Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3hKRuxAZdyrEvqMq6IaYKENtxkg.roa
File: 3hKRuxAZdyrEvqMq6IaYKENtxkg.roa (raw, json)
Hash identifier: aKpwvssw7l3k1PeZC/IBdPurqoW+E53JeR2FWVLxds0=
Subject key identifier: DE:12:91:BB:10:19:77:2A:C4:BE:A3:2A:E8:86:98:28:43:6D:C6:48
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3hKRuxAZdyrEvqMq6IaYKENtxkg.roa
Signing time: Thu 15 Sep 2022 02:45:07 +0000
ROA not before: Thu 15 Sep 2022 02:45:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.104.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DE1291BB1019772AC4BEA32AE8869828436DC648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:37:d9:72:54:47:74:de:36:55:b3:ec:2e:01:
25:81:5d:ab:06:9d:3d:0b:29:7f:b0:df:f7:ad:5f:
e8:24:b1:e6:c4:ec:c7:0d:b1:74:ba:ad:26:a6:89:
44:d0:c7:2d:34:15:54:0f:2f:e1:0b:da:40:02:52:
b1:eb:49:9d:63:47:9e:d3:59:d7:f2:fb:ff:97:11:
e3:78:29:63:bd:b4:4e:58:3b:c3:84:7b:0b:99:bf:
e0:f9:6a:73:be:2e:92:0e:3c:10:29:f5:2e:a2:86:
d3:47:a8:e7:da:f4:5e:ae:df:12:1a:1d:1b:1e:a6:
31:31:f4:17:ed:06:0f:62:31:47:c9:cf:d9:a2:8f:
2c:7a:3b:17:e4:5b:cc:dd:4a:28:59:22:df:b9:c1:
8c:0d:40:cd:74:55:10:0a:7c:e8:05:ed:4b:21:32:
4a:70:01:8c:9e:e7:ee:fd:d9:8f:5f:27:8e:f0:f6:
0a:11:0e:9e:4c:9f:cd:6e:91:ff:7c:b9:c3:e8:79:
29:61:c6:36:a5:c6:61:d9:c6:91:fa:97:c9:0e:6f:
c4:85:3c:56:29:e3:33:96:8f:88:ee:51:45:a7:84:
ab:ed:f6:53:5c:8e:b6:af:d3:d7:f4:f5:d3:0b:69:
46:b8:86:fa:64:f6:21:e3:7a:da:fe:8f:c5:14:47:
7f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:12:91:BB:10:19:77:2A:C4:BE:A3:2A:E8:86:98:28:43:6D:C6:48
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3hKRuxAZdyrEvqMq6IaYKENtxkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.104.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:78:58:c5:b8:4c:a2:c9:ed:b9:16:07:a7:3b:a9:81:65:27:
ee:21:35:e6:8d:5b:62:91:a9:f3:d5:0f:32:1c:c8:8d:30:cd:
60:6b:15:be:f4:f7:59:f6:76:bd:02:d6:74:a4:3c:9a:c0:27:
bf:68:9a:ec:a5:4a:24:24:b2:ca:74:0b:8b:5d:dc:2b:f0:8f:
10:1f:a1:b9:ee:5b:61:69:e8:00:be:50:7b:56:8b:72:52:fc:
99:4e:68:03:fc:0c:bd:36:e1:0e:f1:ca:be:b2:ff:7f:f9:cf:
03:2f:86:15:a0:e2:61:a3:36:23:13:95:85:af:6d:0b:e6:36:
7c:2e:5c:85:8b:70:dd:aa:e8:5a:38:c4:70:55:d1:35:60:0a:
95:d4:bb:4f:21:76:92:a4:8f:68:7f:6c:58:95:57:a9:84:40:
d5:6e:1c:95:65:4a:36:94:43:5d:26:eb:14:6f:8c:41:ef:d5:
42:9f:4c:aa:64:d1:23:6c:9d:42:88:e7:7b:fc:d6:91:db:c1:
7d:ef:88:00:bd:6c:2c:b0:5f:22:f9:66:d3:2b:30:ea:a8:ae:
ea:49:b9:ce:7a:d5:15:83:2a:25:2f:cf:ec:fe:13:7c:53:3d:
b4:d8:87:a6:02:72:3e:63:92:59:82:c9:8c:d7:79:d5:d6:8a:
66:d0:27:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org