Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XpSBEb1YVDFfUkeyStvu41ACIsk.roa
File: XpSBEb1YVDFfUkeyStvu41ACIsk.roa (raw, json)
Hash identifier: wzZcEiUiK6/1O6qBE5/8lX7DRJ9ttOmP2TJbBRGqhvc=
Subject key identifier: 5E:94:81:11:BD:58:54:31:5F:52:47:B2:4A:DB:EE:E3:50:02:22:C9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BAE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XpSBEb1YVDFfUkeyStvu41ACIsk.roa
Signing time: Wed 29 Sep 2021 02:46:52 +0000
ROA not before: Wed 29 Sep 2021 02:46:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7086 (0x1bae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5E948111BD5854315F5247B24ADBEEE3500222C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:35:9a:a2:54:c3:24:6b:71:79:86:0c:99:bf:
59:5d:d6:f1:04:5b:84:52:13:5a:57:fc:58:bd:e1:
2a:27:1b:58:7d:1b:39:84:62:b7:70:fc:5d:a8:34:
01:71:7c:f7:56:d3:76:ec:0a:8c:8a:a7:83:7c:e7:
77:ec:f0:5f:57:8b:4f:32:3e:95:a2:db:bb:10:66:
4d:38:d4:4a:9c:db:fd:6a:d5:6b:65:ae:cd:79:80:
ef:16:08:af:c0:20:b4:93:c5:64:c0:1a:7c:af:7d:
63:9c:cb:7a:f0:89:e4:50:31:d4:dd:f9:4c:0e:d4:
a6:ab:38:61:15:22:6c:c6:c9:f7:07:b9:e9:e8:80:
8e:25:f5:49:8c:fe:fc:eb:4a:58:44:05:31:4e:bd:
a1:00:d9:7b:7f:85:60:f1:94:bb:e8:8d:57:f2:5a:
dd:f3:00:c6:42:f6:de:64:57:22:02:19:f0:34:9e:
99:0a:0f:09:b6:02:54:6b:76:e9:3d:f6:f1:df:b8:
17:37:c7:58:40:c8:c2:bf:0b:10:7a:01:38:f5:8f:
e8:e8:02:30:65:c1:fc:81:d1:dd:1c:7b:39:5d:7e:
eb:7d:f4:a8:57:eb:a2:8a:72:12:0a:01:2f:d6:62:
ea:a0:bf:eb:3f:04:17:a3:ba:52:a2:b1:a3:1b:08:
c4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:94:81:11:BD:58:54:31:5F:52:47:B2:4A:DB:EE:E3:50:02:22:C9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XpSBEb1YVDFfUkeyStvu41ACIsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.40.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:07:c3:76:2f:63:e6:97:56:7f:ed:f1:fc:7c:85:f9:dd:7f:
e7:79:cb:e7:09:47:e6:fe:ca:89:37:df:99:d5:69:f8:7e:a5:
49:a6:ee:99:e7:c8:4e:9b:0a:d5:0b:c7:24:96:59:e5:e1:e2:
ee:6e:cb:37:c9:8d:b9:f6:b8:0a:bf:29:f8:04:f3:c5:ba:7c:
79:3c:7b:f0:be:c3:d1:db:7c:3f:5f:7b:45:2f:aa:32:07:68:
de:15:2d:68:af:34:40:9c:3c:aa:06:17:1d:87:17:b0:7b:e3:
65:a7:d0:4a:ba:59:24:cf:c5:c6:3b:89:2d:7f:5c:15:d5:0c:
3f:ed:8a:c6:b1:8c:5e:cc:2f:16:29:51:dd:64:06:e9:6d:df:
ba:55:57:cf:ea:fd:98:f1:2e:7b:9a:94:b5:9a:4b:45:9f:c0:
8e:12:1b:28:bd:20:57:65:ff:90:c0:47:be:3c:a5:38:2d:da:
d9:b7:6f:dc:88:5f:90:89:e8:90:27:20:18:5d:52:e5:b5:1b:
4e:73:bc:96:1b:a4:cc:ec:b1:d1:a1:a2:74:71:3b:a2:75:1c:
10:f5:25:7a:6b:e1:76:a0:c5:bf:e8:71:1c:b3:86:0e:86:12:
01:91:bd:64:11:5b:67:62:6a:fc:26:29:e0:bc:77:07:79:de:
43:d6:c7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:21 2023 by rpki-client on console-ams.rpki-client.org