Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ajtMcqrZ0yHZDYHKm9BxeqZA_k.roa
File: 3ajtMcqrZ0yHZDYHKm9BxeqZA_k.roa (raw, json)
Hash identifier: WQCjAGUizgJarwN6RBbigBzOBxechas1YZXGWmsMu+U=
Subject key identifier: DD:A8:ED:31:CA:AB:67:4C:87:64:36:07:2A:6F:41:C5:EA:99:03:F9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 143F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ajtMcqrZ0yHZDYHKm9BxeqZA_k.roa
Signing time: Sun 07 Feb 2021 11:57:55 +0000
ROA not before: Sun 07 Feb 2021 11:57:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5183 (0x143f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:57:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DDA8ED31CAAB674C876436072A6F41C5EA9903F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b3:d8:49:f6:08:33:dd:fe:a1:96:0e:04:df:
91:97:91:20:16:ea:4a:99:ad:f4:e6:dc:33:d5:8b:
1c:df:a0:d2:6d:56:73:de:12:8a:f1:50:31:0b:ce:
14:a5:11:51:d3:9a:f7:47:72:36:e9:9a:d3:ac:23:
b2:bf:1f:f5:b5:dd:0a:4a:de:f3:56:0c:80:27:01:
68:44:2e:d2:40:d2:22:72:03:a5:b8:ed:01:e5:7c:
1a:f3:23:3e:56:e5:a9:34:10:ea:89:ab:cd:0b:ea:
f7:cc:bd:64:d4:3a:b0:d0:40:b4:d9:4d:d4:fd:94:
c6:80:cb:df:16:b9:03:17:0f:b2:e3:79:39:d9:7e:
55:3e:0f:b0:c5:11:84:5b:2d:ef:10:ce:7c:ab:58:
b6:40:6e:b8:19:b4:b3:cc:ca:6c:9e:3d:29:09:53:
7b:bc:73:49:05:08:f3:fb:69:64:eb:68:01:74:24:
93:68:1a:29:4f:77:75:0e:70:3e:90:34:0a:89:87:
6e:5e:77:ad:8e:e0:31:fd:89:4b:fb:8c:aa:bb:c0:
48:df:01:d7:10:5c:91:0a:82:2d:d4:69:a6:78:ac:
67:0f:8f:d5:2a:c0:16:45:f7:48:fe:84:36:2d:73:
22:e1:75:15:86:ef:c6:bf:07:1a:06:e7:af:37:96:
7c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A8:ED:31:CA:AB:67:4C:87:64:36:07:2A:6F:41:C5:EA:99:03:F9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ajtMcqrZ0yHZDYHKm9BxeqZA_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.181.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c2:e8:9b:f7:7e:ff:50:b6:64:e6:24:9f:10:29:f9:41:31:
6e:ae:5d:60:a7:3a:73:4c:98:e1:ca:4e:16:da:b3:b9:04:9b:
2c:d3:52:91:18:23:ca:80:ca:bf:a0:61:95:e1:47:ad:25:b9:
f9:9f:4c:65:3a:0f:82:58:cd:86:8b:cf:7b:f3:98:78:a3:bd:
0a:15:69:f4:83:98:77:1a:6e:e5:e2:99:19:25:d4:75:e7:52:
0e:f6:a4:65:54:69:4e:c3:c0:35:49:c1:6e:a5:af:2b:78:ba:
1c:47:8e:ec:6c:6f:bc:03:30:c0:d9:87:e2:b8:f0:e4:10:77:
77:5b:75:95:19:03:3b:18:c5:f3:e5:5f:6e:71:28:8a:7f:c2:
e9:4c:66:86:be:51:f5:3c:0e:60:31:ca:d7:e2:1d:d3:86:10:
c4:3d:24:cc:f5:7b:ea:df:ba:c6:87:98:60:c5:f6:d0:db:0e:
f1:b1:ab:8f:ad:bf:0c:dd:ce:e9:82:3c:3d:7c:7f:62:80:d4:
d6:f3:13:d7:30:45:34:c6:42:78:e4:9a:90:90:02:58:55:01:
d7:04:e6:3d:91:ac:9c:a7:9f:bb:61:34:f2:e1:ae:31:6f:6f:
77:ab:d2:02:fe:d7:a2:94:da:c7:9c:21:4f:dd:f6:28:a2:fd:
dc:f8:24:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org