Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A-EslMchIjWkmbA3Z8nacISH9Gs.roa
File: A-EslMchIjWkmbA3Z8nacISH9Gs.roa (raw, json)
Hash identifier: bWxWhDomItc5ymxoWJQXGvkyCc86NJxwsWNBWDydtxY=
Subject key identifier: 03:E1:2C:94:C7:21:22:35:A4:99:B0:37:67:C9:DA:70:84:87:F4:6B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1787
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A-EslMchIjWkmbA3Z8nacISH9Gs.roa
Signing time: Sun 07 Feb 2021 12:19:59 +0000
ROA not before: Sun 07 Feb 2021 12:19:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6023 (0x1787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:19:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=03E12C94C7212235A499B03767C9DA708487F46B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:a4:b0:59:de:4f:88:df:0a:0f:a7:d1:50:
6b:a6:ad:f6:a5:e5:bb:17:7b:3a:c5:f4:7f:f4:be:
18:29:d5:1d:61:9c:3d:a5:4c:8a:b7:d3:59:36:cc:
a1:2f:20:29:62:75:fd:40:53:9f:c2:fe:f6:5e:33:
60:2b:0d:82:41:0d:6c:19:ac:80:d5:5b:9e:cc:8f:
b1:54:23:ed:d5:4d:45:31:00:94:6d:3d:36:55:43:
d4:52:5e:05:e1:73:9b:b6:b6:a3:ee:02:97:32:d4:
72:70:6d:58:1b:63:8f:f6:31:51:c7:e4:10:e3:10:
c5:7d:77:8b:0f:7a:7c:a7:a0:2a:9a:6d:dc:15:cd:
93:49:af:eb:c2:53:77:c6:d1:06:19:37:d8:88:4f:
cb:d0:77:dd:c1:6b:f5:9e:c3:6e:f1:28:ac:bb:8d:
81:8b:94:2b:d1:3d:64:4a:aa:0d:cf:e3:95:a6:d6:
fd:25:53:bf:a5:0b:9b:97:d8:3f:86:9a:76:41:0d:
13:0d:72:3f:ba:dd:bb:2b:9b:49:2e:c4:ad:47:61:
5f:f6:a9:28:cd:a6:04:53:f2:95:8d:9b:04:3f:e5:
6b:fa:79:27:32:80:0b:4f:81:91:6d:ee:5e:6d:03:
4f:1e:46:f2:5b:22:6b:f3:ba:ef:f6:16:df:b9:d2:
8a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E1:2C:94:C7:21:22:35:A4:99:B0:37:67:C9:DA:70:84:87:F4:6B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A-EslMchIjWkmbA3Z8nacISH9Gs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.96.0/21
Signature Algorithm: sha256WithRSAEncryption
35:8f:b1:0f:bf:b9:65:2b:88:60:51:8c:ef:e3:e6:8c:2d:ad:
aa:e2:5c:e9:0d:42:26:79:3f:40:90:42:d4:82:ea:5e:d4:47:
17:4c:8f:93:5a:c4:49:11:ac:ab:31:5f:31:c9:e0:7e:74:67:
2c:8a:47:76:55:5a:49:4b:26:83:aa:06:6e:7e:2d:bb:cf:2b:
26:f6:b1:62:25:44:81:7d:7d:a7:28:33:12:4e:96:43:9f:5f:
b2:67:35:f1:b9:95:f8:8f:f0:ec:f7:44:68:b2:ec:06:ea:c7:
74:51:63:92:20:99:c9:1f:24:8f:58:11:d2:5d:cd:fc:ec:56:
60:9c:f1:4e:81:7e:1c:ef:7a:a5:78:78:0a:75:0f:39:27:84:
bd:8e:58:52:11:45:5e:9b:2b:34:a2:73:51:9b:18:84:b6:d3:
74:70:c4:f5:c6:8b:d7:29:53:f5:0a:eb:43:48:6f:99:78:d9:
c4:b6:11:48:a6:a1:5c:19:c4:c3:fe:96:5c:b2:c0:86:73:e1:
a2:1d:77:c0:78:b0:a7:41:19:f6:f5:b2:78:2d:b4:05:a3:65:
fd:79:03:f9:17:2c:7b:6d:38:ff:46:26:48:ec:11:81:ca:29:
2e:1f:ec:22:8a:e5:00:17:08:3f:a5:40:73:39:8e:31:be:80:
fd:7b:93:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org