Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-2-bUsXNvkIpcBIsI_S5qvg1i6U.roa
File: -2-bUsXNvkIpcBIsI_S5qvg1i6U.roa (raw, json)
Hash identifier: PKViiIXzNsgCYRN7ylXHprdsHPKpwd/aEM8u3kApvA0=
Subject key identifier: FB:6F:9B:52:C5:CD:BE:42:29:70:12:2C:23:F4:B9:AA:F8:35:8B:A5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CAE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-2-bUsXNvkIpcBIsI_S5qvg1i6U.roa
Signing time: Wed 29 Sep 2021 02:48:02 +0000
ROA not before: Wed 29 Sep 2021 02:48:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7342 (0x1cae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FB6F9B52C5CDBE422970122C23F4B9AAF8358BA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:60:2a:d4:d9:8e:1b:7e:56:54:3e:e7:4a:9c:
c0:9b:80:ea:00:77:a4:ac:28:34:5f:48:4b:b1:0b:
6f:78:97:6a:f3:cc:d3:73:fa:09:40:f5:db:50:87:
01:6f:63:2d:b4:b8:20:88:6c:0a:2c:b9:43:73:e0:
1d:4c:de:11:bf:31:0c:aa:6f:ed:a3:5c:71:5a:d8:
4a:0d:a5:b6:38:c6:52:24:24:be:dd:f0:5e:78:8d:
7c:46:b2:5e:b9:fb:be:ea:77:43:cd:6e:54:e8:2e:
de:d5:f4:25:56:02:1d:2e:58:ca:8d:87:32:7f:30:
42:8d:fc:4a:e3:81:20:b3:e5:12:20:f9:39:c2:b8:
fd:36:59:d1:43:ed:37:a1:e5:2e:18:55:d7:a4:a2:
7e:ae:95:e4:94:85:86:e0:cd:c9:f7:dd:08:4b:21:
44:a4:df:68:49:64:71:db:ad:4f:2a:14:7b:de:bb:
bc:61:9a:ca:43:6e:fa:fe:14:0b:e2:c0:34:50:6c:
7a:53:5a:11:94:03:b0:ed:e1:c0:6a:d6:9a:97:1a:
10:dc:ee:87:6b:b3:f0:47:ed:e8:89:76:b0:8d:2b:
c8:e4:11:dc:3e:a9:d1:c2:39:cb:58:b0:ff:eb:35:
21:63:53:2e:32:18:96:9f:78:bf:71:02:18:a8:83:
7b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:6F:9B:52:C5:CD:BE:42:29:70:12:2C:23:F4:B9:AA:F8:35:8B:A5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-2-bUsXNvkIpcBIsI_S5qvg1i6U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.152.0/21
Signature Algorithm: sha256WithRSAEncryption
89:19:72:d1:a4:bb:9a:b6:e1:70:0f:74:63:fe:21:cd:60:ed:
7e:dd:15:2d:8a:ae:b7:44:98:24:96:ab:b0:6f:da:e9:4e:26:
d1:d9:8d:cd:15:f5:eb:cd:2b:56:f5:f5:5f:c1:77:ec:25:db:
ed:9c:71:c2:46:fe:fd:17:0f:3d:f2:9f:2d:2e:ea:59:40:da:
1d:af:de:3e:fc:be:f4:a0:53:1e:f3:db:04:ec:a1:10:a5:1d:
c8:e2:ad:9e:78:19:c2:6b:da:cc:c2:bd:5e:2c:09:cf:2e:29:
da:13:1c:0a:42:7a:da:18:5c:63:64:40:75:3f:40:88:49:ba:
e7:42:9c:ff:71:42:81:43:ad:5a:96:e9:72:6e:bf:f4:be:16:
68:93:47:2b:aa:03:ba:0b:02:e1:63:f8:9c:22:cf:f8:e4:d2:
ba:09:c6:15:a4:47:6e:52:9c:bd:41:80:24:58:bf:30:f6:68:
dd:20:9c:21:00:17:5d:11:01:db:3a:df:86:9d:9e:d5:fc:af:
c9:48:6e:85:4e:a6:9e:3a:b4:4b:99:56:c8:3f:a6:2d:3f:33:
ec:1d:f2:8b:4e:78:bd:bd:c2:5d:3d:bd:b8:ae:e0:80:2f:31:
4f:50:b0:75:c2:ef:ab:aa:ce:f6:7b:f6:ad:44:99:cf:fc:b5:
47:6f:45:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org