Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d8Sb0ehcG1lpzEMTekcPmAkSjL4.roa
File: d8Sb0ehcG1lpzEMTekcPmAkSjL4.roa (raw, json)
Hash identifier: kkzlE10r/wLvMmGomnwQNtXIJG7SIf3rIo/h4T+5AgM=
Subject key identifier: 77:C4:9B:D1:E8:5C:1B:59:69:CC:43:13:7A:47:0F:98:09:12:8C:BE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AD9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d8Sb0ehcG1lpzEMTekcPmAkSjL4.roa
Signing time: Wed 29 Sep 2021 02:45:49 +0000
ROA not before: Wed 29 Sep 2021 02:45:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6873 (0x1ad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=77C49BD1E85C1B5969CC43137A470F9809128CBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ce:90:c6:ae:ec:ee:0d:d6:3e:e6:01:fd:cc:
22:d1:7b:42:d0:f8:fd:26:8b:20:81:fa:64:42:2a:
0d:13:41:ff:96:ae:0f:4b:fe:5f:98:b9:48:76:1c:
74:ce:b0:dd:ed:09:47:2b:75:db:7e:57:df:03:c9:
60:af:81:bb:32:10:37:c2:99:c9:89:0c:67:6f:df:
ee:b5:fe:a1:ef:2e:09:87:70:75:fc:d6:60:68:b2:
09:77:f7:b1:da:e1:ee:eb:cf:e1:88:c7:48:8a:25:
d3:51:71:5d:99:18:cf:1c:cd:26:91:4a:eb:97:cd:
eb:36:a8:ce:18:07:36:3f:a0:7e:ae:ec:83:a6:13:
11:63:ac:c5:7d:a9:6d:52:9b:8e:26:59:7d:46:b3:
68:2a:8f:c3:c3:14:eb:7f:39:76:2d:55:5a:bb:4b:
4f:69:19:b1:9e:4a:4b:b5:d1:7d:5d:2e:c2:d0:dc:
50:e5:ca:0a:71:01:aa:37:e5:3e:3e:83:21:08:c6:
3d:36:94:60:5b:27:82:0d:8c:6e:47:6a:71:99:ed:
14:4f:25:ff:6a:60:a9:3d:41:f1:16:9e:e7:88:3e:
e9:78:8e:79:5e:4f:ce:ad:fd:ca:c2:8b:17:79:3c:
54:cc:64:98:ce:d4:26:a6:a2:58:1a:fa:4b:ea:ac:
c2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C4:9B:D1:E8:5C:1B:59:69:CC:43:13:7A:47:0F:98:09:12:8C:BE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d8Sb0ehcG1lpzEMTekcPmAkSjL4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.144.0/20
Signature Algorithm: sha256WithRSAEncryption
25:76:9c:5b:7d:59:0b:fb:0d:aa:79:d3:2d:d7:e8:5c:54:fe:
83:a8:1e:0a:f8:25:c9:22:f4:c0:c7:06:fa:82:20:d5:60:ed:
d5:34:0c:a0:98:98:f5:2b:88:59:ad:5d:e9:76:34:70:a0:fa:
86:df:6b:e7:8a:4a:29:8c:63:3f:ae:93:b1:ec:f0:48:ee:34:
53:84:42:81:24:a7:de:ff:5b:ac:ea:fe:68:4b:57:f1:09:b3:
0e:6f:e4:37:4d:f9:f8:74:f8:0d:e4:d3:ab:ad:f5:a2:ce:36:
12:5e:bf:56:c4:ad:16:8e:0a:d7:ae:28:b3:06:61:9e:8c:86:
18:3c:8c:f8:1b:1c:43:4c:2e:17:f2:bb:dc:28:35:d2:74:e5:
26:3c:5f:bc:e8:98:71:45:02:d8:c3:1f:37:6a:bb:5c:e9:43:
5c:e1:ad:3d:c4:56:82:94:ef:fb:64:51:5d:3e:26:7a:64:22:
d9:3c:87:89:75:7a:79:b2:47:b2:e2:97:2b:14:30:b2:d8:88:
02:ad:e8:d3:02:31:57:ac:3b:41:94:3e:79:86:08:7e:d5:f8:
d0:f1:78:03:82:9d:19:12:6b:9e:05:f6:0c:d7:d8:f0:d8:1c:
bd:b1:c6:1a:61:13:6a:f7:dc:c4:51:fa:2d:7c:dd:70:cb:cf:
16:1a:39:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org