Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ufx3N66rcDXFcpwfzNvjnGd-IE8.roa
File: Ufx3N66rcDXFcpwfzNvjnGd-IE8.roa (raw, json)
Hash identifier: IAb45Qj3R/q/mXjD5QHmw7W7zLa5V6eEMaqcFHhf7/0=
Subject key identifier: 51:FC:77:37:AE:AB:70:35:C5:72:9C:1F:CC:DB:E3:9C:67:7E:20:4F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 210B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ufx3N66rcDXFcpwfzNvjnGd-IE8.roa
Signing time: Fri 25 Nov 2022 04:39:26 +0000
ROA not before: Fri 25 Nov 2022 04:39:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.204.0/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8459 (0x210b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=51FC7737AEAB7035C5729C1FCCDBE39C677E204F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:83:c3:ad:9f:bd:e1:6d:37:cc:68:07:ae:9a:
3f:78:72:bd:d2:90:f5:c2:e6:8e:5d:c8:fe:05:a9:
cb:33:08:1e:73:1f:e5:73:ae:99:5d:e8:9d:90:1a:
e3:02:b3:79:f5:9d:64:6c:92:dd:92:73:34:3d:a3:
74:83:8e:c5:28:ba:76:18:e0:16:c7:82:f9:7b:15:
a8:7f:2b:db:2d:b6:fa:a5:3b:30:26:49:ec:37:a8:
0a:e9:7b:85:5a:e3:b9:b0:02:a4:9a:4f:a4:ae:0e:
eb:0f:27:5a:59:de:9b:ad:c2:71:c1:1d:e0:9e:34:
fe:4e:ca:bc:16:40:bb:67:99:a1:e6:0f:8e:67:30:
4a:5f:08:1e:f3:8b:79:16:17:78:fd:bc:7b:e1:e9:
e5:7c:cd:8a:dd:62:84:83:6c:b5:86:c4:89:9a:16:
24:6a:ae:c6:26:3b:7b:6d:32:2c:8f:13:4d:8f:56:
e8:40:ea:cd:96:2a:d4:b7:1a:a1:77:0e:1c:c7:b5:
e1:01:f6:5e:f8:4c:d9:17:48:f6:4c:c9:83:a9:72:
68:75:fb:82:e7:c4:ef:56:9f:28:8d:63:ae:2c:87:
93:9c:e2:4f:5f:68:3c:7f:d1:e4:c3:6d:4e:26:bb:
38:fc:6c:44:60:4e:93:86:50:51:d7:42:34:05:d5:
c2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FC:77:37:AE:AB:70:35:C5:72:9C:1F:CC:DB:E3:9C:67:7E:20:4F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ufx3N66rcDXFcpwfzNvjnGd-IE8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.204.0/26
Signature Algorithm: sha256WithRSAEncryption
71:dd:af:19:ff:fd:28:5e:5b:7f:66:79:2f:1d:04:6c:1b:0d:
d3:fc:5a:d0:2a:8a:50:55:60:9d:59:7c:aa:0c:e7:a9:2d:de:
25:a6:f1:97:ef:dd:21:26:44:20:56:95:c4:00:03:73:8a:5a:
32:93:35:47:6b:67:0d:77:65:26:51:90:15:b7:70:47:ce:ff:
52:a0:19:f0:a4:e6:f6:a6:a5:28:32:6e:5f:bf:38:48:a4:75:
af:5c:04:9e:db:a7:0c:8d:ec:27:2b:8b:ba:2d:05:09:c1:61:
c0:ae:66:5e:6a:4e:bd:b4:30:cb:3a:36:14:16:3f:c2:35:18:
12:10:37:f9:51:d0:3e:93:0e:8e:80:1f:8e:52:6d:86:e1:50:
1a:05:f0:48:ac:6d:87:8f:db:ca:97:40:36:d8:a1:3c:e9:d0:
44:3d:14:8a:46:78:9e:42:9f:60:16:54:11:8f:d4:d4:a9:f4:
58:f1:d7:4f:f4:84:95:7a:f7:42:69:73:9a:58:03:4b:dc:e2:
96:6e:ff:58:43:d3:a5:6e:8b:19:2d:6f:c5:f1:3e:01:fc:26:
75:65:ad:69:0a:1f:7f:6f:7f:2c:55:22:2d:47:86:c8:0b:83:
0a:a3:ca:25:bf:8c:c7:d4:68:0c:07:7a:e5:83:68:3e:78:75:
8b:82:8f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:32 2024 by rpki-client on console-ams.rpki-client.org