Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ctYOVxbSF6zPabkdLA35ak97w7s.roa
File: ctYOVxbSF6zPabkdLA35ak97w7s.roa (raw, json)
Hash identifier: 6P0HEdfld8SfqLeiK9bwhODl3yUUc3VEhJIU8b62/Ys=
Subject key identifier: 72:D6:0E:57:16:D2:17:AC:CF:69:B9:1D:2C:0D:F9:6A:4F:7B:C3:BB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D69
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ctYOVxbSF6zPabkdLA35ak97w7s.roa
Signing time: Tue 29 Sep 2020 09:54:32 +0000
ROA not before: Tue 29 Sep 2020 09:54:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3433 (0xd69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=72D60E5716D217ACCF69B91D2C0DF96A4F7BC3BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0f:3b:66:bd:d4:3e:d9:96:f1:05:58:30:6c:
ac:eb:da:f4:67:4f:1c:d7:88:7c:51:f3:0a:0c:5c:
44:1d:87:4e:3a:45:13:1e:9d:15:92:aa:41:2a:34:
09:ce:1e:53:e8:10:76:f2:ae:88:fd:c0:5a:f6:a6:
ea:e3:20:ec:b6:ad:19:c3:84:4a:29:10:c0:67:9b:
57:cb:8a:b8:ca:6f:b9:c6:5d:43:7b:44:39:e4:06:
d7:a3:7d:3c:e8:37:41:05:2b:f6:43:72:09:ef:bc:
a4:f8:4c:15:6d:f6:e4:92:0b:01:f6:60:5c:52:60:
d9:ec:59:ac:48:a2:97:1e:4b:0a:a9:b6:81:c7:f9:
24:4a:9e:6e:04:48:86:f8:08:20:bd:5d:d8:0e:1c:
8a:64:71:1c:7a:1e:61:9a:60:ee:f9:bd:bd:d8:25:
ae:9a:82:ea:1e:4f:6d:ae:ae:77:e5:ab:7a:19:89:
35:a7:57:99:28:d8:b1:c0:75:79:9f:00:8f:5f:50:
a4:4b:03:cc:cc:cf:49:2f:c0:3c:3b:6d:ad:c2:08:
26:af:95:0e:20:32:f7:ff:56:95:2f:12:31:87:d2:
a2:b1:be:60:a6:ad:31:34:71:e7:23:97:58:57:c4:
a4:85:aa:66:9d:5a:10:dd:9c:c5:4c:35:c0:a5:36:
53:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D6:0E:57:16:D2:17:AC:CF:69:B9:1D:2C:0D:F9:6A:4F:7B:C3:BB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ctYOVxbSF6zPabkdLA35ak97w7s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.32.0/21
Signature Algorithm: sha256WithRSAEncryption
31:51:a7:e1:d1:bb:bb:b6:c1:4b:f8:e3:de:ac:fd:11:a6:1b:
c7:ca:11:13:d9:a8:97:92:d0:02:16:ef:38:33:ae:e9:ab:3c:
54:81:b2:25:73:d9:92:55:11:88:45:26:c0:99:3b:32:f5:56:
48:7a:10:77:8c:dd:8d:b3:53:f9:be:9b:0f:c7:18:b0:ee:85:
30:78:4d:68:86:bd:23:ef:af:e2:97:4a:7a:a8:ee:04:a3:40:
c6:10:dc:45:e9:1b:25:92:b4:a6:a5:ce:ad:66:17:1b:c2:06:
cd:da:4c:05:02:40:b2:41:23:cd:f3:dd:5b:df:2c:17:ef:e7:
3b:55:94:4d:fb:40:4e:98:76:f6:de:18:6c:74:9f:58:6e:ac:
64:4d:ee:8a:74:9b:4f:39:9e:fc:38:e4:cb:d2:5d:2e:b7:cb:
f7:be:82:70:2f:c2:95:ce:f3:33:36:ef:e7:67:8d:64:f4:9e:
d2:64:b0:a0:62:db:c4:cf:77:f3:7e:cb:e7:f6:85:5b:d5:9d:
92:ae:d5:8e:12:1f:42:6a:18:48:ee:c5:9a:45:c2:42:b5:b3:
c3:d2:d0:22:d5:e6:13:bc:f8:4e:87:bc:f5:65:7f:4a:97:5f:
55:0f:56:8b:f3:88:cb:ad:a4:93:42:39:69:74:9c:57:b5:ee:
0b:7c:4d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:59 2025 by rpki-client