Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3cjR1NrM_sSakE0ZIvWNWYU_xyc.roa
File: 3cjR1NrM_sSakE0ZIvWNWYU_xyc.roa (raw, json)
Hash identifier: y1pS6TGhiQEEsXrCrTks3/4s9L5dgEzLVKyvTRWKBsY=
Subject key identifier: DD:C8:D1:D4:DA:CC:FE:C4:9A:90:4D:19:22:F5:8D:59:85:3F:C7:27
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2186
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3cjR1NrM_sSakE0ZIvWNWYU_xyc.roa
Signing time: Fri 25 Nov 2022 04:40:01 +0000
ROA not before: Fri 25 Nov 2022 04:40:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8582 (0x2186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DDC8D1D4DACCFEC49A904D1922F58D59853FC727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fd:c1:aa:fb:98:71:bc:5d:fb:a9:54:13:e5:
75:05:f6:b0:2e:79:a9:17:da:c9:e7:8e:6f:32:be:
ba:38:2b:a1:73:d3:40:b3:50:02:c7:d5:e1:b5:c3:
67:95:09:b2:30:08:02:70:07:e0:63:1b:13:eb:8c:
d0:11:2b:d2:01:35:2a:c6:64:a4:b4:f4:66:0a:08:
3a:63:04:ed:a5:ca:a9:3f:81:b1:df:88:ac:32:ad:
55:fe:a4:c3:67:00:e0:b9:aa:22:b7:cc:94:fb:5a:
b4:0f:38:81:d6:26:86:83:25:02:ed:af:75:1b:1f:
f2:eb:b4:e1:ff:97:08:84:3f:b6:9e:ca:af:5d:f2:
14:f5:35:93:7e:d9:30:4b:50:64:b0:6b:03:62:6e:
e0:9d:b5:9d:96:c0:bb:60:90:9c:53:ae:cc:bc:3c:
04:c6:d7:0b:9e:c4:fa:96:62:fb:a5:e2:09:fd:0a:
71:ce:7d:c8:2a:a2:25:38:c1:24:8a:9a:43:cc:4c:
0d:29:32:37:76:04:a5:4e:8b:4b:c0:b0:4d:4f:e9:
a6:09:8b:cb:24:fd:c5:ca:e0:36:17:ed:75:d9:4b:
b6:ef:71:93:18:1d:f6:25:bb:12:46:fc:02:41:11:
f8:8a:6e:8f:60:9c:2a:7d:6b:f2:f9:7e:78:d1:d8:
6f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C8:D1:D4:DA:CC:FE:C4:9A:90:4D:19:22:F5:8D:59:85:3F:C7:27
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3cjR1NrM_sSakE0ZIvWNWYU_xyc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.152.0/21
Signature Algorithm: sha256WithRSAEncryption
25:f0:fe:c3:b0:83:38:fc:ca:3a:27:ec:b8:48:62:57:74:36:
bf:a5:2f:42:a6:1b:fa:70:f0:6a:05:08:57:3f:4b:74:4c:aa:
d6:de:50:ae:cb:a5:2a:09:3c:e1:64:ce:db:d1:67:44:7e:04:
c9:24:fc:f3:54:cb:6f:06:6a:e5:4b:1b:7e:bd:6a:74:ee:e6:
4e:7a:65:db:4a:80:5f:69:6e:f7:cb:ce:e4:4c:84:ab:e5:25:
94:8e:e2:b1:06:d2:f5:e4:0b:04:39:39:d2:86:41:26:7e:55:
32:17:37:97:80:00:46:f9:10:0d:03:f6:f5:88:12:9e:42:52:
4b:56:63:5e:b7:68:ef:9a:2a:0c:d4:a3:08:32:c8:11:be:a9:
3e:c0:c7:e8:49:be:5e:1a:7b:24:7f:b1:34:db:7b:84:b6:e4:
ff:2c:07:f5:a2:14:2a:c9:eb:67:51:c4:79:a8:14:a5:29:b4:
48:ac:e6:70:52:ba:5f:6c:e5:e4:76:84:d8:27:20:b7:e4:54:
75:09:4b:57:7b:fb:68:40:97:ca:b3:fb:9c:94:d8:9f:28:10:
51:bb:7d:f7:c1:6a:87:0e:c2:c5:c2:49:f5:3c:23:bf:f0:2d:
64:d4:4f:58:0f:f4:3d:fb:4b:51:e9:4b:7b:cd:02:7a:6e:3e:
87:46:89:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org