Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j3Rsl_2XcDql7KANwjvjpDaUPGA.roa
File: j3Rsl_2XcDql7KANwjvjpDaUPGA.roa (raw, json)
Hash identifier: ktq8CE3ol7KfSK9w+oQEm2rc9k5rSodya0IVyKT2tAY=
Subject key identifier: 8F:74:6C:97:FD:97:70:3A:A5:EC:A0:0D:C2:3B:E3:A4:36:94:3C:60
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29B4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j3Rsl_2XcDql7KANwjvjpDaUPGA.roa
Signing time: Fri 01 Sep 2023 10:06:58 +0000
ROA not before: Fri 01 Sep 2023 10:06:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.8.128/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10676 (0x29b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8F746C97FD97703AA5ECA00DC23BE3A436943C60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d7:cc:5b:09:ba:bd:2c:c3:dd:e4:0c:d7:11:
27:99:fa:06:9b:83:86:d3:3e:ba:24:7a:5e:19:4b:
ca:e3:79:59:d9:c1:d8:bb:d4:94:8b:7b:35:f3:b0:
29:fa:7d:2d:d4:97:d6:a5:f8:46:1d:74:2f:c0:3e:
c5:d5:b6:73:0e:2d:38:f7:32:94:12:5a:e3:50:b7:
8b:17:7d:23:f6:e7:71:d5:57:5c:94:d5:6b:f2:08:
14:6d:6e:2f:5b:4c:ce:31:04:98:c5:8b:68:3d:c6:
6e:ac:37:f8:12:38:02:41:7e:7b:c4:6c:9e:58:05:
c3:02:51:75:23:05:3d:a2:dc:25:49:23:ac:d6:dd:
32:eb:02:42:68:90:2b:1d:9d:fc:f2:04:43:da:97:
8a:de:b1:af:72:f6:6d:98:da:1b:96:f9:35:1e:70:
90:43:7e:c6:c5:86:bb:8c:a7:1d:16:4b:5d:3c:2b:
ea:ed:e5:30:0c:95:f9:f7:08:32:8b:3b:ed:42:5b:
a7:e4:c6:08:e8:61:63:ae:c6:4c:f2:89:6e:26:7f:
2c:d2:e0:c6:c2:51:54:25:37:c1:53:3d:d1:18:30:
ec:f9:e1:97:85:be:0c:b2:c1:3a:e7:2e:ad:cc:f6:
9b:76:df:fc:eb:35:b1:25:94:3c:d6:ce:91:64:74:
d7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:74:6C:97:FD:97:70:3A:A5:EC:A0:0D:C2:3B:E3:A4:36:94:3C:60
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j3Rsl_2XcDql7KANwjvjpDaUPGA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.8.128/26
Signature Algorithm: sha256WithRSAEncryption
16:ec:6e:aa:5c:84:d3:46:70:cf:76:4f:fe:79:09:12:9c:01:
ac:62:86:02:78:93:fa:79:b2:4b:35:3f:db:eb:d5:b9:3e:c3:
79:1a:4b:b4:81:54:e9:48:9f:2e:24:b4:c9:34:7b:2f:2f:83:
7a:4b:d6:ae:ab:6b:cd:e9:8e:87:03:3c:d1:3e:06:d8:bb:8c:
24:16:8f:ee:12:29:27:83:52:cb:b5:e6:54:2c:ca:9b:42:60:
47:ca:f1:60:7f:be:6b:23:a4:00:a0:b9:a0:7b:02:fc:b6:34:
d5:1a:2e:83:2b:e1:8e:23:9b:fd:33:fc:46:22:dc:4a:e6:0c:
d4:cf:d1:63:d6:b9:1b:e6:dc:58:ed:b0:c0:18:bd:8a:28:25:
d8:15:68:28:ef:f4:e0:7f:50:7f:b8:7a:02:a2:d6:89:9b:65:
ec:82:34:ad:33:d2:d1:04:a9:f7:5a:e2:d5:fc:cd:da:5d:70:
7c:88:33:4c:50:3f:6b:5c:95:4e:ce:24:87:d1:e6:63:57:43:
e6:04:d8:89:1d:7a:af:56:66:a9:6d:62:b7:5a:29:6b:ce:5b:
84:22:71:77:77:f6:0b:1c:18:7d:f9:53:d3:33:92:1a:44:05:
da:4c:2b:1d:ec:e0:ac:67:46:a9:fa:f4:9b:fe:b7:06:70:b4:
a6:6f:b1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:29 2025 by rpki-client