Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2B3GKwyla-fboFZtrT5dZJz-Jr4.roa
File: 2B3GKwyla-fboFZtrT5dZJz-Jr4.roa (raw, json)
Hash identifier: vEnfxUNgVzbAkD9s6ZwHy0h5W73RxeQ+Kw+25+szavc=
Subject key identifier: D8:1D:C6:2B:0C:A5:6B:E7:DB:A0:56:6D:AD:3E:5D:64:9C:FE:26:BE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22AB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2B3GKwyla-fboFZtrT5dZJz-Jr4.roa
Signing time: Fri 25 Nov 2022 04:41:29 +0000
ROA not before: Fri 25 Nov 2022 04:41:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8875 (0x22ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D81DC62B0CA56BE7DBA0566DAD3E5D649CFE26BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8b:a3:dd:8d:a5:70:29:1f:1f:fe:51:cb:e6:
36:0b:3d:04:b5:1f:bd:ed:fa:ea:b6:31:43:80:fe:
1f:72:1a:47:71:ee:ec:05:62:e9:a3:b5:e9:4f:c6:
1f:4b:36:68:39:1e:e0:66:4c:7d:ce:e4:15:d6:55:
38:2f:ce:91:63:80:14:33:06:88:50:bc:50:77:92:
d8:9c:e4:2d:c4:ce:91:56:f1:33:d4:41:f9:3e:32:
af:1c:95:f0:2b:90:35:3c:b2:c7:d2:7a:fe:b2:7e:
90:88:65:a3:1e:75:bb:18:21:e6:05:cd:70:dd:91:
c6:71:c2:96:f4:ba:e1:4c:a6:50:83:4b:a8:f3:94:
a2:de:49:ad:51:98:02:5c:b9:b5:7a:ad:e2:67:24:
3b:3a:3a:88:27:1a:70:d9:9d:37:e2:8d:ca:fa:99:
da:82:a3:35:11:cf:0f:8e:8f:d2:20:ac:b7:a3:3f:
2e:dd:b7:7e:9b:ed:93:9f:14:5f:d8:d6:bd:36:5c:
0c:6b:9c:47:b7:a2:f0:45:b0:6f:02:b1:27:72:ab:
0d:6d:4e:ef:e3:d9:28:0d:82:fd:dc:f5:f9:b7:c6:
d4:cd:3f:5c:b7:c6:2f:25:90:c2:ae:14:0d:13:66:
31:52:34:28:e8:a4:6b:d7:41:1f:f1:2c:2b:35:8c:
2c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1D:C6:2B:0C:A5:6B:E7:DB:A0:56:6D:AD:3E:5D:64:9C:FE:26:BE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2B3GKwyla-fboFZtrT5dZJz-Jr4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.252.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:90:0d:b2:75:08:3e:d5:de:20:97:59:86:7d:c5:aa:21:6a:
73:24:c7:9a:5d:b5:75:42:b7:8a:66:58:32:0b:12:4d:58:9c:
e5:de:91:79:39:85:21:aa:7c:ae:4b:dd:44:40:e1:61:fe:e4:
8f:d7:1c:19:5e:ca:aa:69:1e:e9:56:6d:a8:19:3a:f3:79:a4:
e1:d2:0b:a6:27:91:c6:a8:15:62:2e:e9:42:67:15:5f:17:e7:
be:34:8d:96:00:53:ac:8e:bd:82:8c:f2:b8:5c:2e:8e:0f:50:
de:8d:17:b0:52:88:57:2c:33:3c:c0:81:7b:b2:dc:69:8c:25:
d4:34:9e:61:c2:2a:55:6f:03:bc:d5:42:2c:6d:93:c3:14:ad:
74:4b:f5:64:a4:36:28:b6:db:b0:5a:c9:20:c2:4b:56:4a:56:
f4:69:6c:a1:c0:13:69:76:c7:c4:f3:c4:59:ae:a1:f8:3a:2c:
a2:d8:84:2b:c5:37:46:52:e7:49:f2:bb:31:eb:f7:88:14:76:
1b:ec:f3:ce:11:ef:a5:57:4f:95:f7:19:7a:05:21:71:08:4a:
aa:9c:02:40:96:b2:d7:dd:15:66:c6:3f:11:d1:94:4c:ca:56:
c2:05:1d:77:c3:0f:3c:da:26:f1:5c:ee:53:49:19:a5:05:b3:
ef:0b:00:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org