Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/des6JNmUYtyASkoH0wH04c4WM2A.roa
File: des6JNmUYtyASkoH0wH04c4WM2A.roa (raw, json)
Hash identifier: 16jpKGEvwhBdOoTzjRrj8Pb4RFfQASINdOTLMNoPu4w=
Subject key identifier: 75:EB:3A:24:D9:94:62:DC:80:4A:4A:07:D3:01:F4:E1:CE:16:33:60
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20C4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/des6JNmUYtyASkoH0wH04c4WM2A.roa
Signing time: Fri 25 Nov 2022 04:39:04 +0000
ROA not before: Fri 25 Nov 2022 04:39:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.48.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8388 (0x20c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=75EB3A24D99462DC804A4A07D301F4E1CE163360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:10:98:65:be:7f:51:ed:b6:be:ce:cb:fd:71:
6d:19:46:b5:1f:83:f8:2e:b5:fa:51:01:e6:d3:bb:
04:06:44:37:bf:cb:67:35:7c:08:d1:b8:20:84:fa:
05:04:f1:85:91:92:f2:e4:ea:44:a6:17:b6:08:b6:
4f:0b:69:39:49:40:6d:c6:4f:36:99:aa:99:7f:aa:
9d:8a:a2:7d:81:d4:91:20:58:e6:bb:43:55:14:f1:
e5:9e:0d:51:2d:85:7c:d9:64:a0:17:5f:99:af:ac:
9c:32:48:ba:83:3d:db:5d:3b:75:52:b0:b3:89:d1:
dc:d3:84:35:8c:d0:20:62:a1:c4:ae:df:5e:09:d5:
36:d9:e0:1f:6d:00:ac:24:e5:26:98:68:97:45:47:
6f:05:f3:22:36:47:5e:5a:fe:bc:7c:36:01:d6:c2:
e5:b8:05:03:e9:73:97:e7:6e:01:48:c6:89:70:50:
4e:f4:9d:b9:4d:ee:f2:6d:9e:67:f2:be:e6:ca:6d:
76:42:ca:3f:9d:d4:71:9f:e3:fc:d8:ee:cd:ec:28:
88:ff:10:97:9c:58:70:79:d4:9b:37:ab:83:33:29:
61:e2:4c:07:50:46:1b:90:9a:ed:6a:6a:04:ae:5c:
01:14:68:97:b7:39:57:91:97:ab:fd:61:93:70:09:
f3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EB:3A:24:D9:94:62:DC:80:4A:4A:07:D3:01:F4:E1:CE:16:33:60
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/des6JNmUYtyASkoH0wH04c4WM2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.48.0/21
Signature Algorithm: sha256WithRSAEncryption
48:b6:e4:30:7c:23:d6:51:69:e7:5c:1e:13:a7:9a:af:27:65:
08:ff:61:9e:a3:47:c7:30:b6:3a:7e:93:71:0c:01:3b:51:d4:
d0:e2:a1:da:68:f8:4c:d6:5b:36:0b:13:22:ff:13:b9:40:b7:
6d:ac:4d:2d:46:5e:df:de:a9:dc:fc:9d:c4:91:3a:64:0d:02:
35:91:1a:08:bd:16:08:4e:cc:7b:93:de:ce:43:aa:c9:04:82:
90:09:13:62:5f:b9:96:27:42:34:f6:82:bc:0f:cd:dc:9f:42:
1b:ec:b4:08:71:83:c7:a0:f7:d9:c4:dc:b1:18:ca:9c:e9:b4:
5d:20:e7:a9:0a:bd:05:4e:17:f1:a7:2d:37:7d:d8:fe:00:f2:
4b:cb:25:17:db:dc:76:c4:e9:55:fb:3e:5e:65:9e:5d:db:ca:
ee:a3:30:12:04:55:72:ae:50:31:4f:15:d3:56:54:ee:44:85:
a5:e5:fe:33:64:d3:2b:31:6b:74:c9:49:67:ea:b0:0b:02:a6:
29:cf:0a:18:bb:dd:8f:d8:c0:c3:92:2c:31:d4:36:88:a8:82:
7d:3d:46:f5:5d:2d:65:e1:04:d7:69:a8:ce:59:e6:52:e5:64:
76:bf:a5:b9:e2:e6:23:ec:cb:ee:b2:13:be:5a:ef:ee:db:4f:
41:9f:50:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:36 2024 by rpki-client on console-ams.rpki-client.org