Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U1tqxWgA_y9zuxIsvQcmDrwK0sY.roa
File: U1tqxWgA_y9zuxIsvQcmDrwK0sY.roa (raw, json)
Hash identifier: fQYXxtBW5oRQYt9Ic2HD3ylvOLA0957ilCKrv6T8Ejw=
Subject key identifier: 53:5B:6A:C5:68:00:FF:2F:73:BB:12:2C:BD:07:26:0E:BC:0A:D2:C6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A99
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U1tqxWgA_y9zuxIsvQcmDrwK0sY.roa
Signing time: Wed 29 Sep 2021 02:45:32 +0000
ROA not before: Wed 29 Sep 2021 02:45:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6809 (0x1a99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=535B6AC56800FF2F73BB122CBD07260EBC0AD2C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:27:d2:86:45:3e:b2:8f:d9:87:46:75:a1:25:
28:2f:38:66:90:fc:e5:39:9e:80:c0:03:67:83:a7:
bf:49:b9:7a:7e:f3:02:2a:58:ba:98:eb:2b:a9:5d:
8e:fb:01:e1:f8:6a:80:47:89:45:7e:15:67:c6:45:
f9:b0:10:32:f3:58:d5:7d:1d:12:8a:e6:e8:cd:98:
43:4e:eb:da:bd:7f:e1:06:b4:b4:96:41:79:75:75:
de:61:79:e1:aa:a9:a5:76:bb:c2:04:dc:9f:15:20:
ac:fe:66:25:89:26:c8:3a:c6:59:fb:c4:7e:2b:1a:
94:7a:d4:ac:1d:f0:52:2d:74:c3:88:23:a9:46:60:
3a:77:ef:4d:ca:ca:67:6e:32:07:cc:28:57:cd:cb:
76:96:42:78:80:09:97:60:fb:e8:43:ba:b0:af:f8:
f1:b5:e5:49:75:01:f0:f5:6e:60:28:6b:ba:26:7b:
c5:3b:50:c0:b5:92:7b:59:a4:4e:c9:f1:65:8a:24:
45:54:06:c4:7b:0a:a8:d4:7e:5f:15:72:bd:77:3b:
5e:01:66:98:ac:23:d5:77:c8:9a:f2:07:88:9e:10:
9a:f3:6d:02:ab:cb:46:eb:21:fd:ca:33:d7:96:c5:
b3:dc:1f:27:72:7f:fc:04:3c:3e:f7:cf:d7:03:79:
54:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5B:6A:C5:68:00:FF:2F:73:BB:12:2C:BD:07:26:0E:BC:0A:D2:C6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U1tqxWgA_y9zuxIsvQcmDrwK0sY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.128.0/20
Signature Algorithm: sha256WithRSAEncryption
20:42:63:90:9b:99:9f:36:db:80:28:d7:ef:1d:12:8b:c9:5b:
33:b5:f8:af:f4:88:d9:f9:9b:93:78:d2:72:e0:e8:db:64:ce:
73:5a:17:54:29:36:4d:1b:ad:98:cf:15:22:d3:5c:1b:74:a6:
73:15:65:1c:60:0e:82:d3:8e:25:da:80:27:6b:e0:70:07:ad:
24:92:01:d8:39:f7:1e:60:1d:06:62:2f:92:01:21:b4:16:50:
38:02:07:87:79:96:1d:3f:63:12:30:f1:8d:f1:ee:ff:0f:41:
c0:4a:5b:30:c9:bc:2b:2f:54:03:86:fb:2c:39:ff:81:a2:d6:
ec:9c:ba:82:1a:84:33:ac:4a:43:cb:9c:b7:f6:84:60:22:49:
35:ee:23:b0:4e:66:58:98:db:94:c2:d6:65:2e:45:20:bc:de:
fa:92:5f:72:b4:d3:5a:7c:10:a5:53:e2:a5:0e:ba:1d:49:c3:
36:9b:3f:16:51:2b:9c:1a:7a:8c:30:1a:bf:57:6d:2d:3e:e2:
8f:4b:2b:95:ec:f2:8e:ef:e3:0d:04:04:c7:73:0f:c1:fa:58:
32:e4:c2:f7:27:c0:32:8f:6e:1d:1a:25:34:12:a6:22:f3:6d:
c0:84:58:e7:52:c7:55:34:26:db:8d:ad:58:d5:76:8a:2e:fa:
07:e0:cd:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:30 2023 by rpki-client on console-fra.rpki-client.org