d:f1:57:01:56:96:44:35:a2:58:02:db:a5:
8e:11:dc:05:e2:70:a4:14:f2:2a:6d:df:29:69:da:
20:8e:15:22:72:92:0d:71:29:8b:27:b0:13:24:5c:
db:0a:e9:5b:b2:8b:8d:f4:36:6c:8b:cb:05:ae:d9:
4a:90:fd:a6:bf:a1:da:25:bd:bf:29:36:ea:2f:17:
6e:3f:3b:9a:93:97:2e:47:ac:8e:42:4d:b6:02:67:
a3:ec:9e:b5:8c:e5:89:32:0f:a3:a2:5d:d0:ec:20:
4a:fc:93:ac:21:6d:15:b2:bd:71:c8:45:a6:9b:5d:
ad:ee:63:c4:c2:ac:f3:9c:2f:4f:f6:fd:14:cd:b5:
08:cf:2e:3d:39:5c:e6:e9:8b:63:dd:17:99:34:81:
a5:f4:8f:57:d3:27:99:e9:40:9f:86:fd:12:95:02:
eb:40:eb:9d:a4:b1:82:56:8a:3e:36:48:af:89:c0:
56:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CB:51:F2:BF:1E:3D:CD:33:57:C4:7D:92:B6:A4:7C:95:DA:2B:24
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2stR8r8ePc0zV8R9krakfJXaKyQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.128.0/22
Signature Algorithm: sha256WithRSAEncryption
83:1d:64:77:41:10:26:8b:8e:2c:da:18:50:97:ca:17:60:d6:
b6:59:66:13:be:cb:6f:99:e7:27:d1:cc:91:a7:8e:fc:4d:b8:
31:be:ef:e2:d5:53:65:ad:b6:7d:62:84:28:c9:7b:49:1f:c4:
74:83:53:f8:47:c2:f9:1a:f7:e1:70:6e:e8:cf:82:8b:c6:2a:
f1:5e:ee:7f:55:3f:e0:bd:8c:c4:a4:cc:f2:62:a1:2d:14:2b:
e5:19:c6:a3:21:31:2d:bd:87:b4:5b:99:1e:24:0e:de:11:a2:
8d:fb:d7:9c:66:56:55:c3:49:6f:c8:23:7f:28:4b:dd:fe:9b:
c5:60:11:4b:48:17:6b:8d:f3:35:67:80:38:db:8d:da:8d:16:
8d:bd:98:fe:e8:31:0b:2d:aa:5d:f9:b5:ca:6c:99:33:03:fe:
03:77:0e:0a:ed:0b:b4:79:ac:10:f0:e9:68:34:6f:12:a2:2b:
98:0e:8d:3e:b2:ad:86:52:48:90:99:ad:3c:da:f3:b7:eb:c8:
e1:10:3b:7f:0e:4a:9e:78:42:12:fa:64:24:c8:18:1d:af:47:
40:a3:7a:15:a8:0c:50:74:2a:04:8b:dc:1b:46:b2:10:77:39:
53:a7:ce:e2:29:12:1c:d1:27:e2:26:83:dd:9b:e4:14:e1:1c:
c5:b7:7f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org