Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3iAv58nJw8Q_lcd-YsBm_giz2Os.roa
File: 3iAv58nJw8Q_lcd-YsBm_giz2Os.roa (raw, json)
Hash identifier: E0MekBjCLoG7qTnyD06S8LCSchGf1upTctEHkavUuck=
Subject key identifier: DE:20:2F:E7:C9:C9:C3:C4:3F:95:C7:7E:62:C0:66:FE:08:B3:D8:EB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1851
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3iAv58nJw8Q_lcd-YsBm_giz2Os.roa
Signing time: Sun 07 Feb 2021 12:28:15 +0000
ROA not before: Sun 07 Feb 2021 12:28:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6225 (0x1851)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:28:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DE202FE7C9C9C3C43F95C77E62C066FE08B3D8EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c5:c3:f3:00:ce:bc:a4:66:66:13:09:7d:84:
6d:0e:ff:c4:52:8e:b6:b1:9f:8d:b7:bb:68:a9:1d:
ad:5a:0f:a2:5e:98:1c:a5:8a:d0:b3:3d:43:58:06:
c4:6d:5a:7a:9a:9d:0e:e2:ab:d1:ab:61:38:45:2f:
14:6b:65:dd:a0:62:3b:af:34:5d:26:69:d8:8a:26:
d2:ee:04:17:b1:c4:06:99:3c:88:90:36:66:3d:ac:
75:2a:fa:1c:e1:a5:dd:87:cd:15:bd:07:3d:21:f9:
b9:94:51:62:0d:84:f2:53:6f:04:47:d9:74:8e:f9:
2c:4e:09:7d:77:ff:7a:43:9a:91:c9:a4:f0:3f:49:
13:8e:f8:80:f1:d1:59:b5:0a:63:bf:31:05:3b:4f:
9e:f6:28:31:5d:96:17:a5:9f:07:1e:14:a7:f1:83:
a8:f9:ec:b9:0e:c6:b9:43:8c:e0:2e:5f:e9:ba:99:
c4:42:da:f1:77:85:21:88:b8:92:9e:2c:81:b2:79:
86:b5:51:8d:bc:68:11:f3:36:e4:6a:74:42:42:9d:
96:42:3a:89:eb:0b:af:23:3f:6d:0d:e7:32:68:bd:
63:d5:45:5d:68:ee:4e:fc:af:ee:9b:f3:b9:e6:5a:
cc:e0:85:83:16:3d:92:74:b5:22:68:1c:70:03:86:
bf:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:20:2F:E7:C9:C9:C3:C4:3F:95:C7:7E:62:C0:66:FE:08:B3:D8:EB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3iAv58nJw8Q_lcd-YsBm_giz2Os.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.40.0/21
Signature Algorithm: sha256WithRSAEncryption
44:9a:6c:c2:74:a2:10:ef:cd:13:0a:ee:07:be:99:13:c3:c4:
69:8d:39:0f:12:5c:2d:8e:08:1a:44:db:42:f6:29:b9:e4:2c:
f0:0e:08:ef:0d:a4:57:d0:66:de:56:b1:71:77:71:b9:3b:14:
b3:fb:57:30:96:05:95:e3:d5:bd:03:06:42:8e:66:f1:26:2d:
b4:88:0f:57:9f:df:6d:f0:89:d9:c4:47:04:06:5f:61:03:dc:
1b:a7:70:a3:ce:50:66:49:8e:4f:ae:60:87:07:e8:ad:58:1b:
e4:27:0a:23:fc:e6:5d:2c:00:44:f5:03:2c:f9:09:c4:97:8c:
46:0e:ba:30:61:56:a1:96:0f:92:37:f9:94:50:54:73:38:d4:
05:c2:04:1d:2b:9e:c5:09:d1:37:fb:c4:26:a4:d0:27:73:97:
a9:ae:4e:8a:08:e5:7f:f5:ca:ba:f5:5c:29:6a:dc:6f:f0:ef:
f7:5e:89:a5:c0:36:c5:4a:c0:f4:ba:ce:00:64:dc:69:84:94:
4c:c1:bf:dd:4f:6c:09:03:bf:2a:3c:0b:2f:4c:7e:7e:61:15:
b6:24:6b:a2:7d:8d:06:82:ee:0d:95:6d:62:a9:93:23:9f:37:
f3:96:0e:7f:31:c7:6b:ce:a2:39:e5:43:41:48:60:fe:ad:cc:
bf:79:39:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org