Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0nvmy7S1nxpLVxTnf7kzh2DjdKM.roa
File: 0nvmy7S1nxpLVxTnf7kzh2DjdKM.roa (raw, json)
Hash identifier: rLAfY42SrVXGPaT27fRSyu3s2Y4CjYlB2j7tr+drlS8=
Subject key identifier: D2:7B:E6:CB:B4:B5:9F:1A:4B:57:14:E7:7F:B9:33:87:60:E3:74:A3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1641
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0nvmy7S1nxpLVxTnf7kzh2DjdKM.roa
Signing time: Sun 07 Feb 2021 12:09:17 +0000
ROA not before: Sun 07 Feb 2021 12:09:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5697 (0x1641)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:09:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D27BE6CBB4B59F1A4B5714E77FB9338760E374A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:94:59:cd:d5:c9:72:ca:e3:59:92:65:e3:9b:
c6:1e:75:bd:56:ff:c7:8f:31:26:50:13:fe:3b:5e:
f6:d4:fe:bd:88:74:88:a6:77:d8:7b:04:1d:c1:c3:
1a:28:83:57:6b:51:9f:d9:45:8e:91:30:a4:e2:54:
c7:78:08:8c:17:e4:6c:6d:6e:f0:33:16:3f:40:93:
91:77:87:06:16:e5:7e:34:fd:f4:82:d5:76:72:4d:
7f:b1:7d:04:6c:a8:0c:a9:5d:04:10:fb:00:48:17:
73:6e:e4:00:6f:cb:1e:f6:f9:8c:dc:30:53:22:b5:
b4:44:fb:3b:12:0f:93:b4:2e:be:69:7e:5e:19:d0:
42:37:99:4f:44:1e:2b:fc:44:5a:98:30:40:b7:fe:
44:bf:ae:2f:b2:c9:9b:96:a8:67:65:57:e0:f5:b2:
46:35:2c:ff:f4:1b:e7:b0:46:76:1c:f1:92:d6:3e:
d3:a8:20:dd:ec:ea:34:c6:77:d9:96:9a:33:66:e9:
17:2b:f3:b4:da:2c:17:19:b9:3d:93:1c:ae:ff:b5:
8e:a0:7c:0c:f0:dc:22:1b:49:39:b3:d9:31:ef:12:
50:0a:12:82:4c:6b:0a:53:39:54:2e:4c:2e:a6:4c:
9e:17:f7:cf:24:68:7b:89:8c:4d:30:1c:e1:79:f3:
07:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7B:E6:CB:B4:B5:9F:1A:4B:57:14:E7:7F:B9:33:87:60:E3:74:A3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0nvmy7S1nxpLVxTnf7kzh2DjdKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.220.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:26:e5:eb:c9:ab:ef:93:62:0c:1b:7f:ba:23:02:c4:25:a7:
85:37:fc:8e:c2:19:1d:21:b5:db:ef:07:47:68:f4:0e:40:d5:
96:50:e7:72:91:2d:b8:3d:b1:07:f3:02:a6:0a:86:eb:d6:39:
e9:41:69:cf:7d:c1:f3:da:61:09:ec:9d:b3:77:e0:72:59:e0:
13:03:81:b2:c1:14:c7:e1:d8:d6:01:79:c6:5b:6e:2e:f2:ba:
ca:08:05:86:62:6d:ba:79:72:71:ba:8e:c6:86:ee:b0:e9:2b:
22:dd:01:21:71:c1:f6:9a:88:59:27:5c:c5:97:71:b2:2e:8f:
63:5e:59:01:64:22:e5:98:f1:ad:66:2b:4e:13:d6:c9:65:f0:
f0:dc:22:67:80:77:a9:4d:03:dd:fd:3a:ed:9b:34:e3:2f:09:
ff:7c:48:30:a3:07:63:50:a4:9d:49:46:a4:eb:5c:37:9c:65:
c1:45:97:7e:c5:f9:2c:e2:5b:48:c4:fc:e9:65:db:c7:c8:10:
30:6d:a3:4b:70:20:49:d4:65:2c:17:2f:68:a4:6d:63:50:c7:
d8:64:a0:93:41:d4:72:3a:9b:a1:e7:64:23:24:fc:85:e1:88:
63:1e:36:63:9c:81:78:d5:13:a6:22:ed:e8:cc:c0:29:7c:81:
06:9c:05:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org