Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hAleLGFAfc8zL4mfOHCoOjj3-V0.roa
File: hAleLGFAfc8zL4mfOHCoOjj3-V0.roa (raw, json)
Hash identifier: B+2Bmersm59JhZkoCpVkt3OTI012cxhQe6cLT2crWT8=
Subject key identifier: 84:09:5E:2C:61:40:7D:CF:33:2F:89:9F:38:70:A8:3A:38:F7:F9:5D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 194D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hAleLGFAfc8zL4mfOHCoOjj3-V0.roa
Signing time: Sun 07 Feb 2021 13:16:14 +0000
ROA not before: Sun 07 Feb 2021 13:16:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6477 (0x194d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 13:16:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=84095E2C61407DCF332F899F3870A83A38F7F95D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d0:3a:67:f6:2d:2c:cf:88:b1:59:c2:7a:a6:
ae:3c:85:cd:c8:10:08:8e:a0:82:2a:4e:b4:5f:d9:
17:db:2e:9d:6b:b1:71:65:bb:1d:12:36:1e:6a:92:
6a:5c:61:e1:57:1d:15:05:1d:8f:e7:80:85:fa:8c:
bb:ee:e6:9a:dc:94:32:f1:db:f4:b0:97:c7:b2:53:
a7:77:d6:18:fd:be:89:3f:1b:9d:39:f9:a7:4d:05:
29:6d:f9:f2:76:9d:43:5a:70:d4:ed:96:f9:e2:99:
9e:53:80:6c:d3:2c:b0:5c:23:8a:54:5e:57:b5:0f:
5c:89:94:2a:d5:67:6a:34:da:27:b9:00:e3:2b:08:
49:2e:ad:4f:b6:42:c4:78:04:eb:07:8d:57:70:e2:
8a:67:17:f4:ef:9f:8d:7c:e5:6f:f2:66:3c:7a:39:
40:00:53:6a:18:7c:f6:f0:59:ac:29:cf:82:d3:03:
a4:c0:2c:af:d2:45:63:38:7f:23:a8:9a:e6:e9:b6:
1f:ee:eb:0d:bb:66:5e:36:1d:88:79:01:6c:eb:86:
7b:f8:5b:d2:81:0f:fd:50:68:f7:a5:fb:c2:de:90:
57:d4:81:19:e2:a4:0a:91:60:f9:27:b6:a3:49:08:
eb:dc:78:5d:32:3a:ed:4b:34:14:76:be:06:c3:4f:
8a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:09:5E:2C:61:40:7D:CF:33:2F:89:9F:38:70:A8:3A:38:F7:F9:5D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hAleLGFAfc8zL4mfOHCoOjj3-V0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.168.0/22
Signature Algorithm: sha256WithRSAEncryption
65:56:59:b7:ec:0b:dd:8a:07:80:a0:15:2b:25:43:c2:4c:1c:
09:ac:44:0a:f2:64:e2:5f:06:c9:55:b4:ad:7d:bf:59:72:15:
c7:8e:63:52:84:2f:ba:b4:77:a0:b6:57:60:5f:6a:2d:4a:be:
22:fe:3f:0f:dc:55:ea:ed:38:a6:62:3d:22:36:a7:12:e4:ac:
73:74:dc:32:41:98:16:c8:50:b2:14:3f:9c:32:9f:d5:36:28:
6d:22:e7:51:e4:4c:da:80:51:a2:37:fd:16:e7:69:c4:9d:85:
5c:4e:84:d4:d2:b9:b6:29:8f:cd:3e:3b:59:6c:c9:87:a9:59:
ee:57:7d:9f:de:f8:aa:0d:c6:13:fa:96:34:62:a9:36:40:5e:
4b:90:37:e7:92:69:b1:32:46:34:34:93:fc:d2:30:9a:78:f9:
6b:45:d8:85:7a:85:d7:26:58:5b:37:5b:85:b2:f4:57:1a:8e:
db:6f:83:e9:64:88:95:58:f8:39:15:70:43:de:3a:63:e5:81:
df:36:39:c3:36:93:bc:e6:e0:55:b5:fb:11:b7:ae:eb:3d:29:
90:51:56:b6:b5:95:68:f6:30:3b:02:74:6d:79:fe:9a:76:77:
0d:7f:b8:10:01:37:03:bc:53:19:d2:b1:dc:61:e7:02:99:2b:
a3:b0:54:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:37 2024 by rpki-client on console-ams.rpki-client.org