Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A_9ucjW4-TdhY5Ftfwz5k5bW4mk.roa
File: A_9ucjW4-TdhY5Ftfwz5k5bW4mk.roa (raw, json)
Hash identifier: JFmjQOCcnLb6tlZDD08IXwTUf0cnMXqjbUbTrd0DSmk=
Subject key identifier: 03:FF:6E:72:35:B8:F9:37:61:63:91:6D:7F:0C:F9:93:96:D6:E2:69
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2408
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A_9ucjW4-TdhY5Ftfwz5k5bW4mk.roa
Signing time: Tue 06 Jun 2023 08:10:15 +0000
ROA not before: Tue 06 Jun 2023 08:10:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.0.0/15 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9224 (0x2408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jun 6 08:10:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=03FF6E7235B8F9376163916D7F0CF99396D6E269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c4:e6:0f:e2:d9:ee:2a:b5:9f:75:25:67:42:
a2:72:c8:d4:2f:f3:d6:51:b0:0c:4c:8d:1c:82:82:
8b:f5:71:c7:0c:ee:82:ec:eb:02:40:1e:ea:07:b5:
d1:1e:e5:82:63:51:48:81:27:3c:f3:95:3f:f9:d9:
b5:70:8d:0c:15:5a:6f:de:29:f3:8f:56:19:1d:6b:
28:f0:e1:22:c9:29:18:28:5c:55:8d:11:b9:7a:b6:
11:53:6c:7b:2d:33:5c:9f:07:5b:e3:ce:c3:3a:6a:
a0:28:00:76:41:1c:21:84:42:f8:44:b7:bb:a9:4d:
38:18:e0:b1:45:3c:27:0b:69:ea:e0:d2:65:72:6c:
c3:c4:c5:a5:94:9a:e2:b7:e6:77:41:a2:ff:cc:db:
de:dc:bf:66:89:37:21:87:84:bb:28:fd:47:1a:58:
96:e1:45:ae:c9:5e:58:10:25:21:34:81:53:72:32:
d7:01:2d:54:64:78:74:a5:f4:82:a6:9a:ed:c4:63:
d6:d0:ed:2a:0e:a7:5d:5d:94:12:32:5a:ec:35:f7:
7b:86:99:1e:ed:d1:fd:89:69:61:55:3b:c7:84:fc:
02:77:e6:2f:dd:b3:da:9c:4b:47:41:23:05:36:1d:
bd:a8:b6:3b:42:92:fc:7b:a3:b0:35:78:39:a7:cf:
f9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:FF:6E:72:35:B8:F9:37:61:63:91:6D:7F:0C:F9:93:96:D6:E2:69
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A_9ucjW4-TdhY5Ftfwz5k5bW4mk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4a:8f:c6:dd:76:04:1f:64:12:5c:63:02:bc:1b:6c:7f:6f:82:
ab:6d:82:db:fb:bd:b3:2c:26:ce:ab:30:ce:da:96:dd:09:a7:
de:56:bf:e0:9c:d8:07:5f:a9:7f:f3:85:1e:de:ae:08:6c:28:
a6:ea:20:6c:69:0d:eb:1f:d3:81:49:e1:ac:68:27:4d:09:cb:
e9:93:a6:a9:69:79:36:8d:03:f1:b1:d1:67:54:7d:4e:5f:cc:
c0:ff:7f:98:76:3e:f1:2c:d4:9a:f8:2d:f5:8a:77:e4:47:27:
ae:b3:63:dc:52:7d:85:8f:10:a3:2d:77:19:b7:1a:39:f9:48:
6c:98:40:47:1a:e6:0b:bb:61:fd:70:6b:4c:07:e5:19:61:f9:
5c:d4:3f:a4:e4:93:f9:9d:68:c9:b5:6f:76:6e:a3:47:3c:14:
85:e3:89:dd:4f:da:78:e0:c2:4a:c6:90:32:e5:53:13:cc:4b:
e5:76:84:06:88:b8:ea:8d:60:31:49:39:ea:77:e2:a3:57:27:
50:3e:21:b6:a1:e5:25:3c:ce:a4:20:f2:68:f9:86:a0:66:a9:
b0:53:ed:71:59:8b:98:af:da:f8:ea:28:b4:da:16:0d:42:6e:
6c:63:0b:56:db:4c:90:10:cf:63:13:73:71:ac:66:99:ea:d8:
45:24:dc:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org