Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Vz5nfBXUJhcTsAXPj3bZPxWaVA.roa
File: 5Vz5nfBXUJhcTsAXPj3bZPxWaVA.roa (raw, json)
Hash identifier: JA0gqwtTOk3MAVy80kcEzgo27apo4JKr9YGO1TeCMTY=
Subject key identifier: E5:5C:F9:9D:F0:57:50:98:5C:4E:C0:17:3E:3D:DB:64:FC:56:69:50
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2337
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Vz5nfBXUJhcTsAXPj3bZPxWaVA.roa
Signing time: Fri 25 Nov 2022 04:42:13 +0000
ROA not before: Fri 25 Nov 2022 04:42:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9015 (0x2337)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E55CF99DF05750985C4EC0173E3DDB64FC566950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:30:6f:e3:ff:eb:7c:d9:fe:2d:85:3b:2f:82:
53:1e:e4:66:75:de:3b:99:92:d6:eb:55:a8:bc:e5:
d0:48:65:76:fa:f7:f2:29:6f:ec:b5:75:60:84:f9:
69:a0:8a:70:17:6c:d4:f0:00:11:3c:1a:f8:67:1f:
12:fb:75:17:8e:e8:07:4b:2a:35:3c:50:45:66:75:
5d:44:6d:28:3b:19:47:ef:b3:fd:64:8b:6f:13:8e:
d8:49:97:82:e4:e2:df:33:7b:ef:24:32:e6:31:45:
eb:b4:f2:42:0d:1d:c7:a3:f5:d3:cd:51:3e:31:8f:
1b:17:1c:63:13:80:db:0d:b8:bd:36:89:6a:cf:c8:
75:9d:32:d7:0c:8c:46:16:03:ad:21:49:63:41:d6:
9b:8f:a2:e4:c8:88:f1:d0:46:e1:87:2a:db:2d:38:
0b:0c:aa:01:13:2d:67:86:48:35:b2:49:9b:79:f3:
30:c2:a7:d9:01:ca:a1:6b:25:6e:d4:09:40:9f:3b:
98:24:25:37:30:39:bd:0b:f3:5c:a2:38:f3:fd:19:
78:c8:32:59:a6:db:46:51:97:bd:a9:ce:56:95:30:
ae:a3:4f:6e:6a:3c:1b:ff:bb:bc:55:7e:0d:01:b9:
5b:aa:dd:76:60:47:97:54:fc:73:1c:58:85:c6:fc:
06:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5C:F9:9D:F0:57:50:98:5C:4E:C0:17:3E:3D:DB:64:FC:56:69:50
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Vz5nfBXUJhcTsAXPj3bZPxWaVA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.112.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:ce:6c:37:39:b6:40:d2:87:3c:19:3e:b5:74:f3:40:9d:59:
34:c5:3e:35:dd:f9:1a:57:23:0e:47:02:6a:e3:dc:1e:28:64:
20:31:ca:33:e2:14:10:95:28:26:56:58:50:29:49:21:a7:30:
7f:6c:de:2b:b6:8b:0c:f4:32:ba:21:25:80:22:9a:01:9b:6e:
15:56:df:89:37:7d:39:60:15:75:7f:ea:27:8b:92:16:e6:49:
51:09:8c:57:9c:3e:13:59:7d:e2:8c:1c:c7:27:b8:51:41:5a:
e2:48:6e:7e:e8:22:23:da:dc:95:dd:50:49:56:58:01:3f:9d:
39:63:a7:2d:0f:76:a7:5f:40:d5:b7:fd:6b:ec:d9:58:24:b1:
e5:52:0f:30:94:c9:e0:01:98:2b:d4:aa:2b:fa:9c:33:99:21:
c2:33:f9:2c:ca:b6:21:99:d4:fa:46:a4:43:01:20:0b:ae:57:
92:80:27:44:08:d8:62:fd:08:79:c1:99:30:55:3e:97:fd:cc:
17:46:2d:11:a4:a0:84:ac:98:9a:3c:c8:f4:a8:46:7a:8f:0d:
66:e1:3d:c1:be:25:85:78:82:c2:51:5d:d6:30:e5:15:7c:7e:
1e:04:c5:f0:a3:a7:e3:34:da:02:2d:9a:fe:1d:58:86:a5:c9:
28:3e:03:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org