Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BvBDYmBQrpbKjEaq1S6IwYSlpNU.roa
File: BvBDYmBQrpbKjEaq1S6IwYSlpNU.roa (raw, json)
Hash identifier: OjI9LG+/H7JgAjAkIODKhSmEJCsy4FJkhudCC5uKcmY=
Subject key identifier: 06:F0:43:62:60:50:AE:96:CA:8C:46:AA:D5:2E:88:C1:84:A5:A4:D5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2989
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BvBDYmBQrpbKjEaq1S6IwYSlpNU.roa
Signing time: Fri 01 Sep 2023 10:06:43 +0000
ROA not before: Fri 01 Sep 2023 10:06:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.194.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10633 (0x2989)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=06F043626050AE96CA8C46AAD52E88C184A5A4D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1a:07:8d:75:2f:46:c6:35:13:fe:a3:61:d2:
8e:17:3a:9d:56:91:a8:ad:6b:cd:b2:66:e9:88:a1:
c7:69:91:ef:dd:01:93:28:81:40:02:bf:b6:2f:48:
97:00:98:74:ad:1b:49:13:f4:18:e5:52:7f:59:e7:
b7:88:76:22:1b:60:fe:f4:a8:17:82:20:0f:fb:cc:
4b:3f:6c:c3:bf:ab:15:97:47:01:c9:a8:28:b7:27:
99:6a:90:e3:c9:38:1a:3c:cc:21:86:b6:01:26:48:
4d:63:bf:5d:b4:b7:59:af:e2:4a:b6:bb:85:59:c4:
1a:96:82:0d:e8:3a:35:46:4d:ca:80:91:f9:0f:61:
3a:fa:19:6b:da:db:94:6a:08:b2:2d:e5:fe:13:a8:
f5:67:28:37:e1:13:37:96:10:bf:d6:46:c8:6a:ab:
c4:24:7b:45:9f:5c:12:36:c2:b9:95:49:4e:2b:43:
1d:7a:d3:4e:85:dc:c0:ed:82:a3:c0:c7:8f:5b:c6:
4b:71:68:1d:b6:c5:60:92:10:2b:49:42:44:14:8f:
08:6c:2f:9c:d4:8a:f0:fd:f7:cf:b7:23:47:e6:27:
88:6d:f2:a9:5c:69:5c:b9:d1:17:9a:29:af:c5:58:
90:52:cb:6e:e5:45:98:f1:83:b2:08:ca:c8:1a:8a:
4f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F0:43:62:60:50:AE:96:CA:8C:46:AA:D5:2E:88:C1:84:A5:A4:D5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BvBDYmBQrpbKjEaq1S6IwYSlpNU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.128.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:3b:c8:be:13:16:cd:26:bf:ed:3f:6e:f4:cc:43:02:14:0a:
74:be:df:78:4b:73:ec:6d:7f:00:f2:4d:45:6c:07:81:05:09:
3e:dd:74:83:6a:a4:be:70:a2:d5:ba:f3:a7:24:0a:8b:75:41:
18:6d:63:1d:1d:72:4f:81:a6:c7:8a:51:54:a2:99:e8:06:e8:
79:d8:9b:9e:c7:d8:bb:74:3b:25:27:ea:d6:01:e3:3f:fa:29:
eb:71:3c:96:56:96:a1:6e:af:61:89:bd:ef:b0:ff:c4:e1:e5:
d4:72:c9:cd:4f:ea:ec:02:22:1c:e9:5f:76:5d:71:11:d9:b5:
fb:5e:e4:76:97:46:63:ee:1c:00:1a:44:fe:b9:48:f8:ba:91:
78:51:7f:dc:1f:65:da:c7:a9:2f:2c:8f:ac:de:d1:02:d6:1d:
99:61:09:0f:7a:2d:5b:76:b6:66:93:5d:89:b1:ac:14:60:5a:
74:a4:18:9a:28:d6:46:f9:be:c3:80:9a:ac:97:0a:ce:11:73:
3d:18:d2:d2:c5:5d:cd:6d:aa:19:c7:34:7b:cf:7f:eb:16:cf:
93:d6:f4:03:73:a7:39:f4:ce:cc:0e:35:ea:e6:6a:c4:c7:70:
aa:6e:dc:e6:0c:35:94:2c:5c:1a:81:a0:40:fa:ec:db:59:00:
de:7e:19:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:13 2025 by rpki-client