Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/omsfSRviCazyBij75Hi011e7pTQ.roa
File: omsfSRviCazyBij75Hi011e7pTQ.roa (raw, json)
Hash identifier: DWcIIS53SvP8gZTH8VOMGBmX9nXLOr41sRKUSQL4ngY=
Subject key identifier: A2:6B:1F:49:1B:E2:09:AC:F2:06:28:FB:E4:78:B4:D7:57:BB:A5:34
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CDB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/omsfSRviCazyBij75Hi011e7pTQ.roa
Signing time: Wed 29 Sep 2021 02:48:19 +0000
ROA not before: Wed 29 Sep 2021 02:48:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7387 (0x1cdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A26B1F491BE209ACF20628FBE478B4D757BBA534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e3:7a:44:55:ca:19:67:86:88:dc:51:ae:cd:
32:15:8a:74:e5:7c:cc:7b:64:1d:b2:9b:de:f8:84:
93:22:52:15:2f:6d:5b:1a:6c:06:e0:07:f5:6f:6a:
41:96:b8:48:c9:10:2f:c4:9b:9d:d0:cf:37:64:fd:
49:7f:3d:6e:94:44:3d:c4:2f:b4:9e:2e:04:57:b8:
6b:4f:7b:c0:3c:cd:a1:45:df:ca:61:e1:30:4b:62:
e9:b5:cf:db:32:a3:d2:bb:4f:5a:2d:db:f0:b6:9d:
49:b9:8b:ce:f5:e0:d6:ea:fd:6e:81:4c:a6:29:84:
36:fc:75:22:cb:50:a5:ab:b4:03:b7:51:21:52:0b:
0d:c0:08:f8:ff:30:08:bd:13:d8:0c:9c:49:6a:b7:
1b:71:18:76:10:d7:0d:95:23:3f:83:17:3a:a9:4d:
5d:d9:ac:16:a4:67:d7:88:af:0f:77:25:2d:4b:43:
be:d0:6f:8f:1a:80:f2:09:b0:7e:a0:64:09:d2:26:
40:19:f8:36:60:a6:f4:99:14:b9:b9:9f:5d:ec:c9:
64:a4:75:f7:c1:74:b6:4a:fa:58:66:da:c2:9a:eb:
00:2a:e5:3e:9f:d6:b2:5a:02:c5:f9:ad:52:de:18:
32:c4:b4:6b:fc:83:3f:25:0e:96:2f:ba:f0:fb:eb:
d2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6B:1F:49:1B:E2:09:AC:F2:06:28:FB:E4:78:B4:D7:57:BB:A5:34
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/omsfSRviCazyBij75Hi011e7pTQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.140.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:da:94:2b:6b:8e:85:82:dc:ae:7b:aa:81:2c:3e:b3:9c:84:
b6:58:25:ff:b4:c6:d7:9b:02:13:f4:41:51:a4:ab:12:85:94:
9f:64:34:4b:8e:8d:c8:91:8a:fc:47:57:4b:ff:f6:34:b9:ec:
79:e8:7a:c6:e9:74:d8:a1:b4:9b:aa:03:7d:67:16:99:28:6e:
76:7c:63:e2:3e:76:7e:0e:9f:b4:2e:07:01:6e:24:27:d9:0c:
0d:3b:e9:1c:aa:7b:67:fa:cf:01:a1:45:e1:1d:c2:f0:48:7f:
57:56:31:e6:ff:29:e5:75:71:72:e8:3d:d9:d8:72:ef:22:6d:
ad:8a:18:b8:0f:d6:1f:fa:65:5f:a4:96:b0:c6:ba:10:d5:a8:
d9:1b:f3:dc:eb:f3:16:e9:ce:a9:9a:80:80:6c:dd:b3:58:71:
fe:5d:69:6f:59:7f:78:93:01:e2:11:dd:7d:e3:94:0f:98:8e:
3a:27:47:d7:8a:9d:93:27:47:49:f8:ee:a3:41:3e:f7:74:58:
1c:9e:ed:95:22:f3:df:94:33:29:1c:c6:17:16:96:61:4e:1a:
c9:22:5f:c0:b3:b8:91:80:bb:5c:50:b2:c6:67:62:87:9f:0a:
1f:e2:e0:09:c2:69:53:20:5d:95:43:95:63:74:72:db:08:8a:
e3:30:d2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org