Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Jju3V8RyOb11ZGkBwQUbNDPwjG0.roa
File: Jju3V8RyOb11ZGkBwQUbNDPwjG0.roa (raw, json)
Hash identifier: m3bWk16b7TJZapXyVPRcQ6PyySSmyUr95u0O5QuTgjw=
Subject key identifier: 26:3B:B7:57:C4:72:39:BD:75:64:69:01:C1:05:1B:34:33:F0:8C:6D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20C1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Jju3V8RyOb11ZGkBwQUbNDPwjG0.roa
Signing time: Fri 25 Nov 2022 04:39:04 +0000
ROA not before: Fri 25 Nov 2022 04:39:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8385 (0x20c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=263BB757C47239BD75646901C1051B3433F08C6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a6:ca:6b:23:89:b1:84:46:b0:0b:75:07:75:
6d:cc:e1:28:3f:ac:4a:ee:26:80:80:e9:c0:88:a0:
66:a1:27:03:f7:fd:b5:c0:60:8c:49:c3:57:4c:79:
90:cc:64:f9:d8:d4:6f:00:0c:cc:f3:e5:39:27:39:
8d:e7:0c:a8:d0:ae:d7:97:a8:f1:e7:4b:e7:07:63:
fe:20:8b:87:22:4c:de:06:04:5a:d2:60:2a:89:56:
4c:27:59:e1:53:cc:56:f3:6b:bb:3c:7d:1f:d8:4b:
b9:1e:75:d6:e1:8a:66:20:49:b2:f3:99:9d:b5:de:
e7:f2:a3:22:79:70:b9:df:22:00:6f:b1:bd:8b:73:
c1:6e:42:bd:2b:aa:f1:59:1a:15:db:2a:9f:03:84:
da:ca:db:d1:d4:31:fe:4e:34:4e:01:d7:ab:59:10:
dc:4e:6e:af:f7:8e:4a:7d:d3:62:6f:ec:2b:5f:68:
bf:c9:33:11:bc:7c:b8:a8:55:38:95:b0:c4:61:ef:
52:66:60:56:2e:43:5a:e3:a6:34:59:ee:ad:b9:c9:
c3:89:b8:4e:d1:d3:3d:00:ad:13:eb:fe:bd:90:2f:
ce:b0:4b:dd:7d:49:d8:45:66:16:53:25:30:30:3e:
ad:9b:53:27:73:d7:da:75:ec:74:fc:50:18:14:b3:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:3B:B7:57:C4:72:39:BD:75:64:69:01:C1:05:1B:34:33:F0:8C:6D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Jju3V8RyOb11ZGkBwQUbNDPwjG0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.152.0/21
Signature Algorithm: sha256WithRSAEncryption
0c:3a:f6:42:c5:09:9f:5b:47:74:75:af:12:06:14:f2:b8:54:
72:08:a8:d4:91:8b:ee:7b:19:a2:c7:1c:2d:bf:6d:00:2c:75:
40:de:32:19:a9:f7:d2:2f:fb:d2:e9:17:d9:18:9d:78:5b:6a:
64:31:11:17:bf:5e:30:b0:6e:3a:fd:bc:e3:cf:aa:7f:f5:ee:
fa:83:1f:aa:69:d0:bc:e1:99:ca:ce:58:d1:0c:4e:ba:2f:19:
54:57:db:25:dc:e9:4a:60:a7:0f:97:99:44:fe:03:62:5b:18:
86:31:83:8d:3e:6a:fd:ea:24:92:e0:6c:82:ea:49:e7:dc:69:
b6:0c:7c:dc:2d:61:21:03:9c:a7:1b:a0:c5:1b:25:7f:d9:32:
a8:41:21:a1:fa:84:b1:03:99:31:fd:55:0a:aa:a6:59:cd:47:
2b:8c:a1:a6:ee:0b:7a:7e:df:f1:22:b4:4a:18:fe:df:3e:da:
f6:34:d5:91:ff:ae:e7:54:81:14:53:29:17:76:be:4c:6b:23:
f9:37:71:4f:24:dc:4a:ac:fb:a1:62:f6:2b:22:2e:1b:e3:d8:
51:eb:5e:00:70:6f:2c:a7:26:2c:14:e4:c6:25:12:34:ab:f5:
f7:c1:b8:28:09:8f:1c:84:32:c0:3e:11:87:ca:83:01:7e:58:
3b:7b:b2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org