Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y_BaRr8d5qXvS1lw549wxG_9F3k.roa
File: Y_BaRr8d5qXvS1lw549wxG_9F3k.roa (raw, json)
Hash identifier: xo/An+megjb/YxUW9CwpW3yJuYTAwaqKAfVPkhXiXrM=
Subject key identifier: 63:F0:5A:46:BF:1D:E6:A5:EF:4B:59:70:E7:8F:70:C4:6F:FD:17:79
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1671
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y_BaRr8d5qXvS1lw549wxG_9F3k.roa
Signing time: Sun 07 Feb 2021 12:10:29 +0000
ROA not before: Sun 07 Feb 2021 12:10:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5745 (0x1671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:10:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=63F05A46BF1DE6A5EF4B5970E78F70C46FFD1779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:95:2e:84:f7:69:6c:98:a7:60:55:75:b0:ef:
ce:e9:ee:60:48:42:9c:59:c9:7b:d9:1b:c8:69:0a:
ca:be:07:00:32:47:17:d1:25:46:49:1e:f3:de:e8:
91:83:f2:09:fb:8b:03:bb:a1:09:3c:28:08:c9:83:
0b:a6:90:42:9c:25:20:06:91:a6:b9:67:e7:36:11:
77:f7:d4:25:6c:77:8e:cd:df:35:2f:25:ac:3b:ba:
18:d9:75:4c:6a:10:7a:25:b2:ac:46:5a:ad:46:93:
d3:9e:70:ac:6b:94:7b:39:5c:2f:dc:b3:22:d4:e1:
87:6e:32:44:d2:db:1b:e1:57:73:42:73:cc:9d:4e:
14:5f:55:9b:94:f8:5d:00:1b:44:f3:7d:17:91:a4:
1e:ff:d3:2a:22:28:0e:54:e9:d7:e3:cb:62:71:d7:
52:6e:79:57:11:b3:a7:6e:b8:26:8a:b9:0d:22:a3:
3c:e1:47:ca:cb:e0:2d:62:fe:cb:43:58:a6:c4:96:
11:d1:a8:b2:41:0b:34:92:3e:44:e6:5c:a5:d1:d0:
56:a3:3f:06:4f:e7:96:5b:b4:a4:2c:59:3a:00:e8:
71:85:cf:e1:a5:9a:f3:76:10:3e:fe:24:e1:eb:21:
a9:57:34:cd:c2:27:15:ee:7d:9e:01:9a:e9:bd:b5:
d2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F0:5A:46:BF:1D:E6:A5:EF:4B:59:70:E7:8F:70:C4:6F:FD:17:79
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y_BaRr8d5qXvS1lw549wxG_9F3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.176.0/20
Signature Algorithm: sha256WithRSAEncryption
56:b7:60:79:43:55:5a:3c:a9:aa:8a:cc:c8:e5:11:d8:b8:b1:
64:64:71:b3:7e:71:4a:65:67:a6:c2:ab:c2:36:12:26:ca:3e:
69:2a:09:34:13:7c:9a:46:e0:a7:84:0d:2d:73:15:17:29:a5:
4d:59:41:af:56:03:e6:3a:2c:ad:ce:64:09:4a:d1:2d:ed:2b:
a5:8f:76:88:b9:b0:22:b4:b5:26:02:1c:b1:62:e6:84:59:5a:
59:db:c5:2c:97:2c:6b:77:0d:83:cf:b3:b2:f1:83:e2:56:ca:
c2:7a:7a:ac:26:c6:e5:ea:2b:e7:6b:b5:57:25:3e:6d:0f:1a:
6c:81:63:10:e6:16:8c:b1:ba:4b:dd:ef:d4:d9:a0:6d:85:d5:
64:b5:7f:ee:9a:44:a4:6d:ff:22:ee:74:65:51:63:ad:c8:13:
6e:65:f0:7e:dd:5d:25:6c:2f:26:1f:80:52:cd:49:eb:96:ed:
96:77:11:39:d5:e5:67:cc:bc:ce:83:47:a5:dc:47:ab:42:46:
22:a9:dc:f2:d8:c9:11:7e:5f:73:53:b9:69:53:35:74:0e:e4:
eb:ee:9b:f0:5b:a5:03:1d:b1:1c:22:87:7f:16:ad:f8:6a:24:
67:7d:fc:7b:35:97:4a:63:48:a8:1c:0f:6f:d0:30:85:67:a1:
6d:64:51:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-fra.rpki-client.org