Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7oO24IfgFEwkv2UQrRKm9FUDfl4.roa
File: 7oO24IfgFEwkv2UQrRKm9FUDfl4.roa (raw, json)
Hash identifier: DGasZ2xX+o6qoPsh6evv7m8yIQmsw5jqFfXO3l+8WF8=
Subject key identifier: EE:83:B6:E0:87:E0:14:4C:24:BF:65:10:AD:12:A6:F4:55:03:7E:5E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BCE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7oO24IfgFEwkv2UQrRKm9FUDfl4.roa
Signing time: Wed 29 Sep 2021 02:47:01 +0000
ROA not before: Wed 29 Sep 2021 02:47:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7118 (0x1bce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EE83B6E087E0144C24BF6510AD12A6F455037E5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d1:76:5d:b0:71:88:18:6f:56:b3:4f:c7:e3:
4b:a9:13:25:df:f0:06:62:82:ab:a9:49:86:43:ac:
c7:1a:7d:94:22:2f:3c:21:91:30:e1:20:5a:02:16:
85:84:01:7c:1b:63:a2:aa:a9:d0:c7:01:d2:39:33:
61:c4:d0:28:7d:1d:a6:e1:ca:ce:1f:20:53:05:d3:
94:fe:46:e2:ea:dd:3b:44:dc:03:ca:60:38:7f:bd:
b7:88:e9:d5:13:09:9f:92:64:4d:3b:58:30:3b:12:
89:f6:11:b8:93:12:d2:b6:5d:91:ee:d0:b6:59:22:
bd:97:b9:29:db:b6:ad:dd:3e:f6:b3:97:df:3d:85:
31:c0:53:35:23:41:c1:11:76:c1:97:ef:2f:92:3b:
a6:4d:3c:37:a6:52:2e:e8:7d:54:47:d7:3c:45:1d:
be:06:07:58:14:e5:bf:3a:f3:c0:e0:1d:a4:f5:f9:
ea:f7:f3:c8:32:00:5e:f7:56:4f:9d:48:80:da:e7:
78:11:ac:df:9c:f9:13:2e:f2:c2:41:f3:77:bc:23:
21:cb:ba:5c:31:10:4a:de:7b:2c:e1:0c:ec:70:47:
14:98:ac:70:5b:15:28:d1:5c:5f:b3:c5:f4:fa:36:
42:e1:d5:38:22:61:7f:d6:78:52:7c:fd:01:d1:12:
f9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:83:B6:E0:87:E0:14:4C:24:BF:65:10:AD:12:A6:F4:55:03:7E:5E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7oO24IfgFEwkv2UQrRKm9FUDfl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.148.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:81:19:2c:40:22:7d:d7:20:fd:de:d2:64:b1:5b:9c:dc:7a:
6d:ca:81:1c:a8:83:bb:e8:f4:11:ad:13:54:97:e3:8a:d1:b7:
0b:76:8c:10:90:32:0b:e0:7a:43:4a:15:46:e9:89:28:e1:a4:
d9:6a:13:a5:6b:61:77:50:38:6f:6b:85:e3:66:e5:22:32:7b:
0d:9c:4d:b6:d0:0d:89:58:5e:3e:57:bd:f6:99:c1:d7:3a:27:
44:00:ad:2b:31:b5:c9:42:b0:a6:e7:38:19:61:c6:3e:bc:e5:
59:32:1d:98:87:9e:3d:96:33:ad:0f:d4:67:d8:6e:cb:d2:93:
15:24:b6:65:be:15:2f:6c:88:3d:2a:bb:d7:f3:ce:e2:9e:33:
ef:36:da:d2:f1:c4:ee:68:05:76:ca:cc:1c:2f:bc:6c:b6:8c:
38:a7:43:5f:c4:41:07:13:fe:8e:1e:0d:34:32:6e:69:22:4c:
ba:6d:f0:32:24:8b:43:bb:cd:35:93:9a:bb:35:59:e3:b0:89:
ba:91:dc:35:9b:47:81:80:b1:f5:1d:d4:ff:9b:05:be:9a:9b:
2f:d1:f7:e2:d5:a0:d1:67:8f:73:dc:76:f5:03:7a:20:61:e7:
29:2e:47:19:c0:3e:d1:04:8c:16:bd:ca:a4:b7:db:ce:6e:3a:
18:d2:9a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:10 2023 by rpki-client on console-ams.rpki-client.org