Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5HKvOf4uVgSEAVtSXUzfzGHQKl8.roa
File: 5HKvOf4uVgSEAVtSXUzfzGHQKl8.roa (raw, json)
Hash identifier: M9T7QWLnNLtdg91YEZoy/rzSYp7T3jQ3MB/ciejfHj8=
Subject key identifier: E4:72:AF:39:FE:2E:56:04:84:01:5B:52:5D:4C:DF:CC:61:D0:2A:5F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1ACC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5HKvOf4uVgSEAVtSXUzfzGHQKl8.roa
Signing time: Wed 29 Sep 2021 02:45:46 +0000
ROA not before: Wed 29 Sep 2021 02:45:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6860 (0x1acc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E472AF39FE2E560484015B525D4CDFCC61D02A5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:75:98:f3:c2:4d:a8:05:82:c7:f3:8d:99:5a:
41:87:9e:f8:d6:ba:13:10:97:83:79:7e:d1:8b:ee:
b9:fd:c7:e5:87:ed:7c:94:d7:fe:7c:20:16:67:8f:
62:2d:76:be:33:79:29:16:c2:6e:39:72:43:ac:c6:
c1:46:19:73:14:d7:b3:1f:b9:ca:2e:c4:49:68:71:
4e:6b:b1:88:af:74:0d:05:c1:b8:d7:09:8d:d9:ca:
8f:d0:d0:5f:e8:d6:9b:20:d0:76:da:73:85:44:18:
cc:3e:ae:9b:78:c9:35:1b:87:74:08:d7:6c:c9:34:
9e:1a:f9:f4:66:ed:6b:1b:5f:1c:c9:3e:ac:d2:04:
90:46:51:2b:33:34:a2:91:84:f8:e5:62:48:9f:15:
92:11:e6:e7:3b:7e:49:5e:c4:7f:69:12:3a:8b:b0:
27:5a:4f:d4:55:48:31:ea:7e:8a:8a:23:42:fb:95:
81:f2:40:e8:75:e4:06:a7:21:6e:32:39:1c:2f:de:
4f:7c:ac:27:cf:00:f5:4e:dc:4c:c0:5e:2a:86:bd:
25:6c:85:b4:d7:2b:d9:fc:94:3e:a0:86:d5:77:de:
ec:5c:7d:99:89:9d:8f:10:05:d3:12:14:54:a6:de:
2a:71:0a:64:c4:e7:bf:55:8e:60:bf:a8:21:20:b8:
48:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:72:AF:39:FE:2E:56:04:84:01:5B:52:5D:4C:DF:CC:61:D0:2A:5F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5HKvOf4uVgSEAVtSXUzfzGHQKl8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.208.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:11:df:77:7c:61:0b:f9:d2:c8:ab:14:d6:9b:21:4f:e4:08:
64:d1:1c:f3:b2:a5:9a:d9:78:e5:cd:78:6f:a4:d2:9d:c9:12:
79:e3:a5:29:9c:b3:41:85:9d:71:5d:70:64:71:80:8e:27:ea:
81:3f:cd:bb:a6:98:77:0b:4a:18:99:8f:4e:5e:77:39:a5:69:
7f:a0:88:d7:aa:7e:f3:ec:14:2f:ae:92:30:3c:72:21:46:9b:
60:1e:0d:ad:44:89:f2:ee:50:be:70:7a:94:ed:68:fc:e5:f7:
f5:ec:32:b8:2b:3c:ad:0b:e0:f5:73:e1:db:67:b1:9b:26:f6:
c1:0e:dc:c2:9d:b9:cb:c7:5d:c1:51:e3:bf:2e:8f:b4:65:68:
ab:15:5a:ef:e8:98:b2:3c:7a:8c:ec:a1:88:c1:f6:2e:a6:43:
e0:1f:3c:d8:57:76:2d:ce:bf:a2:ae:79:98:43:19:fc:f4:68:
27:6d:de:91:40:8d:67:ce:0b:41:66:09:75:9f:10:4a:a9:af:
a2:3e:23:20:75:b2:96:81:1e:27:69:de:51:a0:f4:51:27:b1:
84:fb:59:15:ff:d5:a0:65:db:5c:b8:51:8c:f0:e4:4d:ab:29:
7e:65:e3:59:90:ac:1e:6d:d8:a3:93:c0:25:83:d7:bb:65:d0:
b4:f7:e5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:21 2023 by rpki-client on console-fra.rpki-client.org