Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8XH2blUSaX5N6-CKSUYJjSpOps0.roa
File: 8XH2blUSaX5N6-CKSUYJjSpOps0.roa (raw, json)
Hash identifier: CRVO62zDqXZtoxoMVsjA0AzN7GKRBBp1AQCazg2T5H4=
Subject key identifier: F1:71:F6:6E:55:12:69:7E:4D:EB:E0:8A:49:46:09:8D:2A:4E:A6:CD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BA8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8XH2blUSaX5N6-CKSUYJjSpOps0.roa
Signing time: Wed 29 Sep 2021 02:46:51 +0000
ROA not before: Wed 29 Sep 2021 02:46:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7080 (0x1ba8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F171F66E5512697E4DEBE08A4946098D2A4EA6CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9a:b2:28:6b:38:b7:d0:96:2e:66:fc:a1:e5:
e6:02:27:2a:23:bf:5f:45:46:87:e0:a7:7a:9b:38:
50:04:e6:d0:42:0f:e6:58:4b:e4:86:b5:8d:18:10:
69:e7:d9:15:db:1b:4f:b1:8a:6c:7d:9f:61:23:91:
fe:c9:57:99:62:c3:c9:22:6c:36:36:89:0b:2f:5d:
6f:3c:d2:7d:83:36:b1:12:e1:95:7f:5d:88:40:2f:
23:9c:5a:49:cd:08:e5:72:94:4b:c0:a2:f6:f1:94:
04:da:28:3a:09:ed:b9:69:b6:69:0d:a9:ca:6d:05:
5b:f5:57:20:ab:b3:f9:78:45:17:a9:c5:21:a4:6a:
c3:a1:de:ff:03:b3:3f:20:e6:73:6e:be:54:b0:fc:
f0:c3:7a:d5:20:28:d3:47:db:6d:19:00:79:48:79:
ce:5f:05:d6:e7:d8:d5:b8:67:b5:b4:76:b6:b8:12:
dd:9a:70:14:ab:ce:58:cf:2a:cd:fb:2c:f8:7a:85:
47:2e:3e:15:48:bc:74:2a:62:92:f3:0b:3a:bd:97:
44:d6:44:04:c7:10:04:7a:50:ec:51:00:17:ac:5f:
59:30:b4:3e:4b:bb:8d:eb:c9:40:82:48:77:84:f3:
64:bc:6e:af:23:0a:69:b8:9e:4f:7e:af:e7:d7:dc:
de:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:71:F6:6E:55:12:69:7E:4D:EB:E0:8A:49:46:09:8D:2A:4E:A6:CD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8XH2blUSaX5N6-CKSUYJjSpOps0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.12.0/22
Signature Algorithm: sha256WithRSAEncryption
42:bd:70:e0:dd:9b:94:0d:b5:dd:aa:47:f0:1f:35:b8:c8:05:
77:9f:65:21:fd:3f:1f:3b:96:7a:cd:30:6d:c8:94:07:2a:d8:
d0:50:f8:fa:58:7a:e6:eb:e7:27:7f:92:c0:e7:20:3c:5c:20:
54:89:d7:0d:05:ad:1a:72:4d:eb:3e:e1:15:e1:c2:01:37:a9:
dd:99:13:d3:e2:d8:22:36:db:5c:cb:85:34:ac:c6:96:8b:84:
17:60:de:2d:bc:6d:7a:a5:9f:e0:17:96:c6:97:9e:10:f0:19:
f3:69:c7:87:34:3b:80:9d:8d:72:a2:d8:91:b4:0f:6a:51:8f:
8a:0f:ab:0b:76:20:ff:5f:99:52:8e:ed:b2:c7:a9:7d:61:f3:
14:23:30:2b:5d:80:ea:f8:fa:c3:c2:a1:00:4f:12:d1:5f:1d:
61:a5:b5:f3:90:af:60:47:e9:b4:d9:bc:d6:c5:aa:ee:a7:71:
0a:a0:e5:62:2e:05:55:88:1e:8d:9d:68:e9:f7:e4:32:a4:77:
bc:0d:d7:5a:6c:75:79:4c:50:96:5e:3d:0b:ed:ce:14:54:4a:
3c:4e:0f:df:e0:72:4c:bb:62:e1:34:e5:d6:8a:02:6a:27:27:
44:af:6b:ee:d3:08:22:16:f0:a3:14:5e:bf:cd:af:0f:aa:df:
91:e3:73:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:10 2023 by rpki-client on console-ams.rpki-client.org