Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fdUx0gEObqed_e-gjh6MEvhj2gE.roa
File: fdUx0gEObqed_e-gjh6MEvhj2gE.roa (raw, json)
Hash identifier: 9cjW1sAU0OfpfBq7nVKrAptBMapcWl0jJGqhr+5e5aM=
Subject key identifier: 7D:D5:31:D2:01:0E:6E:A7:9D:FD:EF:A0:8E:1E:8C:12:F8:63:DA:01
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28FA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fdUx0gEObqed_e-gjh6MEvhj2gE.roa
Signing time: Fri 01 Sep 2023 10:06:00 +0000
ROA not before: Fri 01 Sep 2023 10:06:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10490 (0x28fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7DD531D2010E6EA79DFDEFA08E1E8C12F863DA01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:af:a4:bb:58:d3:08:47:06:ac:7c:d2:be:51:
8d:78:f6:8b:41:e1:2b:af:23:d2:51:32:1b:66:c6:
56:35:1b:d7:66:19:1d:97:76:e1:da:d4:1b:e0:e3:
04:a6:56:ee:59:67:f7:89:fd:b8:b9:0b:32:8e:b3:
18:ee:3a:bc:c1:59:dc:fd:8e:ad:d6:08:96:08:1c:
3c:b4:92:3d:44:09:f4:22:84:8d:8e:68:7b:3a:2e:
36:e9:36:48:1e:9f:e2:49:8f:6d:69:62:73:93:ea:
ac:88:7d:3e:86:7b:61:18:43:9a:0c:33:ac:72:c2:
33:e3:65:ef:44:9b:83:ce:72:32:42:ef:08:af:0f:
ab:a8:6c:20:02:08:8f:b4:6f:b9:6b:c9:ca:b5:a7:
1b:d9:25:ad:d6:ef:cb:ab:f9:56:14:c0:58:0e:86:
23:65:4d:f3:66:b7:cd:83:6c:74:0a:2e:ad:9f:c7:
1c:ed:64:5d:8c:42:c7:6c:29:71:63:36:24:f4:7e:
ce:3d:66:0d:1a:32:f3:69:85:50:91:fb:5f:ea:b0:
6d:cf:32:5d:c0:c6:04:b1:62:52:17:30:a6:48:9d:
16:1e:58:3b:f1:4e:01:41:5e:d5:65:bd:0b:49:1c:
48:1e:98:ac:3d:7e:a3:9d:60:c6:9b:a9:27:3a:b8:
d1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D5:31:D2:01:0E:6E:A7:9D:FD:EF:A0:8E:1E:8C:12:F8:63:DA:01
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fdUx0gEObqed_e-gjh6MEvhj2gE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.240.0/21
Signature Algorithm: sha256WithRSAEncryption
77:d6:01:19:3a:a9:42:c3:9c:0a:cc:3a:58:fa:19:5e:7a:97:
9a:1e:45:68:cc:13:60:68:11:72:99:93:ca:95:42:61:a0:85:
0e:06:1c:30:c4:92:03:25:1d:3b:d8:4c:1e:81:89:f8:a0:6d:
56:9a:17:dc:71:a2:bc:d1:1f:9f:23:35:33:7a:c8:9b:8c:fb:
5e:d1:e4:8b:91:4d:97:a4:b3:8c:be:be:5c:46:8d:8d:dd:af:
12:1d:8b:f1:c7:00:1c:bf:73:6d:06:f9:41:7c:42:49:3d:a7:
f9:4e:db:e8:3d:94:66:46:d1:41:3a:72:33:7a:0f:22:e4:f3:
ae:84:55:12:bf:06:71:33:2b:ec:14:be:d6:14:7e:9c:e3:f7:
f9:02:98:71:a9:d7:8c:97:28:2c:74:2c:77:98:09:2e:b4:e0:
25:c7:b7:f5:43:c4:de:b4:5c:5a:6e:49:a8:a8:2f:3b:b0:c5:
2f:fe:0e:9b:51:ba:5f:2d:a7:f6:1f:33:2a:b2:9d:e8:0d:ba:
73:ff:44:02:8f:2e:09:61:a8:ba:4f:47:dc:90:94:f0:2e:f0:
32:c2:1d:dc:17:2f:7d:9f:0f:50:6a:21:2c:1d:5b:d6:fb:27:
88:f9:6d:4e:ef:e2:b9:05:42:5b:12:54:b7:d0:49:13:a3:30:
d8:5d:54:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:10 2025 by rpki-client