Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dMVDYHZDNNOBSV3ANTd3t5yxmdE.roa
File: dMVDYHZDNNOBSV3ANTd3t5yxmdE.roa (raw, json)
Hash identifier: 42LwxYOvt9q8QOCv60fQa2KKMj4qEgzY/n+wxAzytfs=
Subject key identifier: 74:C5:43:60:76:43:34:D3:81:49:5D:C0:35:37:77:B7:9C:B1:99:D1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E8C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dMVDYHZDNNOBSV3ANTd3t5yxmdE.roa
Signing time: Wed 04 May 2022 06:43:52 +0000
ROA not before: Wed 04 May 2022 06:43:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.160.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7820 (0x1e8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 4 06:43:52 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=74C54360764334D381495DC0353777B79CB199D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ce:fd:59:93:69:04:f3:b6:a5:64:b5:60:cb:
17:04:c2:6b:38:e0:96:72:27:f9:6a:35:9d:cf:ea:
88:7b:9d:ce:d6:a5:a7:57:fd:87:8a:6b:12:bb:27:
38:2f:a5:0d:56:f7:b7:ce:71:4d:e9:67:5c:15:d4:
51:9e:1d:90:01:40:57:94:31:91:ce:25:5d:86:67:
54:e5:2f:c3:a7:c8:b9:31:58:df:c2:33:b5:2c:bd:
a0:6c:b4:65:c3:53:23:6f:cd:a4:50:4a:2a:70:9f:
5c:e9:b6:ff:64:ea:b2:1e:7e:70:5d:3b:78:06:1a:
07:d9:cf:0b:82:f3:ea:2d:fe:4d:77:cd:13:04:1c:
44:4b:36:e2:84:61:9c:46:11:07:95:99:70:a5:ed:
85:40:bb:99:0e:57:95:84:34:0a:4b:5e:f2:fc:55:
69:a2:c3:d0:b1:ce:13:fc:45:df:9e:1d:e1:65:ac:
c1:f9:22:58:55:e5:54:0c:30:b4:98:14:24:4e:44:
37:71:ed:45:14:82:3f:8d:2e:31:3a:74:9f:7c:ab:
d6:97:a9:10:1c:b8:d0:c4:37:8f:53:c0:2e:b3:ae:
1b:9f:af:fc:0e:ee:2a:ba:d9:14:5a:4d:b3:f1:8c:
e8:d8:59:8f:8d:77:99:ea:a2:ed:16:e5:a7:a7:44:
76:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C5:43:60:76:43:34:D3:81:49:5D:C0:35:37:77:B7:9C:B1:99:D1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dMVDYHZDNNOBSV3ANTd3t5yxmdE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.160.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:d7:f3:cd:c1:f1:cd:6c:1a:44:91:d0:79:7c:c1:be:83:b5:
0e:55:86:d6:04:33:25:f6:01:85:29:8b:05:43:9e:75:4d:c0:
43:56:09:54:20:84:57:f5:23:60:02:30:9c:36:1e:62:95:1f:
46:c6:ea:52:7b:39:7f:c1:18:9c:9e:b1:fb:5e:ac:fd:79:8d:
16:b3:24:71:e7:70:75:1e:a6:be:f4:0e:4c:d3:6a:94:c7:ca:
ea:e9:37:03:ef:49:a6:bd:1e:44:e8:f2:25:c2:2e:e4:c7:db:
e1:9c:e1:5a:f8:e7:23:98:1e:38:a7:df:95:4b:e2:6c:03:67:
0f:90:f9:f0:9b:91:dc:ce:a1:91:21:c6:1a:96:af:5f:3f:ea:
0a:b0:c4:e1:74:4b:24:fd:ad:0a:a4:c0:de:fd:8f:04:3d:ee:
42:7c:ae:30:18:fa:5b:c0:b3:d4:71:17:6b:a5:e1:5f:97:87:
05:df:32:84:b8:28:ae:70:88:01:87:06:78:1e:56:20:21:2d:
27:9f:cb:6c:c2:d3:81:e8:57:b2:74:8f:f2:f7:0e:17:54:5f:
e6:c3:75:6b:1c:34:16:5d:5f:ff:6c:c0:c8:cf:ba:00:8f:8c:
5e:ec:84:d4:87:ce:51:42:32:d8:cd:6f:78:40:17:d2:db:34:
02:3f:e0:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org