Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lvdnj0CBfj80Gao5T1r2sVLWv_g.roa
File: Lvdnj0CBfj80Gao5T1r2sVLWv_g.roa (raw, json)
Hash identifier: 2hbR1aqYFBm/BnTr72a+21Vw+wgW8rT7Ss3rAhNzqCY=
Subject key identifier: 2E:F7:67:8F:40:81:7E:3F:34:19:AA:39:4F:5A:F6:B1:52:D6:BF:F8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DB1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lvdnj0CBfj80Gao5T1r2sVLWv_g.roa
Signing time: Tue 29 Sep 2020 09:54:51 +0000
ROA not before: Tue 29 Sep 2020 09:54:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.194.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3505 (0xdb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2EF7678F40817E3F3419AA394F5AF6B152D6BFF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:ef:9c:c3:f1:9d:07:d2:25:68:6d:d3:c3:
60:5a:ca:3c:bd:7b:ad:da:e8:13:a9:fa:85:31:02:
f7:90:35:e4:0a:60:c7:91:95:f0:f3:ea:26:a2:ff:
61:ee:31:05:74:d7:45:c0:3f:0a:92:20:66:06:f4:
4a:ba:b6:0f:b0:7d:2e:29:07:4c:44:e1:2c:9d:e4:
a2:50:77:70:9e:4e:00:e3:3e:c8:13:8a:33:30:a8:
91:71:9b:ce:f3:b9:d0:ad:0f:e1:6c:08:fb:51:bd:
59:5f:a0:0c:e6:d2:ec:a9:88:66:0d:27:fe:86:cd:
bd:b7:1e:54:aa:e0:fb:a0:3c:42:82:59:fc:b6:0d:
1a:c2:34:94:b9:02:3f:42:46:f9:85:cf:93:f0:82:
8d:ac:da:a9:3f:6d:37:b2:2b:cb:5c:c9:a8:b4:88:
94:c6:46:e0:83:3c:05:a6:1b:06:18:c5:8a:02:9e:
63:c0:73:7b:1d:da:e5:07:a2:f2:f4:68:3b:0a:22:
96:ed:c3:71:74:3d:da:db:17:7e:52:b9:d4:06:78:
2b:1f:6f:3f:2f:97:5d:f1:c6:47:b1:e4:e7:f7:95:
e2:ee:5b:cf:5f:0d:6a:7e:55:a9:c7:4f:9e:5e:d9:
05:5e:7f:ff:41:4f:66:92:fd:15:c5:a3:53:7a:16:
cc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F7:67:8F:40:81:7E:3F:34:19:AA:39:4F:5A:F6:B1:52:D6:BF:F8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Lvdnj0CBfj80Gao5T1r2sVLWv_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.254.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:76:2c:3e:21:31:db:00:4c:fe:10:83:38:cc:1e:f1:9d:03:
68:6f:7c:a7:50:89:fa:59:58:8a:7a:8f:b6:70:d2:35:af:98:
09:3f:45:85:44:48:36:38:83:8d:e7:f2:09:4e:02:bb:8c:72:
ea:ed:8d:b5:7b:48:c0:45:7f:af:a0:e6:2c:60:11:0a:68:ab:
4c:7f:dd:5c:30:82:23:74:58:d2:11:da:26:b7:60:b8:3d:f7:
64:ca:bf:26:dd:2b:3f:2d:a5:79:87:31:57:5f:f2:d2:91:3f:
17:39:53:1c:75:2a:5f:40:4b:f2:5b:68:25:1c:c4:d8:db:61:
cb:da:46:4b:1c:8b:6e:be:1f:b7:0e:91:f4:bb:e7:b8:91:73:
58:83:9b:11:cb:7d:e2:3f:b5:82:09:58:7d:f2:3d:7c:ee:f2:
c6:6d:65:57:bb:53:81:20:5d:b0:bd:2b:ab:3f:f0:3a:cd:73:
8d:52:17:27:78:a7:39:e4:a9:5f:00:3a:81:16:90:ab:5a:bf:
5d:d9:73:0b:c2:af:90:51:31:90:3a:a6:a3:83:47:47:f3:35:
55:15:ef:0d:76:10:35:40:3e:c2:4e:c9:b9:f7:6b:bf:b1:af:
1b:be:04:75:95:65:d7:ed:ab:05:d4:95:b6:04:cb:f8:ed:f0:
00:f7:c1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:26 2023 by rpki-client on console-fra.rpki-client.org