Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5z1yjn0E-mBQ0i0WyrVdfDpFih0.roa
File: 5z1yjn0E-mBQ0i0WyrVdfDpFih0.roa (raw, json)
Hash identifier: ssCIzJdGMpfT8DZLu7LOfUTpnKv98ti/JQCinRhSW+Y=
Subject key identifier: E7:3D:72:8E:7D:04:FA:60:50:D2:2D:16:CA:B5:5D:7C:3A:45:8A:1D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E4E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5z1yjn0E-mBQ0i0WyrVdfDpFih0.roa
Signing time: Tue 03 May 2022 03:19:53 +0000
ROA not before: Tue 03 May 2022 03:19:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.106.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7758 (0x1e4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 3 03:19:53 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E73D728E7D04FA6050D22D16CAB55D7C3A458A1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:92:6d:ce:1a:29:65:19:80:66:97:8d:fb:50:
a2:51:71:b7:18:b8:c5:02:91:ed:06:f1:a8:c2:c1:
f9:d6:52:9c:fa:56:8d:bc:f8:6d:a7:1e:0f:07:4f:
ad:bb:52:30:6c:da:58:73:69:dc:79:9e:21:7c:fb:
8d:2f:db:3e:08:57:fb:49:ae:f2:8d:0f:2f:7b:21:
15:ea:7c:55:68:e6:2d:ed:e8:8c:57:b7:e0:2f:35:
75:89:08:5a:fd:e9:e5:28:46:26:e3:82:f7:12:45:
8b:11:c1:28:4d:97:83:88:9a:cf:0f:9d:f6:c5:9a:
6f:34:23:eb:7e:43:c5:d2:a0:9b:66:61:3e:7d:8b:
e0:07:0a:d7:47:09:dc:cc:4f:2b:48:c3:cd:b9:3b:
ee:2d:64:9b:a6:65:0e:fc:cb:70:e2:b5:76:26:92:
8a:72:b4:83:37:a8:4a:48:aa:1b:e3:3f:2f:5c:0f:
59:29:1f:49:f5:68:12:bb:0c:ba:d1:0d:8e:52:b7:
e1:b9:ee:81:8a:5f:97:a2:04:74:60:60:f9:ce:2d:
d2:3b:58:57:a0:02:f2:21:a6:48:1a:dc:95:e9:29:
fd:46:3b:e2:6f:0a:c9:52:d8:d4:93:6b:d5:7f:48:
e5:97:da:d2:e4:99:7c:19:7b:b5:5e:05:fc:eb:b1:
4b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3D:72:8E:7D:04:FA:60:50:D2:2D:16:CA:B5:5D:7C:3A:45:8A:1D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5z1yjn0E-mBQ0i0WyrVdfDpFih0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.106.0/23
Signature Algorithm: sha256WithRSAEncryption
03:8c:40:f0:bc:94:d2:37:a2:95:ae:25:4b:5c:68:46:13:f2:
28:f8:80:25:17:a8:a3:06:65:44:34:ed:51:fc:8f:21:5c:dc:
ec:b5:2a:6c:8d:d9:29:b0:aa:65:a2:33:60:d1:e5:e9:bd:4b:
3f:fc:fb:fd:1f:de:75:4e:ca:1f:43:10:1c:75:85:e3:4e:b4:
da:d4:26:41:1b:51:62:bc:dd:a1:e0:53:b2:d5:e9:5f:e8:da:
6c:d1:7f:9b:41:13:5b:aa:80:87:e4:da:fe:37:c1:b2:d0:e2:
81:eb:61:8b:88:8a:3e:62:b5:ed:2f:d0:19:f2:6e:0f:59:be:
30:c8:6f:90:1f:ad:db:71:09:18:ee:08:7e:8b:96:bd:04:9f:
aa:61:35:c8:ff:4e:d4:7c:c2:c4:6c:fe:a3:ae:15:22:01:87:
6e:d5:82:36:48:9f:e3:46:3c:c0:e8:82:b8:77:42:c9:1e:40:
7f:f7:d6:90:ab:7b:56:3d:80:4a:f3:ca:bd:7f:0b:0f:d8:d5:
05:f7:5f:58:bc:b8:be:2a:d5:ca:1d:36:3b:10:ad:3c:d6:76:
65:7a:fc:54:94:8e:b5:4f:ab:9b:af:2a:70:3a:e6:e6:c1:d8:
11:c3:f4:6f:22:4f:a9:cd:00:ac:4e:47:e0:42:b5:13:a8:5f:
c7:a9:7c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org