Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IKmquj5EhZAdSmvFE9u8Macpq-0.roa
File: IKmquj5EhZAdSmvFE9u8Macpq-0.roa (raw, json)
Hash identifier: NqIc+c7vvU4w6+e0xm0pPI+ulhjJBwdQtDD1gtSRZpY=
Subject key identifier: 20:A9:AA:BA:3E:44:85:90:1D:4A:6B:C5:13:DB:BC:31:A7:29:AB:ED
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C3B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IKmquj5EhZAdSmvFE9u8Macpq-0.roa
Signing time: Wed 29 Sep 2021 02:47:30 +0000
ROA not before: Wed 29 Sep 2021 02:47:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.205.144/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7227 (0x1c3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=20A9AABA3E4485901D4A6BC513DBBC31A729ABED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b9:8b:dc:1c:51:3e:6e:f9:05:99:c9:e2:2c:
7c:7a:d3:d6:df:23:83:37:70:e2:58:c7:64:c2:68:
1c:d2:0a:80:f6:f6:dd:e2:44:bb:4d:c0:93:dd:b4:
87:bf:1a:0e:4b:61:a1:c3:e2:be:76:84:07:9a:c3:
fa:d9:99:71:0c:df:91:01:0d:f0:c7:d3:55:57:f3:
fe:d6:dd:45:d7:09:e6:4d:9b:6a:64:31:56:36:a1:
d2:92:65:48:aa:68:f0:e6:1e:72:53:e5:d5:f9:b5:
d6:c8:20:a0:ba:ac:c6:4a:4c:0d:61:dc:b6:3f:0d:
d6:39:9f:22:3c:22:93:2b:fa:c9:22:12:a5:06:e8:
fc:78:68:ad:10:5e:3f:39:e3:04:26:64:d8:73:95:
f5:25:dc:97:8f:f5:36:fc:b8:2b:fe:de:34:37:1a:
a5:0b:6c:92:dc:f6:14:e8:44:55:f9:92:76:ee:9b:
0c:0c:97:13:bc:47:7f:9a:57:35:3b:a7:14:60:49:
57:7a:ff:d7:98:c7:28:c7:e1:63:10:e4:fe:5d:7f:
3a:e0:a1:8a:e2:6a:95:e9:59:fb:95:88:f5:e8:6b:
dd:d5:3a:49:29:82:90:2f:2e:4e:33:e0:0f:35:03:
e8:e6:a0:7b:87:1f:cf:d3:1e:f6:cc:85:f4:47:d2:
b9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A9:AA:BA:3E:44:85:90:1D:4A:6B:C5:13:DB:BC:31:A7:29:AB:ED
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IKmquj5EhZAdSmvFE9u8Macpq-0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.144/28
Signature Algorithm: sha256WithRSAEncryption
54:d6:f3:f1:de:c4:ef:55:87:bd:9c:8c:5e:c6:1f:13:b1:75:
93:3f:40:b7:38:93:63:dd:ec:63:2f:df:80:f4:87:ff:22:48:
e4:ec:bc:d8:24:a0:f8:33:d0:40:16:2d:02:bc:d3:cd:b0:8f:
af:80:bc:cc:e5:aa:74:d0:fc:fc:2c:64:b5:15:3d:10:6e:39:
56:0a:1f:87:40:36:19:b0:b0:6c:bc:85:a8:7c:56:1b:70:d6:
b9:d0:f2:90:3d:d9:df:0d:27:b9:5a:2a:bb:65:b4:26:de:44:
d9:b2:21:91:a8:7f:b5:71:ba:39:fa:d8:3b:e8:f3:95:c0:a4:
90:cf:1d:5a:c1:53:8a:40:33:18:73:a9:9f:01:c6:de:4d:8b:
7b:09:36:4c:fd:2d:d3:c0:82:f1:1d:4b:a6:7b:2a:6f:e7:10:
9c:06:a7:e3:e0:9a:07:c5:6c:00:ed:84:9d:56:45:2c:8c:9e:
b8:7d:bd:e9:ff:3f:bd:6e:8f:4f:99:03:b0:d2:56:2f:06:93:
36:2a:52:00:00:f4:50:1d:1a:4c:8d:b5:be:83:53:6a:5d:74:
af:e7:98:ed:63:d4:4d:99:ba:e9:44:95:95:4f:2f:0f:74:94:
12:8c:ce:44:fd:81:f1:ea:d6:8a:44:11:c3:6a:d3:d4:9b:fb:
94:71:91:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org