Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S7P8CYfQQRzP2c6CkqkMRQO5bZs.roa
File: S7P8CYfQQRzP2c6CkqkMRQO5bZs.roa (raw, json)
Hash identifier: 4B0kFxXa+9eNw6LszZ0FDbipPL3l98/aVx1AhVD7amY=
Subject key identifier: 4B:B3:FC:09:87:D0:41:1C:CF:D9:CE:82:92:A9:0C:45:03:B9:6D:9B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21B6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S7P8CYfQQRzP2c6CkqkMRQO5bZs.roa
Signing time: Fri 25 Nov 2022 04:40:19 +0000
ROA not before: Fri 25 Nov 2022 04:40:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8630 (0x21b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4BB3FC0987D0411CCFD9CE8292A90C4503B96D9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:5f:3e:f5:f8:8c:21:53:3d:4b:87:88:57:
da:27:51:6b:74:80:0a:3c:58:74:02:eb:ef:cf:76:
66:02:10:bd:a9:49:15:ba:ee:2e:e5:a6:5f:7e:58:
35:a2:c4:76:97:c0:e0:bf:e3:6d:27:2f:3f:15:57:
d1:0f:95:45:1b:d0:f3:8b:ea:d8:4c:c1:3e:34:b1:
a9:4d:ab:a0:b0:60:4c:83:c8:89:d8:7a:af:54:ca:
e9:ef:7f:2e:c0:69:1c:c4:01:95:28:01:cc:1f:f0:
33:df:21:4d:b7:9f:4b:7c:e8:f5:45:d6:57:38:74:
bb:a2:89:40:26:8c:fe:7f:19:0e:8e:61:8e:f9:a5:
89:b9:13:7f:0f:5e:a3:1c:cc:22:3e:4e:47:bc:8d:
4d:6d:54:e1:61:30:d3:bc:44:10:7a:2c:80:54:14:
15:b0:34:03:b5:1c:e5:69:16:d6:65:d7:80:2f:09:
9b:76:50:13:81:c7:1a:ad:9b:5e:51:a0:8e:79:de:
ae:f3:e0:a3:16:f2:2d:be:f4:08:26:99:fa:07:6b:
35:6d:e2:fe:c0:ae:dd:ca:e3:8a:a3:b3:2c:fe:cf:
9c:8d:89:7e:58:ac:b0:b9:4f:21:8a:f2:35:6b:25:
c5:c5:24:e1:da:a3:e6:ee:ba:a6:a7:3a:76:09:a8:
32:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B3:FC:09:87:D0:41:1C:CF:D9:CE:82:92:A9:0C:45:03:B9:6D:9B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S7P8CYfQQRzP2c6CkqkMRQO5bZs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.80.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:66:81:42:55:08:1a:21:03:c2:20:03:11:00:f9:23:65:9b:
f8:4f:72:81:9b:fc:29:d5:c6:ad:1f:7e:d0:c2:01:af:68:8c:
e3:90:f0:81:fe:ef:81:46:01:f4:2c:39:16:44:43:5e:31:8d:
d2:df:9e:2f:de:26:0b:06:ab:88:55:40:7a:a9:56:c4:fa:d4:
6e:07:5c:ee:1e:44:38:c4:36:36:a5:8a:13:f0:67:ec:50:1b:
22:70:59:60:5e:f9:9e:64:45:7e:d5:80:e6:d4:1b:8e:ff:d9:
07:74:c4:ca:69:97:73:0a:06:20:e2:82:38:a9:f9:10:07:50:
e4:6f:8c:f2:2e:96:a0:f4:41:99:af:d0:9d:b1:26:56:42:8a:
7d:9c:c7:9b:f7:fd:51:b8:e2:f9:fe:1a:c6:b0:1f:24:c2:05:
52:bc:b6:30:26:17:02:65:b1:3d:f7:57:8c:68:2a:fb:a1:45:
d1:8b:b3:79:b2:65:23:46:25:fb:e2:90:e0:5c:d9:6e:77:a1:
82:97:af:b1:34:fe:69:f9:eb:fd:8e:19:39:84:42:a2:ac:02:
09:a8:f1:34:1e:c6:76:8d:b0:38:06:ca:c4:1f:99:77:d9:df:
0a:08:e2:59:fc:cf:76:31:9c:2d:71:4a:b3:0f:50:ee:36:e7:
f1:95:80:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org