Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7yvSc81R8qHyoeN9O6jV7TJ0LxQ.roa
File: 7yvSc81R8qHyoeN9O6jV7TJ0LxQ.roa (raw, json)
Hash identifier: 9OuNxnASoufjn98Ug07AdAzCzEl0KXiyHlBKTqxKnQw=
Subject key identifier: EF:2B:D2:73:CD:51:F2:A1:F2:A1:E3:7D:3B:A8:D5:ED:32:74:2F:14
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E48
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7yvSc81R8qHyoeN9O6jV7TJ0LxQ.roa
Signing time: Tue 03 May 2022 01:18:31 +0000
ROA not before: Tue 03 May 2022 01:18:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7752 (0x1e48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 3 01:18:31 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EF2BD273CD51F2A1F2A1E37D3BA8D5ED32742F14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:16:db:f0:f7:29:b3:1b:40:49:9b:09:8b:4b:
02:61:b1:29:d2:73:cf:bc:99:68:20:a9:f0:25:ce:
06:a4:eb:b5:11:bf:ea:35:39:89:6e:75:de:68:6e:
47:ba:f2:41:15:53:23:c7:06:de:49:0f:b3:ae:90:
20:51:9e:79:56:63:25:f1:1e:d3:eb:d7:06:d1:2b:
a2:e2:f9:a8:b7:ea:59:e5:4e:b6:be:62:d7:b6:02:
40:cc:50:72:a2:2d:35:ea:f6:a4:c6:64:b2:36:31:
67:90:48:b5:90:49:23:cd:43:0c:53:ea:f5:11:06:
62:57:42:45:be:84:eb:c6:b3:fd:0a:ee:2a:07:2b:
63:e0:c9:9c:c1:3d:55:41:e1:f9:fc:ed:9a:63:5d:
fe:fe:56:22:5c:bf:36:88:86:04:d6:d2:24:4b:bb:
68:23:83:6b:dc:5e:7b:ad:ab:d7:57:48:cf:5c:ee:
58:36:bf:65:52:18:65:3d:0c:ba:6c:42:78:5a:3f:
5e:d1:ba:2f:f0:d1:0d:85:31:48:6a:6d:8c:0b:f2:
c7:be:34:11:ce:5c:5a:a3:88:5b:07:44:b5:b5:e8:
5d:0c:54:60:92:ce:51:2b:f5:8f:0d:2c:91:4a:25:
e5:a5:d9:04:4c:0c:c5:52:45:90:fa:48:50:c2:e5:
34:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2B:D2:73:CD:51:F2:A1:F2:A1:E3:7D:3B:A8:D5:ED:32:74:2F:14
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7yvSc81R8qHyoeN9O6jV7TJ0LxQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.64.0/21
Signature Algorithm: sha256WithRSAEncryption
39:e6:4a:2c:3a:07:56:c3:6e:a1:dd:78:a6:e7:6c:9a:b5:41:
f0:f1:b1:06:16:4d:e1:97:4a:a5:fa:a1:c4:b5:fc:6c:f0:09:
b7:4f:60:5f:5f:36:cb:e3:dd:86:ea:9d:18:58:e1:34:2e:5a:
d5:b6:9a:44:4d:6b:81:37:da:98:3b:9c:4f:d0:86:26:b8:8b:
da:57:15:73:2f:c5:3f:99:36:d0:21:50:b2:17:ed:1b:13:da:
28:36:0d:de:75:2a:2b:a2:ed:c9:63:1a:f7:06:f7:c3:e4:cf:
b2:fc:0f:a2:ff:3f:05:75:af:ab:a7:b4:61:2d:89:e6:a9:53:
8e:e0:00:18:d8:92:6f:21:a1:d7:a4:f1:2c:68:8c:c0:bd:37:
f1:29:6e:d5:00:80:ea:19:8c:31:ff:4d:34:ed:d0:f2:8d:ef:
cd:50:85:5f:7d:6b:36:83:65:9c:38:3e:06:ba:6b:8a:4f:22:
b2:f0:15:4a:4a:c4:7b:b7:cc:e3:88:3b:b6:98:71:67:8c:fc:
4e:53:29:9d:28:67:ca:f5:60:54:6a:d6:5b:0c:1d:e8:cd:a6:
fe:81:92:c4:06:18:bc:0e:63:f6:3e:bb:1a:93:8b:a1:dd:2f:
d0:eb:b3:5d:ad:18:cd:7d:9a:2a:b1:0a:a4:6f:7f:1f:28:f3:
af:a7:32:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:10 2023 by rpki-client on console-ams.rpki-client.org