Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K55FFX7H6QW3pUPongMobRypbu0.roa
File: K55FFX7H6QW3pUPongMobRypbu0.roa (raw, json)
Hash identifier: r6MhpMMnaXwZ52VjPhOaxJONG4A8GVEfciHUKinom1g=
Subject key identifier: 2B:9E:45:15:7E:C7:E9:05:B7:A5:43:E8:9E:03:28:6D:1C:A9:6E:ED
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 14B3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K55FFX7H6QW3pUPongMobRypbu0.roa
Signing time: Sun 07 Feb 2021 11:59:42 +0000
ROA not before: Sun 07 Feb 2021 11:59:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5299 (0x14b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:59:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2B9E45157EC7E905B7A543E89E03286D1CA96EED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c8:4d:04:6e:44:59:ea:d3:92:84:ab:c3:c2:
54:1e:3a:39:f0:ea:75:1c:0a:fc:78:93:f8:db:20:
bc:c1:5b:45:08:2e:a7:63:47:16:04:4e:72:15:97:
61:bb:d0:4f:67:4f:2c:16:fc:bd:f4:1c:99:aa:7b:
c7:84:46:ed:d8:06:76:2b:c1:a4:e0:31:4e:b1:89:
8f:26:e0:6a:09:c5:33:c7:0c:82:d6:a2:d2:0d:eb:
4c:b2:13:17:0d:1a:82:0b:40:b0:d3:c9:77:43:18:
80:f8:7a:e8:65:41:2a:46:b6:10:7f:0a:5d:ce:2d:
9f:d6:38:f6:c5:0e:07:0c:f2:43:b8:9b:b2:83:98:
28:5c:41:1f:4d:47:09:16:71:02:dd:3e:6a:24:b3:
fe:bd:ac:9a:14:cd:40:89:a2:b5:e9:cf:ac:45:56:
c1:c8:51:56:b6:1f:d2:4c:ac:9f:fa:7b:63:e5:d0:
fc:63:bc:87:0b:0b:06:dd:3a:93:0f:3e:17:a0:a1:
16:e4:f6:3f:96:5e:ff:79:7c:31:92:64:22:a6:29:
07:48:9a:85:b7:ae:45:03:01:0b:95:b5:f8:30:0b:
8b:c1:8e:5d:fc:4b:d4:b0:b6:67:72:0b:37:bb:d6:
1f:61:7f:21:74:32:50:33:77:f8:5c:a5:9e:64:8f:
98:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9E:45:15:7E:C7:E9:05:B7:A5:43:E8:9E:03:28:6D:1C:A9:6E:ED
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K55FFX7H6QW3pUPongMobRypbu0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.160.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:58:e5:8b:1c:16:33:43:8b:5a:e4:30:36:53:87:d1:fb:ec:
0f:8c:e5:f5:be:7c:11:02:e0:1d:eb:b9:ce:e4:07:58:54:9e:
0e:8e:5c:27:3e:89:a9:5a:a5:ef:ed:0f:96:18:a2:33:f2:19:
d7:59:2a:28:fe:66:f0:75:5b:fa:75:77:c1:4f:af:02:d1:85:
90:bb:ae:a9:94:f9:ba:b4:1d:21:31:8e:ab:35:97:b1:28:1e:
20:a1:8d:93:03:1b:60:9a:8a:16:5d:e9:61:60:52:1f:44:95:
31:08:6f:f4:f2:d1:46:db:84:b0:1f:f8:0a:42:64:ee:ec:10:
26:9e:b5:ec:53:b4:ba:56:47:46:a5:f4:05:19:bf:4c:bb:3b:
6a:16:26:f9:59:13:c3:7c:0c:b9:39:28:80:b9:86:e4:fd:56:
8c:5e:bf:4f:24:8b:42:1b:3e:cd:c6:0f:cd:e3:7d:44:2f:26:
b3:33:8a:20:5b:a6:f4:de:d6:e6:6e:a8:66:e9:3f:ca:57:d5:
be:07:6b:c6:c7:d1:db:94:65:e4:93:0b:65:1b:f5:9e:4d:2e:
f4:16:e6:43:4a:ab:1d:51:45:d6:8c:35:3e:cb:d3:fc:83:99:
b8:a5:e9:33:d1:75:00:bf:3f:b7:92:a9:e2:ea:73:b0:29:75:
83:1e:48:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:33 2025 by rpki-client