Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4itkIS1c50lLrgWPRaSaAVJqpg0.roa
File: 4itkIS1c50lLrgWPRaSaAVJqpg0.roa (raw, json)
Hash identifier: Pshydi7TIx/5RCZiC1tz765GViAwToRKGjzncT8btP0=
Subject key identifier: E2:2B:64:21:2D:5C:E7:49:4B:AE:05:8F:45:A4:9A:01:52:6A:A6:0D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4itkIS1c50lLrgWPRaSaAVJqpg0.roa
Signing time: Thu 15 Sep 2022 02:46:03 +0000
ROA not before: Thu 15 Sep 2022 02:46:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E22B64212D5CE7494BAE058F45A49A01526AA60D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:83:7b:99:8e:bc:71:be:41:3a:b7:7c:4c:35:
a6:f0:ab:a4:3d:be:ce:86:58:04:cc:d2:a5:b2:29:
47:c7:7c:83:e9:d1:eb:f9:62:70:29:cf:29:b9:07:
4e:62:89:d0:e0:02:7f:a1:3f:c0:67:50:e4:32:74:
7f:b3:09:96:53:07:24:15:86:e0:46:1d:83:b4:d0:
8b:ce:ed:8a:33:a2:08:48:d2:a0:9d:69:25:c2:ca:
41:fe:2a:fe:e3:14:a3:f2:f4:41:45:74:f7:83:2a:
d7:db:96:0f:73:e9:78:7e:0d:81:1b:7a:f7:d3:d3:
85:a5:45:aa:99:ce:fc:e4:8e:ff:23:52:2e:a3:a6:
cd:db:97:98:63:c7:3b:59:e9:43:63:b2:8e:55:29:
d8:5b:8b:3a:e3:47:9f:8d:04:3f:20:65:f4:7b:c8:
12:84:3b:6f:02:86:ef:b9:cd:f0:27:3f:5d:37:10:
6d:2e:b4:4a:93:10:d7:db:d6:d6:0b:b5:07:10:6d:
a0:96:b7:8a:78:d4:c7:8c:75:a5:7b:75:e7:23:82:
7b:b2:e8:c5:84:fa:ad:e3:3a:96:2e:a3:86:1f:3d:
ec:42:a0:fe:d6:6c:06:aa:5f:87:da:75:2f:ee:de:
1d:09:6c:71:47:ea:f4:86:b7:75:8b:71:44:0d:09:
4b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2B:64:21:2D:5C:E7:49:4B:AE:05:8F:45:A4:9A:01:52:6A:A6:0D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4itkIS1c50lLrgWPRaSaAVJqpg0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.24.0/22
Signature Algorithm: sha256WithRSAEncryption
33:66:8a:c2:09:ee:38:ac:9b:e8:2a:24:40:62:f3:46:e9:69:
63:a0:49:31:0c:1e:94:96:ad:e6:b4:95:d9:1f:74:df:61:7a:
8f:d6:9d:e9:ad:01:46:38:2a:d5:3d:4e:4a:42:d9:2a:7f:56:
65:de:07:b1:61:d0:f3:a2:dd:8c:60:de:81:6f:61:32:15:ca:
93:10:72:30:ea:6b:fc:43:4e:2d:e7:fd:ae:0d:96:99:6d:d2:
dd:8e:de:1d:42:ba:90:2d:cb:a4:85:31:5f:57:71:a5:91:f5:
fc:fd:fe:b9:35:3c:58:12:f6:7b:89:37:1f:2c:7e:86:7f:c8:
d8:05:52:d2:70:27:28:d1:2c:fc:c8:f5:c0:de:81:df:3a:e9:
d9:bc:9d:93:61:91:ed:4d:23:22:3f:a2:bb:40:12:43:a0:a7:
f5:60:24:25:f4:fa:f6:d5:fd:39:78:9e:7b:73:4f:43:69:b4:
64:df:02:3e:7d:04:e4:f2:ec:37:a5:2c:76:fa:fe:67:1f:3a:
33:67:27:9f:86:d6:39:7d:e1:24:30:9c:ed:1a:a2:15:f2:77:
96:2f:38:a5:27:69:55:3f:87:4e:e6:51:d0:68:33:42:02:34:
ad:25:8d:51:d0:6f:29:a0:7e:97:99:44:21:7a:0b:b5:e4:08:
c1:f2:12:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org