Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xQXx_z4AKxLinJoAUkb4x0QHf2s.roa
File: xQXx_z4AKxLinJoAUkb4x0QHf2s.roa (raw, json)
Hash identifier: 6NJDZz21qciCwHUFR/W3NrNaYR9v3YZdFjeQW7c4KII=
Subject key identifier: C5:05:F1:FF:3E:00:2B:12:E2:9C:9A:00:52:46:F8:C7:44:07:7F:6B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2123
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xQXx_z4AKxLinJoAUkb4x0QHf2s.roa
Signing time: Fri 25 Nov 2022 04:39:33 +0000
ROA not before: Fri 25 Nov 2022 04:39:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8483 (0x2123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C505F1FF3E002B12E29C9A005246F8C744077F6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ac:89:7b:1d:ae:55:db:ad:7a:96:c7:6b:1f:
20:7a:a9:54:a3:57:36:d5:86:e5:04:92:a9:1d:13:
02:de:8e:7b:fd:98:a1:fc:02:88:fa:29:7a:97:bf:
d1:a3:a1:88:20:6f:af:9c:64:02:95:5a:a7:b7:69:
78:de:e7:97:de:ac:2b:90:fe:93:f6:18:84:8f:1c:
e1:a2:21:ce:f9:1f:2e:ff:80:89:cd:53:f3:78:b8:
6b:51:00:25:b6:51:47:6a:f0:3d:b4:ba:8f:79:b8:
ad:f0:87:ae:a0:11:2b:d6:b7:2f:9c:bf:ce:95:d8:
77:be:dc:7f:af:ce:b1:54:b0:bc:8e:7b:ad:14:09:
41:90:7c:22:df:40:e1:60:38:d6:46:b2:77:fd:60:
d3:71:16:0a:88:ff:02:74:5f:fb:f4:f2:93:04:cb:
f3:e5:a4:6f:cc:3c:91:69:e9:8c:de:a6:50:7e:5d:
b7:04:9f:c7:0b:9a:9e:05:a8:3f:4a:bc:72:8b:c7:
4b:03:98:35:bb:8d:15:1e:7a:a8:25:b6:be:da:44:
92:ef:95:36:46:38:32:e4:c0:5e:64:ae:5b:34:69:
d6:c0:75:d7:87:99:79:6c:35:40:72:ca:d8:40:23:
a1:b7:61:8f:ab:8c:53:54:11:05:b0:90:76:3b:26:
cc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:05:F1:FF:3E:00:2B:12:E2:9C:9A:00:52:46:F8:C7:44:07:7F:6B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xQXx_z4AKxLinJoAUkb4x0QHf2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.56.0/21
Signature Algorithm: sha256WithRSAEncryption
68:83:66:ae:cf:fa:df:5a:2e:64:8f:e2:cc:2f:fc:30:8f:a3:
2c:b5:3d:ef:71:99:4f:1a:44:fc:cb:96:3c:31:85:53:77:22:
26:4b:00:4d:ee:1c:50:a2:57:00:95:f5:1f:4a:c8:e1:52:37:
1a:22:83:9b:08:ed:2b:7c:6e:01:be:ae:f6:95:22:6d:d8:42:
24:f4:56:1d:da:cb:1c:20:2d:e3:ab:88:fb:24:1e:f2:22:3d:
4d:b0:20:3a:ff:93:ca:c2:0b:a8:3a:f3:09:bb:47:67:1e:57:
94:6a:e9:b6:c1:c5:79:8f:c6:41:6e:98:cf:13:d1:5a:69:e4:
7f:7e:92:91:fe:97:62:95:53:cf:d3:8b:3d:60:04:53:1f:22:
17:dd:1c:67:ea:33:69:82:cd:f2:19:f0:fe:7b:31:d8:32:4c:
2c:d0:75:27:22:8a:54:50:4b:be:e2:ab:26:a6:83:f1:16:1b:
6f:3f:61:48:d0:e7:db:e7:0f:f0:55:9e:83:24:36:ba:2a:3c:
bd:e1:1e:8e:97:c4:e9:53:d3:66:26:7f:23:84:68:c6:c2:74:
4e:b0:72:0e:a9:82:55:a4:6b:48:1e:c5:3d:6f:db:94:96:ab:
d2:8b:c6:5e:a3:5c:ed:08:60:09:be:40:7c:4b:42:95:b8:fb:
bf:41:24:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:00 2024 by rpki-client on console-fra.rpki-client.org