Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-sp088glrc8VPiFXGOtNhIaU84U.roa
File: -sp088glrc8VPiFXGOtNhIaU84U.roa (raw, json)
Hash identifier: bQQVh53tmBITZvIk/+CAPWlsfaWLjH5gZoj4KgJ7ZmY=
Subject key identifier: FA:CA:74:F3:C8:25:AD:CF:15:3E:21:57:18:EB:4D:84:86:94:F3:85
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-sp088glrc8VPiFXGOtNhIaU84U.roa
Signing time: Thu 15 Sep 2022 02:46:24 +0000
ROA not before: Thu 15 Sep 2022 02:46:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 45.64.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FACA74F3C825ADCF153E215718EB4D848694F385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:f5:e7:03:02:0c:b1:85:12:71:d3:54:e0:b3:
ff:da:61:0d:37:72:07:89:df:c3:88:87:8c:92:29:
95:68:c4:e9:da:e9:fd:c7:92:1e:1a:f3:85:f9:11:
85:42:92:67:f6:37:ed:92:65:25:f3:67:d3:fe:63:
17:fe:a1:4c:d8:db:f5:01:49:08:07:dd:59:28:2d:
f0:4c:ee:a7:dd:f5:5d:df:17:91:d5:2c:37:4e:56:
4f:55:7b:c3:8a:5f:ca:17:ea:3c:9f:b2:ca:a1:a3:
32:b9:94:c9:04:19:8a:60:4a:4b:5e:1c:33:1d:9c:
62:05:f7:d1:3f:e8:72:b6:e5:0e:19:4c:99:a9:07:
60:6e:65:4c:ea:dc:a4:c9:70:04:c1:ad:f0:d7:55:
fe:9e:74:a2:93:75:1b:b4:07:9c:40:40:1f:56:60:
6b:0a:62:1b:a8:1c:cd:e9:97:01:f3:97:93:28:d3:
bd:e9:f9:d2:7f:ae:c8:5f:78:20:33:c9:36:36:b4:
2e:15:47:95:51:14:b8:30:bd:fc:d8:88:9f:c7:44:
d1:7f:44:54:9b:4d:24:02:39:8a:66:02:bd:85:56:
20:20:a0:5c:08:52:a9:a8:b0:7e:35:4b:0f:dc:35:
05:f3:35:dc:51:e3:cd:5c:99:be:40:8c:00:6b:36:
a3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CA:74:F3:C8:25:AD:CF:15:3E:21:57:18:EB:4D:84:86:94:F3:85
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-sp088glrc8VPiFXGOtNhIaU84U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.28.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:6d:f0:72:6c:73:ce:12:51:84:85:c4:b9:86:db:e3:ea:f1:
a2:1f:bb:dc:9f:ac:ef:9b:b0:66:cc:f2:45:36:6e:90:ca:05:
cc:31:25:56:06:96:a8:2c:1c:23:0e:0f:4c:13:bf:26:21:bb:
29:ad:58:ef:5b:5b:65:38:70:7f:f3:fc:b7:12:e7:07:16:4b:
61:d9:d9:aa:6e:07:b6:c9:0c:d9:2b:2f:a8:9b:f2:ef:66:ae:
ed:94:83:98:38:14:ed:e3:79:7e:99:02:08:f1:36:ab:ff:57:
d1:42:16:e3:99:45:89:cf:92:a1:90:ed:e7:93:6d:6f:1f:f4:
78:07:98:91:62:db:02:ff:6b:b7:ff:f5:a6:0c:d0:ba:9c:fe:
aa:4c:e1:d4:f1:62:4f:e4:58:0f:8e:06:60:e7:bf:8a:11:bc:
af:18:e0:ae:50:1a:99:1d:f0:8b:48:d2:b7:2f:16:58:00:13:
9c:b9:a8:d1:44:f4:de:30:c6:62:fc:2e:c2:c6:eb:5f:ed:cc:
4d:65:c2:b3:5a:7a:ac:8d:bf:6c:81:59:25:39:c8:5d:6f:aa:
13:77:57:b0:91:7d:f4:b4:2c:40:a3:82:0b:82:0c:14:3d:9b:
e5:84:bc:2f:04:0f:e9:06:b4:1f:92:11:54:d3:67:ea:f9:f1:
53:a2:01:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org