Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MpD_XgJ0iVoqx2hskaz-nMS6U7A.roa
File: MpD_XgJ0iVoqx2hskaz-nMS6U7A.roa (raw, json)
Hash identifier: y48UgG//iRMRKm9y03/MoN7mxT7DZlTVftNHtOdmnTA=
Subject key identifier: 32:90:FF:5E:02:74:89:5A:2A:C7:68:6C:91:AC:FE:9C:C4:BA:53:B0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20D3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MpD_XgJ0iVoqx2hskaz-nMS6U7A.roa
Signing time: Fri 25 Nov 2022 04:39:09 +0000
ROA not before: Fri 25 Nov 2022 04:39:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8403 (0x20d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3290FF5E0274895A2AC7686C91ACFE9CC4BA53B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:37:24:9c:c7:9f:de:90:14:0d:76:b1:dd:fa:
7b:b5:42:03:21:97:b9:6c:70:1e:ee:24:aa:25:dc:
86:9f:93:74:f9:f1:8d:c3:7f:a0:2e:b6:10:79:13:
84:81:34:67:d3:eb:ce:93:c5:ca:f0:7b:4b:6c:d5:
5d:18:05:78:b5:b5:d9:f9:1c:88:59:8b:76:c7:9f:
03:68:8b:48:c2:00:a5:df:90:d6:20:ab:98:a5:89:
c6:63:8b:cd:4a:e5:ac:48:a1:42:c8:99:06:c0:4a:
b4:de:6e:23:67:f2:19:3f:85:c6:eb:89:91:33:ff:
bb:0b:2f:0c:d8:55:fe:78:ed:ac:b3:b5:aa:49:f1:
79:07:01:20:a1:cb:3f:ab:00:1f:f7:2d:2d:e0:a9:
3d:3a:9d:cf:f5:a4:d6:8c:4e:e2:eb:60:3a:3f:0b:
e6:46:f3:ec:c5:9e:56:44:68:b3:77:4e:8f:e9:8b:
2c:84:ef:d1:6d:eb:d3:eb:f6:3a:e5:d2:de:65:cb:
e5:0c:ad:40:fc:da:fc:b4:ed:ae:cc:b9:96:85:da:
ce:6e:b8:b7:e5:ac:19:1a:4b:28:12:2c:ec:91:9c:
bf:06:8a:85:33:51:8d:7a:49:0e:5f:6c:49:87:44:
07:f3:be:27:38:34:02:44:12:ae:66:17:b6:03:fa:
9e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:90:FF:5E:02:74:89:5A:2A:C7:68:6C:91:AC:FE:9C:C4:BA:53:B0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MpD_XgJ0iVoqx2hskaz-nMS6U7A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.216.0/21
Signature Algorithm: sha256WithRSAEncryption
00:f4:fb:d4:40:6b:47:c7:84:bb:e1:96:cc:fb:b9:61:48:28:
db:54:50:91:32:b9:ac:43:c1:44:e3:39:a3:29:45:d6:1b:4c:
52:b3:37:34:05:f2:92:c1:7e:01:16:62:cf:34:d2:b9:f0:16:
69:d7:22:66:f0:e3:7f:4d:41:35:ae:51:71:0b:1d:40:4f:6b:
d4:89:93:f8:91:29:4d:7e:ec:b0:f2:a0:07:fc:e9:2b:95:3c:
f8:ca:4d:22:b9:6c:df:c9:22:cf:29:12:5c:09:a6:03:8e:fb:
7f:9d:23:3b:e3:88:92:3b:74:39:75:f0:df:4d:68:50:77:9a:
23:42:69:f6:ab:a4:c4:c7:53:42:52:6a:21:4c:8c:16:85:a3:
79:8e:28:fb:bb:7c:a1:e1:ba:2a:3d:22:3b:ab:8f:27:12:53:
62:d8:e1:b5:8a:06:28:c7:8a:96:97:6b:73:b6:1f:e6:cd:f4:
fc:a3:c2:cb:6b:eb:b8:37:72:4a:dd:b1:f1:75:3c:93:b4:98:
61:52:ce:b6:c9:b9:15:6b:a5:2f:83:06:9a:88:8e:ef:6c:34:
7e:3b:3c:67:99:1d:04:3e:66:46:a2:41:db:0b:1e:e7:d7:5b:
6d:83:71:4e:67:75:b3:a9:a7:13:17:62:84:37:f6:a9:51:f6:
81:95:53:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org