Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OZMYbcJSqyhMophcQ8R19gxvYVQ.roa
File: OZMYbcJSqyhMophcQ8R19gxvYVQ.roa (raw, json)
Hash identifier: LAT24socWpDdZQrdc1Fe5RAOoRgDeuRHXgB7Zlp01FU=
Subject key identifier: 39:93:18:6D:C2:52:AB:28:4C:A2:98:5C:43:C4:75:F6:0C:6F:61:54
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D66
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OZMYbcJSqyhMophcQ8R19gxvYVQ.roa
Signing time: Wed 29 Sep 2021 02:48:58 +0000
ROA not before: Wed 29 Sep 2021 02:48:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7526 (0x1d66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3993186DC252AB284CA2985C43C475F60C6F6154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:46:ca:56:95:3d:64:d9:aa:0f:76:d5:3d:81:
5c:d5:15:94:9b:08:9a:67:af:fe:5b:59:70:e5:7e:
11:2b:7a:54:7c:01:88:65:aa:ae:11:37:7c:1f:76:
c2:93:06:5d:96:b4:20:0b:5d:47:f5:b4:d0:b8:2d:
0e:6c:6d:12:0f:4f:ae:ad:86:a3:24:fd:5d:77:14:
b0:93:3d:b1:bb:d7:db:12:cf:d1:49:c6:6b:20:ad:
e7:cf:83:a3:f3:e7:54:00:a6:31:f5:eb:42:03:82:
70:53:97:ea:74:bb:02:91:56:a4:a2:be:f2:d1:5b:
fd:3a:68:3b:95:ce:d6:9d:4f:d6:14:be:ef:88:b4:
d2:5e:d8:6f:61:51:fa:23:b1:43:4b:17:e8:cc:fb:
84:2c:65:1c:9c:02:1e:e1:e3:20:60:a0:eb:63:ca:
02:9f:79:ce:6e:04:89:5d:93:6f:7f:42:9a:fa:7e:
ee:4d:ba:8e:6a:7e:a0:77:f0:82:68:7f:c1:b2:ee:
f5:42:81:7d:1c:bb:1a:72:b9:31:75:cd:66:37:fd:
0e:6c:2f:cc:d1:e6:ed:4c:31:88:ab:78:5a:51:69:
61:5f:76:31:9a:ef:46:8e:22:04:a3:c9:e1:c2:d2:
62:ca:4c:c4:ba:73:7a:d5:6d:21:2b:03:78:0a:a7:
23:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:93:18:6D:C2:52:AB:28:4C:A2:98:5C:43:C4:75:F6:0C:6F:61:54
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OZMYbcJSqyhMophcQ8R19gxvYVQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.136.0/21
Signature Algorithm: sha256WithRSAEncryption
af:b5:81:07:21:e0:a4:41:89:23:bd:8c:ea:98:14:7e:8e:15:
24:98:fa:40:3b:cc:ec:b8:9f:7d:e9:25:cb:bf:db:06:ea:de:
dd:f7:70:bf:ca:5e:8f:b1:b9:80:15:99:77:01:33:21:72:e6:
27:d5:06:8d:27:6f:65:f0:27:b7:70:85:04:1c:58:f2:db:65:
9b:8b:8f:e4:a3:d7:e3:01:27:1c:4b:01:13:c4:bb:17:c4:ec:
b2:c7:a6:da:61:83:c4:8a:a5:96:e1:88:6c:ab:b8:b0:0a:40:
1d:52:5b:de:4b:b1:53:0a:5c:ba:a9:33:c7:9a:2e:7a:8a:f3:
92:2b:34:19:79:f5:e7:d7:9d:a3:c2:fa:b8:de:92:62:47:2c:
a6:5f:7f:df:68:17:82:bd:55:54:a7:1b:a5:e5:09:0c:e0:4c:
f0:cb:3e:99:93:41:79:12:41:22:56:e6:89:69:42:59:87:3e:
12:a8:69:61:88:69:37:13:46:d3:ce:1e:4c:2e:52:dc:30:b5:
02:99:c1:98:7e:ff:f9:e5:d8:17:21:39:52:95:6f:ff:6f:35:
3a:17:56:b8:a9:ee:24:d9:cc:93:51:d4:dd:c1:b2:7a:08:82:
b3:c1:c5:be:d9:e1:14:00:0e:e6:82:70:62:d8:97:7c:ea:2f:
90:8d:42:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org