Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Bwd4qPqRjv9SOxBcTpdL3qxXwmU.roa
File: Bwd4qPqRjv9SOxBcTpdL3qxXwmU.roa (raw, json)
Hash identifier: o/hQjhF2XcWpITSNqD8nstKjcJ5yLgA2PXH9lU3IBtg=
Subject key identifier: 07:07:78:A8:FA:91:8E:FF:52:3B:10:5C:4E:97:4B:DE:AC:57:C2:65
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 144D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Bwd4qPqRjv9SOxBcTpdL3qxXwmU.roa
Signing time: Sun 07 Feb 2021 11:58:08 +0000
ROA not before: Sun 07 Feb 2021 11:58:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.193.192.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5197 (0x144d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:58:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=070778A8FA918EFF523B105C4E974BDEAC57C265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:88:74:08:a2:23:c7:b6:68:a5:02:07:96:09:
b3:9f:9a:44:22:61:da:55:6a:31:c2:cd:28:c2:d4:
66:cc:7a:30:cf:7f:09:f3:fd:7d:53:08:77:6c:64:
22:2b:27:fa:83:45:a9:9b:bd:2f:37:cd:3f:73:08:
b9:f7:cc:eb:83:87:80:a3:e8:6a:30:7a:08:62:4e:
58:bf:f4:95:8b:0a:d4:ca:bc:a0:0e:79:3c:bd:af:
57:c0:b8:bf:ef:15:9a:b8:4f:9a:90:5c:33:f7:f8:
fc:18:57:e6:5d:a1:54:48:01:8a:a6:96:26:a5:57:
a3:1d:bb:ab:e2:f2:6f:d7:83:de:25:e6:84:43:0e:
83:c1:29:e1:25:98:fe:70:13:6f:a0:f2:69:db:7c:
e8:86:d3:97:bd:a5:eb:08:be:8b:17:59:f6:e6:6d:
27:07:94:91:2c:73:54:12:c1:a0:ac:40:3e:e6:db:
47:b3:53:8d:83:de:88:0a:39:98:1f:63:5f:b2:c2:
f3:d9:cf:c2:d0:00:a0:41:56:7e:a4:eb:bb:0c:82:
f4:82:fd:40:0c:2d:86:94:fd:27:7b:59:98:26:2c:
70:2e:bc:69:28:cd:e3:61:b6:a3:df:80:09:bf:2a:
00:41:5a:24:ef:4b:12:07:e5:8f:34:e1:4d:49:78:
20:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:07:78:A8:FA:91:8E:FF:52:3B:10:5C:4E:97:4B:DE:AC:57:C2:65
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Bwd4qPqRjv9SOxBcTpdL3qxXwmU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.192.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:a4:45:0f:74:2d:21:7f:1a:34:56:96:b3:43:46:22:ff:0e:
14:45:35:19:21:90:4b:2a:48:63:cd:30:38:1c:13:34:6d:47:
07:55:e1:28:c9:46:60:bb:35:06:7c:4f:ba:a5:02:14:85:50:
9e:c1:da:66:00:d5:23:61:b3:49:8d:f7:32:ac:b4:fc:55:ac:
fd:72:c5:37:75:e6:dd:0f:6f:01:f5:f9:22:4f:b9:f4:a4:53:
8f:1f:91:a2:47:05:00:23:88:5d:09:72:d0:af:4e:72:e9:ea:
43:48:0e:11:de:ee:ae:10:5d:4a:98:20:70:28:02:3d:71:5e:
9e:15:c0:e8:53:5d:58:80:bd:c9:a6:40:89:fc:7c:e2:3f:ec:
9a:02:6f:82:92:ae:f9:22:b3:00:c6:bc:4d:48:c6:aa:e6:16:
bf:e8:21:2a:81:41:34:4d:64:df:84:c6:a1:1f:39:b6:70:54:
74:59:9e:b2:d2:b7:90:4f:7d:71:28:8e:cc:f2:6b:14:fe:89:
61:f2:ec:30:ee:5d:1a:e2:40:68:67:c0:72:27:6a:ac:4d:ed:
84:e9:fc:64:79:11:cc:85:90:71:5d:fa:11:e1:7c:ae:92:3b:
ee:47:e4:06:d9:e1:08:8a:d0:50:32:19:08:33:78:f4:2b:07:
da:cc:a7:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org