Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5WiVzNQf9IiDQWBEdV0W2yUljJU.roa
File: 5WiVzNQf9IiDQWBEdV0W2yUljJU.roa (raw, json)
Hash identifier: LNj82FOT6ruRlz2X9kzUaxGiOBYEtjcvhSvAQkO5pms=
Subject key identifier: E5:68:95:CC:D4:1F:F4:88:83:41:60:44:75:5D:16:DB:25:25:8C:95
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 10B0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5WiVzNQf9IiDQWBEdV0W2yUljJU.roa
Signing time: Wed 25 Nov 2020 04:19:24 +0000
ROA not before: Wed 25 Nov 2020 04:19:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 118.232.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4272 (0x10b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:19:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E56895CCD41FF48883416044755D16DB25258C95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:63:51:16:43:34:3b:29:d1:35:f6:d7:a7:44:
30:bc:10:04:61:f5:20:1e:8e:53:d5:da:d9:00:0d:
b0:a9:23:87:a8:99:e1:b1:22:30:5b:8d:e5:72:6c:
70:a9:ac:95:68:48:c0:fe:3f:e2:3b:11:8a:06:ec:
f0:07:ad:5a:b8:58:a3:2e:e6:eb:05:b9:9d:5e:4d:
35:24:d2:68:cf:fc:d2:d4:a9:64:ed:95:87:54:3d:
f5:93:29:3b:12:7a:d1:05:3b:4e:10:2d:8a:d5:4c:
9f:0d:7d:ca:5d:ff:f4:d2:3f:c3:32:ce:89:16:5a:
e9:f7:44:d5:72:cd:4d:81:3b:ad:e0:76:56:33:89:
b9:f2:df:bc:db:d2:e2:f6:b6:29:c9:e2:0d:d0:be:
37:a5:73:60:01:7c:9c:71:75:6b:95:6f:3c:3c:a0:
a7:2a:7c:7d:fc:75:66:e0:84:95:2c:4d:22:db:f0:
b5:d7:9a:d8:64:03:74:84:b4:cf:b4:fc:99:19:47:
68:dd:ec:82:35:51:e5:53:1f:c8:5c:33:4a:7a:91:
dd:9f:17:c0:97:df:a9:03:88:4d:5c:5b:f6:a5:8d:
35:a8:e1:97:e3:4d:db:bc:37:45:3c:bd:a1:f5:19:
d4:dd:02:6b:80:07:ee:0d:f6:b6:dc:f6:92:fe:f2:
02:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:68:95:CC:D4:1F:F4:88:83:41:60:44:75:5D:16:DB:25:25:8C:95
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5WiVzNQf9IiDQWBEdV0W2yUljJU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.220.0/22
Signature Algorithm: sha256WithRSAEncryption
34:d5:e9:ea:12:17:c8:dc:47:b5:37:c6:d3:af:26:95:72:56:
72:79:f5:fe:48:bd:7c:fc:76:90:98:ec:60:27:96:01:54:e4:
1e:2b:a5:bf:e8:42:d7:49:2a:8f:f0:7f:79:ea:e7:1a:71:d0:
b1:85:7b:e8:4d:6e:6f:ae:72:05:88:b5:e2:b6:72:f3:88:cf:
21:d8:4f:74:cc:24:6e:f7:73:e7:41:00:b5:62:3f:2d:3c:b2:
5b:b9:90:74:db:c5:2c:56:10:81:f0:3a:4c:2a:21:3d:5d:eb:
60:82:db:e8:d3:f1:a7:c4:f5:2d:5a:96:31:d6:44:8d:a3:12:
f4:c3:5d:e1:9f:d5:4e:6c:89:1a:f8:e6:d1:ba:06:19:e3:27:
fb:67:ad:27:59:d5:27:48:a7:97:ad:c0:73:df:a4:8e:22:c4:
f8:f5:3e:f9:49:fd:7f:6e:81:90:eb:c8:e6:34:4f:32:62:de:
47:c3:e5:06:42:55:12:bf:ee:6a:b0:66:04:f1:93:4e:f9:9a:
1b:2a:f9:47:5b:9b:cf:9a:db:15:86:4d:73:f9:91:54:fd:b0:
49:41:c1:05:38:d0:fd:6a:9c:49:5d:b2:71:9f:ce:fa:86:e2:
43:70:1c:6e:e7:47:05:f0:9b:e1:23:89:46:f4:a9:98:f1:df:
4f:97:0f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org