Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/znPLu-qqjzGqdnhYYMGq1VrzgQ8.roa
File: znPLu-qqjzGqdnhYYMGq1VrzgQ8.roa (raw, json)
Hash identifier: +wUKgbYrjpTpS6JRulUTZZd9txx7/H6kOcLil7qD0g0=
Subject key identifier: CE:73:CB:BB:EA:AA:8F:31:AA:76:78:58:60:C1:AA:D5:5A:F3:81:0F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2083
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/znPLu-qqjzGqdnhYYMGq1VrzgQ8.roa
Signing time: Fri 25 Nov 2022 04:38:48 +0000
ROA not before: Fri 25 Nov 2022 04:38:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8323 (0x2083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE73CBBBEAAA8F31AA76785860C1AAD55AF3810F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a2:7f:5e:ef:be:3c:cb:aa:2d:a7:92:27:d6:
0f:88:72:72:24:98:d7:37:23:75:d5:48:e7:82:53:
53:8a:43:91:ed:81:94:fa:e5:e8:2b:5d:7b:a3:5c:
ec:5b:11:42:f9:b4:c6:13:ab:2a:bd:a0:cb:28:bd:
18:6a:8b:e5:6b:91:eb:c9:49:ac:ed:7b:28:6d:72:
66:e0:10:e8:4a:35:03:cb:74:e7:ee:f3:ac:fe:b2:
19:b1:22:60:45:43:9a:1a:43:8b:3b:ba:be:fb:87:
09:79:b1:0f:10:f3:b1:48:80:0c:91:69:9f:27:94:
f6:cd:fc:a5:7e:0a:5f:6c:4d:f9:62:76:5d:b8:49:
6c:3b:50:00:28:21:b4:16:49:01:de:78:84:f7:aa:
55:00:54:c1:c4:9d:d8:52:4d:33:e1:e4:5e:78:e7:
10:f9:71:00:35:1c:23:c7:4e:6d:d2:c2:be:fa:b4:
a3:69:f3:cb:b0:53:7f:4c:75:66:3a:f9:72:34:41:
36:35:4f:c4:8f:a9:51:b0:ae:23:96:63:65:be:80:
aa:e0:df:b0:62:e3:1a:3d:a3:da:2e:da:1f:7b:09:
4e:13:e7:70:34:81:16:82:29:75:eb:2c:0e:9e:3a:
24:e6:44:bb:50:2d:b9:ce:7b:c2:a6:c1:89:b0:6d:
74:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:73:CB:BB:EA:AA:8F:31:AA:76:78:58:60:C1:AA:D5:5A:F3:81:0F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/znPLu-qqjzGqdnhYYMGq1VrzgQ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.120.0/21
Signature Algorithm: sha256WithRSAEncryption
70:87:25:5c:df:d3:b6:b4:aa:e9:49:a0:49:7d:b8:e4:96:28:
c6:06:18:47:4e:13:ad:6d:d6:9c:d5:2c:6e:cf:12:29:41:e5:
fb:5c:c3:a5:bd:1c:a7:0b:ee:91:43:4e:16:ac:db:11:ac:06:
22:2e:26:9d:b7:7b:77:11:9a:33:75:85:b5:d0:a4:0c:00:94:
d2:b6:c7:3a:35:ae:07:ee:6c:2c:7f:f1:8e:17:63:ca:ca:d2:
13:ab:0c:f1:c5:f5:3e:45:9d:05:0b:2e:08:f7:3d:9f:3c:97:
38:9b:11:5f:f4:4c:90:ec:4d:32:7f:ea:bc:f5:3c:74:e9:a0:
d2:4a:43:71:6d:82:87:8b:1d:45:fc:78:e6:74:fd:32:80:96:
09:0c:5e:4f:7e:76:df:e9:78:e5:06:f5:3d:a0:d3:40:61:b0:
76:36:af:ec:03:27:2b:ca:fb:82:0b:2a:0c:28:1b:97:12:8c:
4c:92:ce:ad:d4:bb:22:15:67:88:bc:35:3e:39:68:ae:8e:6f:
ac:c0:12:3f:07:4f:fd:33:18:aa:e6:68:cf:bb:23:3f:42:41:
d2:b6:d4:e5:cf:a7:66:2d:50:7a:8b:2c:cb:4c:df:c4:ae:14:
17:3e:32:04:14:26:1a:44:83:8f:f1:71:5c:13:fc:c7:c5:74:
5c:a2:79:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org