Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pbDQooZatEOf2Tq7x3dcT292kk.roa
File: 2pbDQooZatEOf2Tq7x3dcT292kk.roa (raw, json)
Hash identifier: XyKtReBFTUEhRR4PyPcvqmUxnpWXrMTRkKeD0V3euBg=
Subject key identifier: DA:96:C3:42:8A:19:6A:D1:0E:7F:64:EA:EF:1D:DD:71:3D:BD:DA:49
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pbDQooZatEOf2Tq7x3dcT292kk.roa
Signing time: Thu 15 Sep 2022 02:45:14 +0000
ROA not before: Thu 15 Sep 2022 02:45:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA96C3428A196AD10E7F64EAEF1DDD713DBDDA49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f6:97:e1:92:4d:ac:55:ea:3c:9f:22:1c:94:
fe:b3:c3:c7:e4:5b:b2:d7:a6:9d:15:77:11:0f:b4:
ad:8f:6b:75:b2:68:93:b9:66:b2:19:2e:3d:8c:67:
bd:33:71:61:1b:67:b5:a9:16:54:8f:56:c3:bf:2f:
5b:ed:20:d7:fb:46:a6:08:68:73:3c:d4:7f:ca:65:
04:57:bb:7c:d7:57:41:60:75:72:44:90:3a:dc:42:
72:02:c1:25:61:bd:20:6f:67:04:99:1b:f3:78:ca:
3b:74:3a:06:8a:3c:5c:e6:00:05:47:c1:b1:49:0e:
7b:3d:2b:7a:c8:d6:51:29:90:17:a0:13:6b:56:c1:
5b:98:9c:25:67:cf:a0:d6:c9:7c:79:59:d7:a4:64:
81:0e:0c:75:61:35:72:d2:2b:27:95:23:83:40:29:
11:f5:95:76:72:de:17:89:b3:da:ef:4e:75:b8:d7:
bb:9b:c1:30:e1:d1:02:1c:50:be:73:73:85:22:8d:
a9:c4:0f:5f:d0:9b:f3:34:de:3f:f3:e7:ab:61:55:
4b:c6:97:d3:16:2f:51:0c:3e:59:e8:59:53:b6:9f:
0b:22:01:9e:d2:d4:7f:ba:e2:f6:86:be:93:47:d4:
3c:12:86:09:3b:03:fd:83:6e:ec:2a:8c:30:05:29:
61:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:96:C3:42:8A:19:6A:D1:0E:7F:64:EA:EF:1D:DD:71:3D:BD:DA:49
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pbDQooZatEOf2Tq7x3dcT292kk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.104.0/23
Signature Algorithm: sha256WithRSAEncryption
65:f2:e6:f6:88:73:91:dd:f3:5c:21:57:96:6b:d0:3c:e5:ea:
b2:da:1b:43:1f:c3:e2:7f:90:01:72:dd:11:e9:62:4b:a9:28:
0c:9c:dd:79:bd:9e:5a:bb:95:04:14:75:26:09:17:59:14:1f:
9b:b9:9d:b5:6d:ef:78:86:17:a6:e7:b5:c0:55:65:e2:e9:55:
d6:56:67:a1:35:41:42:ce:37:8b:15:9b:ca:ce:c0:39:99:18:
07:11:83:08:03:10:7f:fa:a0:1c:d4:9b:8b:62:9b:f7:e4:62:
66:52:18:4b:9a:d3:db:49:cb:33:77:77:3b:42:2d:f6:ad:b8:
22:83:ff:e3:33:b4:2c:3c:49:23:0c:4b:85:9e:d5:3b:ae:34:
b4:ea:ad:d2:11:34:93:50:e3:2d:8f:61:d9:d4:b0:47:f6:66:
a5:9d:97:48:96:73:b7:1b:8a:de:9b:4a:fc:ba:18:87:6e:f3:
b3:e7:4a:f0:3d:92:f2:f0:bd:0b:3c:48:62:f1:bf:cb:32:17:
50:cf:f0:c8:7c:47:31:b1:40:e2:7e:bd:0c:a2:f8:1d:f1:0d:
cf:a3:02:d0:09:9e:cd:26:82:d1:fd:dd:51:ee:8e:be:af:86:
21:77:d3:87:85:9e:44:2b:f2:e4:da:37:ed:bd:30:b6:3b:85:
00:ca:f1:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org