Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7hmdZkBASbAVAXpFdseCkVpZI1A.roa
File: 7hmdZkBASbAVAXpFdseCkVpZI1A.roa (raw, json)
Hash identifier: xN8Ffw3X1lU3G2GRD/E+JDs6CaL679GdfxG8TqDYrIA=
Subject key identifier: EE:19:9D:66:40:40:49:B0:15:01:7A:45:76:C7:82:91:5A:59:23:50
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7hmdZkBASbAVAXpFdseCkVpZI1A.roa
Signing time: Thu 15 Sep 2022 02:45:50 +0000
ROA not before: Thu 15 Sep 2022 02:45:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EE199D66404049B015017A4576C782915A592350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8d:a5:8d:16:93:8d:31:70:29:6c:33:28:5f:
92:6c:4c:87:ff:66:8f:ad:02:c7:57:e4:a6:ca:d5:
e3:54:2b:dc:cc:f3:e0:85:ae:48:7b:43:18:02:cb:
ad:46:a7:14:98:5b:a1:dc:14:3e:db:b3:36:b7:54:
ed:e6:f4:99:76:ab:a1:9e:ae:f9:84:de:76:ab:45:
cc:3d:25:40:fb:0f:92:8c:0a:29:95:62:b3:bf:da:
bd:f9:d4:71:5d:ee:44:df:6a:b8:80:eb:18:69:48:
e2:fd:c4:f5:1e:9d:51:6c:5a:04:be:25:71:15:b0:
9f:e1:04:e0:83:92:20:2c:7c:19:02:7c:85:05:6f:
0e:2c:29:e4:ff:3d:89:e0:dd:4a:6e:6e:c4:d6:58:
0f:9a:54:64:46:74:d0:bd:4f:f1:50:fd:a3:20:36:
8b:89:03:c6:c6:b8:22:20:c1:d0:9d:15:fe:97:02:
55:e5:89:9d:cc:07:34:a1:97:dc:53:2c:af:31:af:
13:5b:b9:0e:59:d9:2b:38:64:2f:5a:4b:9c:6a:ad:
50:50:6c:77:f5:a3:0e:b0:9a:c0:87:3b:57:82:b7:
d1:dc:7d:fd:7c:d6:4c:30:56:be:8b:2d:3d:30:4a:
73:7d:68:64:b7:8c:55:36:a7:99:0b:f2:7a:ec:dc:
ad:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:19:9D:66:40:40:49:B0:15:01:7A:45:76:C7:82:91:5A:59:23:50
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7hmdZkBASbAVAXpFdseCkVpZI1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.0.0/22
Signature Algorithm: sha256WithRSAEncryption
33:07:73:ed:63:fb:53:d0:c5:2b:af:f6:be:68:cf:5b:ff:df:
c6:df:19:54:ad:72:fb:2a:74:97:f6:0e:5c:48:97:41:9c:75:
b2:2b:7e:06:1d:08:d6:c5:93:7e:ee:dc:c1:51:ec:83:03:dc:
d2:e2:97:dd:83:81:60:d9:2b:be:23:cb:d5:c8:47:cb:9c:93:
36:3b:81:70:74:25:47:9e:8d:b6:4d:66:45:17:33:1b:8c:c5:
fd:ab:fa:20:6d:26:a1:69:04:dd:ca:ae:1a:71:07:ff:c1:a6:
cd:32:a5:e8:25:f0:05:ab:e5:89:dc:1d:14:24:14:00:ef:72:
f4:1d:81:b3:5a:af:2b:d6:d3:ed:ac:f7:4a:f3:38:48:b9:32:
a5:4c:b2:7f:a7:f5:64:dc:4b:d3:2f:cf:d4:e6:c3:54:a0:97:
ff:3f:78:5e:aa:3e:db:27:05:d9:68:9d:94:d7:3f:c7:96:6e:
db:9d:5c:a3:be:5f:22:40:f6:ce:ea:96:18:29:f9:38:e1:bf:
5e:ee:e7:f3:80:12:6a:a9:d7:ad:03:fc:ec:fe:d3:9d:98:cc:
c5:ed:2d:15:c1:5c:6b:ca:66:f8:43:2e:e6:77:f0:7e:b3:ac:
81:36:07:6e:08:7c:a5:21:25:2f:fd:1d:63:05:49:fa:d9:e3:
82:47:6c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org