Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3MImTdWYouQqm9ECXBZMQPrBvu4.roa
File: 3MImTdWYouQqm9ECXBZMQPrBvu4.roa (raw, json)
Hash identifier: 2oT1qzCTyr9AZj3sgWWE061lklyZgMzfuc4iCRH3PHo=
Subject key identifier: DC:C2:26:4D:D5:98:A2:E4:2A:9B:D1:02:5C:16:4C:40:FA:C1:BE:EE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3MImTdWYouQqm9ECXBZMQPrBvu4.roa
Signing time: Thu 15 Sep 2022 02:46:25 +0000
ROA not before: Thu 15 Sep 2022 02:46:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DCC2264DD598A2E42A9BD1025C164C40FAC1BEEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:e8:00:77:c6:da:ac:20:94:c0:d3:da:df:
f5:e3:c9:6c:f2:39:ab:aa:4c:02:25:dd:6a:5b:d4:
34:79:0a:3e:0c:b9:8c:af:1b:14:57:76:8d:ea:ec:
8f:3c:a0:c9:9a:be:ce:d4:e2:cc:15:10:c4:77:71:
51:c9:ec:5b:ba:22:1a:4f:1f:91:d8:07:ca:cd:9d:
7a:84:31:a3:4d:4d:ca:50:d6:8d:47:73:25:73:fb:
95:88:35:78:24:81:5d:2f:47:72:60:1a:97:d4:fc:
0d:6d:95:00:cf:71:58:e9:6e:54:da:de:d9:bf:d6:
44:3e:25:0e:c5:a3:8c:b5:9a:a1:fd:c8:04:98:d7:
a2:2d:4a:9a:02:ce:1c:87:df:c2:a1:71:c6:38:86:
07:f9:7f:e2:b8:74:a2:e3:34:65:22:5b:42:bb:5d:
90:6b:39:ae:28:13:83:b2:e8:0f:20:f4:2a:ae:24:
36:84:df:ae:78:a9:dc:65:41:08:b2:59:e5:17:09:
e0:1d:22:04:13:15:ec:d1:72:90:18:b9:cc:09:6c:
2d:26:a2:70:9f:e3:b2:c4:ce:2d:5b:66:a6:95:ec:
74:43:0a:73:07:6b:ed:16:d4:50:c6:9d:bd:a3:aa:
25:48:28:eb:ec:33:f1:f4:a2:81:50:4b:a3:c4:6b:
d4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C2:26:4D:D5:98:A2:E4:2A:9B:D1:02:5C:16:4C:40:FA:C1:BE:EE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3MImTdWYouQqm9ECXBZMQPrBvu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.120.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:4d:6b:69:a8:1d:45:26:b3:35:67:b3:a9:4e:90:96:67:e1:
4b:6b:f6:31:d4:81:e2:42:76:6a:06:2f:0c:63:7b:99:bd:2b:
a8:67:fa:82:eb:3c:06:8c:d8:bb:89:1b:a6:f1:2c:06:7f:1c:
ce:5f:5c:d9:1c:b4:0b:4c:8f:53:74:04:a4:b8:0d:56:be:4e:
71:14:9a:56:59:cf:fb:2d:48:f9:81:ad:1c:84:9e:53:b5:ed:
f4:75:20:d1:6d:0e:d5:d4:e6:b3:e9:f7:1e:0d:d3:92:28:c6:
45:3c:d1:b3:70:c6:9c:12:06:67:18:c5:8d:cd:f4:74:01:69:
c8:7a:6d:64:23:a6:94:57:cd:32:19:0f:44:58:c2:23:6a:b8:
23:44:56:17:83:cb:65:a3:81:76:71:b6:1d:c8:34:84:52:61:
41:fd:a7:b1:13:ea:5f:0c:eb:bb:5d:88:31:8e:3b:a8:75:ae:
0e:3c:3c:69:df:6b:ce:8c:e1:a1:65:3c:7c:ec:a0:a3:9e:3c:
94:3a:ec:4a:7c:6c:02:56:09:c4:d1:ea:3d:a1:17:d1:d3:be:
b3:f7:92:e1:9c:d2:1f:58:90:8f:f8:37:34:cb:13:d3:8e:58:
dc:a7:00:66:b2:22:c2:d3:32:c6:2d:1a:c7:04:da:9a:68:c5:
c8:80:9f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:18 2025 by rpki-client