Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Oo8nQAU6RP8XJhDRofthHZ22IZg.roa
File: Oo8nQAU6RP8XJhDRofthHZ22IZg.roa (raw, json)
Hash identifier: XO+tKOSFAlCy1U4pJ+gjQSlbshW6Uj/ycRBJNd3sRog=
Subject key identifier: 3A:8F:27:40:05:3A:44:FF:17:26:10:D1:A1:FB:61:1D:9D:B6:21:98
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2216
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Oo8nQAU6RP8XJhDRofthHZ22IZg.roa
Signing time: Fri 25 Nov 2022 04:40:45 +0000
ROA not before: Fri 25 Nov 2022 04:40:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.238.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8726 (0x2216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3A8F2740053A44FF172610D1A1FB611D9DB62198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:49:2e:b5:3e:fe:22:12:ec:3c:2c:b8:0c:8c:
b8:5f:60:57:98:f1:9a:5f:46:15:cc:1b:20:a3:29:
fe:5c:d9:62:91:74:cc:01:81:88:c9:2d:18:5f:d3:
54:bb:dc:c7:84:aa:8b:b4:0e:57:7a:f1:90:e8:fb:
4b:a7:a9:1f:9f:1b:c8:d2:cc:a9:5b:61:af:65:cd:
13:ff:32:23:60:1a:ea:4e:33:f0:f9:09:91:dd:a4:
5b:6f:66:4e:76:a6:1a:fa:3d:40:e8:a5:ed:ad:7d:
f4:9b:d4:c9:90:b3:1d:dd:47:4a:b5:f0:ed:a7:be:
86:e3:5b:ba:4b:37:99:b4:f9:68:13:c0:8f:2e:f2:
8e:3d:2d:da:31:33:ef:bc:e4:de:54:3a:13:bc:23:
5f:8d:b6:47:e8:07:42:d6:b1:8f:8b:f4:48:57:61:
8a:dc:0f:18:01:53:2e:5a:92:c1:40:87:23:93:cf:
10:77:fd:11:ce:7c:1e:77:65:69:58:b8:80:96:9c:
14:a2:69:f0:0d:05:ae:4a:97:6d:36:2b:83:49:b9:
b3:19:41:b7:53:c7:4a:32:15:7b:d9:29:35:4a:93:
80:ec:86:73:12:1e:42:ac:c5:e1:1f:ce:54:c3:77:
90:4e:18:fe:05:8f:44:00:78:da:fc:74:9c:8f:da:
f1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8F:27:40:05:3A:44:FF:17:26:10:D1:A1:FB:61:1D:9D:B6:21:98
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Oo8nQAU6RP8XJhDRofthHZ22IZg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.238.0/25
Signature Algorithm: sha256WithRSAEncryption
0e:af:d5:13:74:2a:26:69:62:fc:45:50:e3:82:0d:7a:dc:ce:
f0:f0:da:50:df:66:28:dc:a6:c8:68:d1:88:c2:a7:a2:9f:18:
ea:b9:81:a3:84:3a:e8:0d:26:84:da:31:0f:b5:8a:e7:6d:53:
49:5a:d1:ce:78:df:6c:f2:18:dc:d6:12:ca:9b:f9:77:dc:ca:
2d:8c:89:de:6f:24:da:62:da:25:9d:b9:6a:3e:42:70:14:c0:
03:b3:e5:08:9f:d0:f5:f5:12:e5:b6:ec:ef:26:13:02:a4:ff:
92:0e:25:ef:ee:79:c8:97:6a:57:6f:74:62:01:1a:57:ad:f9:
5e:fb:7c:a4:3b:1c:02:79:5c:60:e6:98:1d:32:04:85:65:9d:
24:c2:dc:50:01:cc:69:b8:82:ae:eb:37:79:bb:55:71:7a:8d:
49:4a:f8:94:a6:00:ad:cc:4a:cb:a1:80:45:53:cb:36:c9:c7:
9f:be:dd:82:25:ca:73:ae:fc:a9:e5:1e:dc:5c:06:a6:2e:54:
f6:35:7c:5f:9b:11:4c:6d:e6:82:a1:28:d3:a5:7b:19:16:16:
0e:52:21:a5:76:3a:b4:73:ee:96:fa:cb:ed:03:33:b4:13:46:
26:b9:ef:a7:82:16:ca:a4:49:4c:b9:77:7b:6d:19:1c:d6:5a:
26:00:cd:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org