Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ChcvTeIuoLvmoJdGbGGnsydZs24.roa
File: ChcvTeIuoLvmoJdGbGGnsydZs24.roa (raw, json)
Hash identifier: SfWiuT0QJ7DR+pbRMl/XKLfeBfPyd5yxSDvUM41qJgo=
Subject key identifier: 0A:17:2F:4D:E2:2E:A0:BB:E6:A0:97:46:6C:61:A7:B3:27:59:B3:6E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1489
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ChcvTeIuoLvmoJdGbGGnsydZs24.roa
Signing time: Sun 07 Feb 2021 11:59:02 +0000
ROA not before: Sun 07 Feb 2021 11:59:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.236.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5257 (0x1489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:59:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0A172F4DE22EA0BBE6A097466C61A7B32759B36E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a2:3a:75:20:db:9b:ef:e9:ce:d9:48:72:70:
1d:4e:45:d9:1a:3a:ea:af:b5:89:aa:f2:e7:b4:cc:
1f:fd:d4:33:73:bb:61:16:29:98:9c:1a:cf:a4:bf:
57:7f:7d:86:20:5c:0b:d8:4b:60:a3:39:12:db:fc:
44:fe:e3:05:46:cd:1a:73:ee:05:02:71:4c:00:81:
c6:2e:35:46:ee:b3:ef:c3:bf:ff:65:60:23:3b:a2:
38:49:2d:b3:f0:1f:f6:14:44:a1:d5:87:4e:07:b1:
94:c6:6d:c6:fe:9a:cc:f9:97:a6:cf:a8:ed:04:b3:
45:6a:73:77:15:e1:c5:ca:e5:b6:06:9a:f8:91:28:
09:b6:ed:8e:43:f7:aa:7f:84:79:fa:a2:6b:a8:b8:
b8:f5:22:23:85:03:a0:c0:d2:6e:e3:b9:0e:f0:f2:
ed:4e:b0:96:26:c9:b5:6e:19:4f:68:be:05:59:ba:
3e:fe:d1:cb:54:71:6b:9c:73:4e:c2:7f:8c:18:99:
79:cf:26:8b:94:da:23:b9:b6:96:ae:64:c3:4d:1f:
3c:75:c9:50:98:fd:bf:8d:5a:c1:5e:c1:ca:0c:bd:
96:27:7d:35:ea:bd:99:38:9e:ce:c2:3d:61:a3:6e:
a0:3f:94:bc:75:2a:31:c3:bb:c9:0e:2d:05:65:6a:
32:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:17:2F:4D:E2:2E:A0:BB:E6:A0:97:46:6C:61:A7:B3:27:59:B3:6E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ChcvTeIuoLvmoJdGbGGnsydZs24.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.236.128/25
Signature Algorithm: sha256WithRSAEncryption
4f:94:af:14:b2:48:11:bc:5d:33:cd:72:56:f9:95:be:68:a6:
5d:85:53:d2:a7:f4:14:05:8e:80:2c:9f:8a:63:53:56:56:c2:
0a:fa:96:16:7f:71:cc:0f:05:fc:34:17:67:25:9c:00:5f:1c:
d3:70:b3:23:8a:aa:3a:7d:b3:bf:de:a4:64:6d:f2:44:67:2e:
83:ae:f1:3c:ec:68:da:80:f0:51:06:bf:ee:ac:18:bf:50:b8:
07:fe:5b:d7:2a:3d:0d:38:15:ec:59:c0:06:d0:31:5d:5f:bb:
4a:d2:79:e7:0f:af:11:7e:9e:38:34:24:75:bb:89:9e:49:70:
88:06:2f:8f:b9:65:c6:34:5f:a7:bf:fe:de:e4:bb:85:6a:0f:
6b:0e:e6:f8:12:ea:ea:8c:09:ff:69:24:6d:f7:4d:a8:a4:be:
d9:fa:df:8d:4f:be:2f:84:65:3d:10:bf:96:2d:9a:4e:74:1a:
0b:f8:94:23:b8:06:cc:33:7d:c0:af:79:83:78:f4:bc:0d:32:
b5:b3:2e:4b:48:f7:f5:ed:a0:e4:fb:9b:d2:b0:77:20:9f:48:
b0:87:9c:7a:61:6a:a6:bb:bb:b1:12:89:9c:fb:25:a3:6a:1d:
48:86:55:d2:36:6c:4e:46:f7:4f:39:40:a9:3e:b7:ca:32:18:
33:bf:5e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org