Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5zsEOhRDF61WJ4UxRJPMGnjUhNc.roa
File: 5zsEOhRDF61WJ4UxRJPMGnjUhNc.roa (raw, json)
Hash identifier: D6ZL0XgZJ36M/oZphg1MJDHbIRPvfumm9ZUBqn5LKoM=
Subject key identifier: E7:3B:04:3A:14:43:17:AD:56:27:85:31:44:93:CC:1A:78:D4:84:D7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 17A5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5zsEOhRDF61WJ4UxRJPMGnjUhNc.roa
Signing time: Sun 07 Feb 2021 12:21:00 +0000
ROA not before: Sun 07 Feb 2021 12:21:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6053 (0x17a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:21:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E73B043A144317AD562785314493CC1A78D484D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d4:b8:d9:19:1a:17:b8:f3:78:de:e1:7e:99:
38:fc:9f:1e:6b:5d:f6:72:58:9e:bb:aa:e2:af:bd:
51:df:e0:03:c7:b5:6c:d0:22:d4:63:d8:df:7d:22:
72:77:05:ab:ff:2c:d0:ac:4c:45:02:a8:4e:16:85:
6f:ab:2f:16:ba:53:2f:04:16:55:aa:11:88:8a:44:
ae:a3:41:56:98:a1:58:77:32:a6:82:09:7d:32:44:
a0:60:35:47:e2:40:8f:8f:3d:1f:08:f0:2f:83:a7:
fe:bd:8a:92:4d:26:53:ee:19:8f:97:b6:e0:d1:96:
32:b3:21:13:6d:49:ac:bf:5b:bd:40:9b:44:b8:fd:
15:06:7e:0c:ae:bc:2c:36:e1:3a:46:f8:aa:ff:5b:
a0:86:e6:5d:b2:ac:c8:9e:99:00:37:66:fe:4c:8a:
a2:1b:dc:ac:1b:f7:a7:37:c4:65:4e:43:56:ad:4d:
9d:e8:4d:ef:5c:01:72:84:81:dc:97:a5:fa:00:62:
cd:17:4f:53:fb:1e:01:e9:75:bd:da:38:ff:b0:e9:
dc:6c:8b:a4:41:9e:55:c3:38:c1:f4:66:af:90:45:
ca:21:ec:d7:1d:68:52:da:6d:27:18:9c:08:bc:09:
e5:4c:40:8a:c8:b1:fb:03:fc:d9:9d:d4:83:0b:f0:
ff:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3B:04:3A:14:43:17:AD:56:27:85:31:44:93:CC:1A:78:D4:84:D7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5zsEOhRDF61WJ4UxRJPMGnjUhNc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.100.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:52:13:11:d6:14:bc:49:dc:03:61:e3:7f:30:47:46:52:77:
1d:da:4c:8d:2a:2b:49:2c:47:1a:ba:ef:4c:90:9a:6c:f8:f7:
9b:d1:37:a5:2d:d9:0b:c7:e9:65:13:f5:37:58:02:01:57:ea:
67:c4:e2:15:2a:9f:c3:1f:eb:11:36:15:6b:e5:c6:b8:29:ab:
b3:1b:a8:f2:cb:96:62:c0:50:ba:6f:a6:5c:09:3b:38:a2:f8:
36:20:fd:3a:20:99:40:34:0a:72:44:43:74:c7:a4:ea:72:61:
c8:94:d6:d6:a8:3e:f8:c4:55:33:c4:a7:3e:33:f1:16:3f:40:
29:ef:c1:2a:c2:24:36:03:a3:f5:78:47:1e:86:91:50:a1:c0:
d8:9d:ca:17:16:bf:cc:f6:0f:a4:76:8c:4b:39:3d:f1:ef:5e:
9c:5d:7d:53:cf:e0:5a:19:03:76:d1:39:7e:d3:1f:40:05:39:
59:6e:33:39:b7:b3:3a:06:8a:3b:9b:b3:0c:6a:e0:28:ac:3a:
06:ca:dc:06:73:93:c8:16:67:19:3a:75:58:f3:00:0c:7c:92:
f7:ce:b8:56:84:68:4e:46:45:b8:e4:f7:d0:d6:b3:d6:03:1b:
78:14:ad:45:5d:3f:67:41:f7:38:c2:d2:54:bd:a6:3f:1b:6a:
03:29:04:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:24 2024 by rpki-client on console-ams.rpki-client.org