Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tYsjNrBdFRK_cw9SLOhE8Wj4A1U.roa
File: tYsjNrBdFRK_cw9SLOhE8Wj4A1U.roa (raw, json)
Hash identifier: zPrnvp0F1Lx5FKHSUdJiHyvE2u/1wGdnuh6d5K16TMI=
Subject key identifier: B5:8B:23:36:B0:5D:15:12:BF:73:0F:52:2C:E8:44:F1:68:F8:03:55
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A9C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tYsjNrBdFRK_cw9SLOhE8Wj4A1U.roa
Signing time: Wed 29 Sep 2021 02:45:33 +0000
ROA not before: Wed 29 Sep 2021 02:45:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6812 (0x1a9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B58B2336B05D1512BF730F522CE844F168F80355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:07:e9:c2:fa:8d:68:1f:a3:14:9f:e4:04:6a:
33:52:3c:3b:ae:32:9d:55:40:8c:94:93:14:77:c5:
c5:53:0d:2b:c0:9e:89:1f:c2:59:19:a5:41:9d:85:
cf:f6:c7:a1:fd:40:82:63:e0:85:5b:b9:8f:3c:8c:
f3:20:9c:18:11:70:e4:f3:82:81:8e:fb:b6:28:3b:
e3:4a:a7:44:32:a6:a8:dc:df:1c:84:9e:7a:c2:e3:
45:74:46:80:45:03:10:da:aa:8f:d7:8b:13:f9:39:
45:ee:90:5c:13:bf:72:95:45:7f:70:59:1e:8c:8a:
47:2d:9a:e5:cc:6b:13:dd:1c:b5:46:2f:83:e4:09:
d7:e0:e5:d4:6b:ee:8b:33:c9:37:ac:c9:47:bb:d3:
a8:8c:c5:3f:77:c8:62:ad:d1:4c:97:8e:d2:86:fe:
47:c5:8b:6c:b3:26:da:04:7a:49:3d:c3:99:2d:93:
8c:12:79:39:e5:78:0a:75:e9:88:f8:46:c0:f1:cc:
fb:6a:c4:6c:21:a9:16:4a:fd:4c:78:bd:a5:31:b0:
ea:0a:58:a9:b3:0c:c5:25:9b:05:52:ee:b7:42:59:
2f:74:38:a3:1c:9c:ab:fb:dd:b8:1a:0e:87:e4:b6:
0a:83:a0:ad:1a:79:41:00:5b:ce:4c:94:49:4d:77:
c5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8B:23:36:B0:5D:15:12:BF:73:0F:52:2C:E8:44:F1:68:F8:03:55
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tYsjNrBdFRK_cw9SLOhE8Wj4A1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.136.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:7f:55:55:29:1c:01:aa:d2:9c:6c:3c:5f:f1:64:29:fe:f6:
21:b6:3f:2d:42:f2:91:54:3c:69:5d:d9:2b:24:ab:7d:90:98:
50:ee:97:5b:6a:d7:36:55:f6:25:18:8c:4e:b2:d7:f6:e0:47:
fb:d7:70:6a:72:33:68:09:25:a8:7c:c0:64:c2:d0:3d:3b:5e:
89:bb:f4:1d:35:da:71:fb:eb:92:6b:03:fc:fc:83:03:5b:f1:
77:77:9d:55:f6:d1:8e:42:bd:44:39:6d:ed:52:8e:19:67:88:
c3:ef:59:78:68:e0:3a:96:66:c8:d7:be:ac:e1:b7:5c:50:17:
8e:86:09:e5:1d:ff:42:66:20:ea:f2:04:fa:36:c3:4c:27:c2:
7f:0a:0e:46:ae:82:7f:a2:3e:8d:14:2e:db:af:45:41:17:0b:
a7:26:a5:35:83:a9:04:5a:9c:6e:c9:db:3f:8c:57:3d:52:8b:
87:bc:62:87:fe:40:e8:80:cc:dc:8b:e4:4e:d2:ca:1b:b5:48:
0f:c0:02:f5:de:15:3e:99:0c:4f:38:eb:fa:e3:1c:bc:c4:55:
13:94:01:8f:c2:fb:f1:85:b8:5a:f5:b9:27:a2:83:ce:8e:f7:
03:3d:9f:57:a4:d4:b1:09:a3:4d:6a:63:c6:3b:0e:b6:7a:e6:
b2:44:6a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:39 2025 by rpki-client