Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ExlDT8IqYvbwzihWqNdMnM8XKY.roa
File: 3ExlDT8IqYvbwzihWqNdMnM8XKY.roa (raw, json)
Hash identifier: Th5phu4IfKAHxgEAE8IHdJbNLnwVPIlzUVJMPHxx55Q=
Subject key identifier: DC:4C:65:0D:3F:08:A9:8B:DB:C3:38:A1:5A:A3:5D:32:73:3C:5C:A6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D2E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ExlDT8IqYvbwzihWqNdMnM8XKY.roa
Signing time: Wed 29 Sep 2021 02:48:43 +0000
ROA not before: Wed 29 Sep 2021 02:48:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 123.193.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7470 (0x1d2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DC4C650D3F08A98BDBC338A15AA35D32733C5CA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:ba:5f:00:98:07:69:be:c3:e9:ad:6e:81:52:
1e:b8:72:43:f7:81:18:05:03:6e:99:d2:f4:5c:7f:
e6:cc:c3:33:b8:48:e2:6a:c0:2b:0f:d3:fa:f0:0a:
42:fc:6f:39:20:06:2a:3f:3d:5d:20:60:27:b2:08:
f3:a8:72:d9:f1:82:82:3f:c7:a2:d0:6d:42:25:4e:
a0:6f:20:2e:58:aa:a1:86:67:9c:05:8d:76:e2:4b:
5b:b6:e2:8d:87:12:8b:f7:7e:a2:1e:55:ed:c3:df:
a2:9d:dd:c6:7a:6f:c5:4e:51:74:7b:29:db:1c:00:
a5:78:ad:75:b0:d6:62:3f:53:a0:8f:3a:19:68:91:
78:5b:4d:72:6c:ba:56:47:ae:5f:ac:83:8c:14:e1:
9c:aa:d8:e1:f2:1d:b0:30:3f:5f:93:37:bd:38:68:
5e:51:5e:86:f2:d4:f7:49:68:5b:c3:93:b7:c2:1f:
ee:62:00:10:1e:c3:3d:ad:8d:c5:a5:7a:49:b7:df:
ae:32:f6:4b:2e:28:fc:5a:be:f9:0b:a8:2a:0a:6e:
29:57:5b:a4:29:60:0e:fa:75:24:11:ba:50:28:4d:
24:c6:8c:e5:39:ad:7c:b5:49:63:35:34:31:34:50:
b5:45:63:c1:a9:d3:01:3c:81:ac:a4:b7:8e:e5:3d:
4b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:4C:65:0D:3F:08:A9:8B:DB:C3:38:A1:5A:A3:5D:32:73:3C:5C:A6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ExlDT8IqYvbwzihWqNdMnM8XKY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.125.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:d2:e9:32:cb:eb:9c:a7:15:e9:e6:ab:79:d3:ca:ca:aa:aa:
6b:53:95:db:eb:21:2e:11:39:9c:eb:e0:5f:30:2f:47:30:90:
ae:ab:62:c5:66:c9:69:70:75:86:0c:09:12:bf:47:3f:81:98:
23:1c:8d:1a:e2:6c:36:40:f0:b9:c9:d1:92:18:a3:92:9b:9b:
d6:64:8b:e5:2c:1c:f1:ed:eb:66:43:e6:af:16:7e:d1:9f:08:
9f:48:dd:57:6e:21:21:2f:96:5d:c1:a4:7a:cd:19:cf:bd:1f:
26:1f:78:ac:5d:da:9c:d1:7b:e8:b8:2b:79:1f:a6:9e:22:b8:
06:0c:e0:c2:71:73:58:60:58:80:5a:c5:b2:6d:56:f4:ea:cf:
c8:a7:e0:6a:8d:b8:22:ed:15:1d:a3:56:47:bd:94:ec:20:b5:
53:aa:23:14:c5:57:0c:54:f7:c9:a2:9d:1a:5c:91:26:9e:f0:
3d:f4:37:45:3f:9d:d8:6f:2a:8e:1c:7a:b6:a0:98:ee:e9:5a:
75:fe:a1:ca:0a:e4:2f:d4:07:88:9d:d5:4f:fb:9b:dd:fa:a6:
07:36:46:96:14:76:3c:9d:42:14:b1:50:6a:ae:98:1c:80:ba:
ff:a6:63:66:81:76:c4:43:de:7b:85:81:2f:75:52:f3:57:be:
ab:be:b3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org