Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JjbWEwkwjGqpOkiwIbXDud9rW4.roa
File: 0JjbWEwkwjGqpOkiwIbXDud9rW4.roa (raw, json)
Hash identifier: tLOO6pV78u+oMuYb7GG8u0hhhOzsZXrYRdosFBwfdDs=
Subject key identifier: D0:98:DB:58:4C:24:C2:31:AA:A4:E9:22:C0:86:D7:0E:E7:7D:AD:6E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0CEA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JjbWEwkwjGqpOkiwIbXDud9rW4.roa
Signing time: Tue 29 Sep 2020 09:53:57 +0000
ROA not before: Tue 29 Sep 2020 09:53:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3306 (0xcea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:53:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D098DB584C24C231AAA4E922C086D70EE77DAD6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:da:1e:f8:60:eb:05:30:b1:2f:36:90:db:0d:
29:5e:d1:5f:eb:05:37:b0:98:5d:a1:4a:b0:e9:ef:
c2:71:3d:a9:ae:f0:6f:af:c8:7a:40:b3:3b:3f:e7:
0e:c3:78:2e:c9:74:28:b7:b1:8d:fa:22:c6:ce:f7:
b5:93:a9:fb:6a:e1:a9:08:c7:59:f4:13:c1:d6:a2:
1f:1a:cc:41:ab:1d:7d:9f:b4:8a:2c:f4:04:1e:45:
3b:d0:d6:76:c2:dc:f4:80:d1:33:9c:e8:37:9c:f2:
fc:b7:d3:74:d1:b8:1e:fe:a3:14:38:25:95:c3:ff:
fb:2e:6c:0c:89:5d:a0:03:1d:42:c5:3c:9b:c9:13:
a9:88:21:2d:c6:4a:45:ea:92:f0:7a:31:47:7e:ae:
a5:09:1c:64:8b:56:82:b4:f2:48:b6:9f:56:ca:20:
3b:db:f5:fc:5c:70:91:40:fa:b6:aa:c4:69:06:9b:
60:a4:ff:d8:7f:e1:0b:77:62:59:e7:9a:05:c2:96:
93:a4:cb:b4:d3:24:b3:02:24:4c:ee:09:1c:b3:cd:
8f:f4:d1:43:d9:aa:11:4a:34:24:be:0f:5d:c9:af:
3d:5e:8b:d9:72:99:fd:e5:77:16:59:c7:ad:45:ec:
77:bb:9e:b3:08:c0:07:33:cf:d7:c4:ef:64:6e:a1:
ae:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:98:DB:58:4C:24:C2:31:AA:A4:E9:22:C0:86:D7:0E:E7:7D:AD:6E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JjbWEwkwjGqpOkiwIbXDud9rW4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.208.0/23
Signature Algorithm: sha256WithRSAEncryption
53:b3:f8:ba:f4:f5:c8:6b:5b:16:0a:c8:9c:8d:94:4c:06:c0:
9c:f8:a8:3c:41:45:66:e0:e5:e6:e4:96:80:f4:79:ce:93:87:
72:98:25:88:68:9b:47:0e:19:10:e2:50:c3:ae:5a:e3:0b:25:
18:59:b8:8d:48:7c:19:7a:43:64:02:7d:56:1f:59:fa:26:85:
a0:3b:56:83:c6:40:08:fe:98:72:47:41:7e:83:0b:dd:e2:5e:
01:6d:b5:17:c1:88:b1:d5:f2:5b:93:6a:cc:c9:07:4d:e7:6d:
03:79:1e:7a:6f:db:29:9d:0d:6d:46:1f:20:db:11:38:10:6d:
3a:19:c0:17:c9:40:cf:9a:7e:ab:3c:b8:2b:cf:72:f6:36:7f:
e2:c9:c6:8a:d4:cd:0f:10:f1:15:a5:68:dd:c4:71:ac:2f:82:
89:bb:9a:49:57:91:20:21:d8:9e:f5:a5:03:f1:9a:05:94:cd:
4f:3b:67:f7:c8:e2:a4:33:6f:63:ec:45:f7:f0:80:1b:bf:83:
cc:dd:68:f4:91:c2:e2:74:c6:07:7a:2a:f5:17:3f:b2:a1:fb:
c9:94:b1:c0:dd:78:f5:9d:34:a1:3f:34:94:54:8c:35:f3:d2:
a2:49:0e:81:93:09:2a:6b:98:c6:ad:7f:db:e6:b0:b0:20:1c:
e1:df:fa:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:07 2023 by rpki-client on console-ams.rpki-client.org