Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KGBMQI7xNGVwlJ4-fNF-KgGYYN4.roa
File: KGBMQI7xNGVwlJ4-fNF-KgGYYN4.roa (raw, json)
Hash identifier: +HogKgUBOtkUo+Iwls3GWbb+2QFDyaVkVSZHweMs7QA=
Subject key identifier: 28:60:4C:40:8E:F1:34:65:70:94:9E:3E:7C:D1:7E:2A:01:98:60:DE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BEB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KGBMQI7xNGVwlJ4-fNF-KgGYYN4.roa
Signing time: Wed 29 Sep 2021 02:47:10 +0000
ROA not before: Wed 29 Sep 2021 02:47:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7147 (0x1beb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=28604C408EF1346570949E3E7CD17E2A019860DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:34:5a:ec:7c:19:18:7d:b8:d2:a2:52:65:c0:
86:e4:b8:cf:3c:94:b0:c5:93:b1:4f:10:ca:75:16:
11:d7:2f:67:0a:d3:74:26:9d:96:be:00:61:a7:d9:
12:ef:bf:3d:f4:23:8b:b1:87:67:55:fe:a5:e9:8b:
6c:49:1e:2c:78:e6:c0:12:f2:f7:93:1b:6e:2f:70:
a2:b4:7f:91:18:13:1e:60:9a:8c:59:de:02:9a:01:
10:a0:60:a1:28:85:4e:5b:b4:8b:ce:53:f1:0f:21:
c8:b4:b5:18:bc:d6:b2:42:3a:7a:13:85:8c:73:24:
28:49:c6:5b:ae:21:f5:31:15:be:80:0c:65:c1:e4:
c1:af:56:5f:ff:6f:f6:7c:a5:eb:d6:da:c9:b8:ae:
d9:3b:ba:a3:d6:62:aa:18:a5:a8:55:4e:01:86:6a:
c0:a6:10:61:ea:e3:df:53:c1:eb:4a:3c:0b:59:66:
68:cc:c4:2c:fc:2d:58:fc:2e:bc:b9:5a:b5:33:9a:
c1:42:94:bf:4e:f4:f0:85:59:51:f6:02:9c:bf:f7:
e3:15:29:af:5a:f4:28:a0:d4:19:26:ce:c8:6c:bf:
f4:c0:cf:b6:5e:98:e5:b7:cb:d2:d9:98:11:fa:51:
12:30:78:89:f9:d9:c2:2c:18:cf:bf:d6:42:24:f6:
01:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:60:4C:40:8E:F1:34:65:70:94:9E:3E:7C:D1:7E:2A:01:98:60:DE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KGBMQI7xNGVwlJ4-fNF-KgGYYN4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.208.0/21
Signature Algorithm: sha256WithRSAEncryption
69:a1:12:93:64:90:79:79:71:ac:ed:84:fa:0b:eb:4b:c7:d6:
e9:24:0d:fa:1b:5d:d6:41:a5:07:21:23:72:60:a3:d5:58:95:
ce:71:6b:4f:30:9e:34:fe:00:bd:bf:01:2b:73:8e:5b:52:ae:
54:73:09:c3:85:3a:5d:58:2e:42:d4:58:42:57:a1:06:44:2e:
02:cd:d3:b9:63:8f:1d:f1:64:6d:72:37:92:7c:ff:59:df:c2:
f5:ce:3d:07:74:aa:b7:a7:d4:93:e7:e8:44:96:70:fb:e5:dd:
83:90:9d:c0:b4:c9:b0:41:b9:9e:b1:56:4b:36:c1:8b:b0:87:
95:ef:09:44:e5:7f:b5:a8:f1:67:58:4a:4e:36:89:b4:9a:ba:
4a:9a:cc:94:d0:cf:53:35:71:1e:a4:e8:00:eb:a2:35:a7:dc:
37:b4:88:c5:0b:37:12:39:39:ac:8d:d4:bb:f7:48:77:53:f7:
55:de:bb:bb:8f:dd:f7:60:b6:95:7d:1d:71:17:09:ea:25:0f:
cb:0d:b1:eb:ff:74:ea:fa:a0:05:ac:ec:ff:17:df:5f:3e:19:
a0:6c:21:b8:ce:b8:c4:9b:0c:5b:a4:1b:95:1d:0d:ea:6d:a7:
87:90:45:81:9d:78:55:67:e9:83:f1:4a:22:87:fc:12:a9:42:
a3:5f:0a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org