Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AsXJ-kj5s326wpi3w61_wUZp7a0.roa
File: AsXJ-kj5s326wpi3w61_wUZp7a0.roa (raw, json)
Hash identifier: 0diLdaWn5Z4j+qnu1PfoTwalcyEc+f5wPs+B05QBf5E=
Subject key identifier: 02:C5:C9:FA:48:F9:B3:7D:BA:C2:98:B7:C3:AD:7F:C1:46:69:ED:AD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2247
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AsXJ-kj5s326wpi3w61_wUZp7a0.roa
Signing time: Fri 25 Nov 2022 04:40:59 +0000
ROA not before: Fri 25 Nov 2022 04:40:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8775 (0x2247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=02C5C9FA48F9B37DBAC298B7C3AD7FC14669EDAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:96:84:c4:e6:34:a7:02:cf:5f:14:a6:81:e6:
4a:46:ac:da:1c:48:9c:9a:71:22:14:25:9d:8d:b0:
0d:9d:a1:bd:b3:94:67:80:e6:94:32:66:5f:99:2e:
2c:a1:e6:7e:cd:9a:0e:c3:56:9c:c9:55:7c:40:47:
49:3d:8c:06:93:6f:04:e0:cc:29:f5:81:62:ad:19:
27:6b:1a:d8:69:5e:38:da:f3:1c:9d:63:f5:ec:18:
f8:56:b0:6d:f5:80:97:bf:35:da:cf:4e:27:ef:f2:
ff:f6:88:35:2c:75:3a:d1:5d:b0:a0:eb:a8:7c:16:
f8:d6:fe:6d:5e:64:97:0f:74:ae:f2:1f:61:2c:5e:
01:41:1d:b0:87:48:77:30:7f:02:54:d1:42:6e:fb:
99:f4:e0:e8:57:40:33:bf:27:cb:7a:88:15:4a:f3:
98:fe:31:d5:47:92:e9:23:5f:0f:b6:39:34:4d:d2:
a0:7a:e9:27:4c:a5:26:90:fb:b8:57:51:75:5c:f7:
76:e4:bd:21:cc:4c:a3:b6:f3:16:62:76:98:db:8e:
2a:a9:72:95:4b:42:bf:1f:7c:ca:c4:6b:a5:25:67:
46:f2:18:92:62:3f:46:e7:0c:1b:2c:d9:93:eb:03:
ba:f0:ee:57:13:8a:40:12:0b:57:15:69:08:e3:78:
59:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:C5:C9:FA:48:F9:B3:7D:BA:C2:98:B7:C3:AD:7F:C1:46:69:ED:AD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AsXJ-kj5s326wpi3w61_wUZp7a0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.0.0/21
Signature Algorithm: sha256WithRSAEncryption
40:b4:d3:dd:4d:99:6f:1b:f0:b4:b1:0a:c0:7f:f4:b2:48:0b:
19:af:38:4b:8c:07:be:93:46:2f:ff:e0:ab:b6:7d:7e:98:aa:
d6:87:4c:c7:a4:bb:97:1f:63:2d:74:19:93:0a:66:3a:c2:12:
fe:a3:03:03:94:d5:6d:f6:d4:e1:1b:ed:95:47:e9:63:98:21:
f2:df:9f:59:83:d2:d4:24:60:c9:b9:10:d2:93:99:fa:b8:a1:
a6:b7:6e:4b:ef:1e:2d:d8:c2:6a:ed:eb:6d:3e:e7:04:5b:5e:
52:c5:e4:6b:53:10:ba:8f:e1:64:6a:fa:02:16:d0:63:a7:29:
78:5e:61:df:b3:04:c4:c0:b9:86:96:96:b1:9f:7c:d6:ee:52:
b2:65:b6:de:b8:c5:d1:20:d4:1b:9e:fd:89:56:e4:45:41:5d:
2b:fb:26:46:21:0c:38:92:00:13:d3:c7:4e:0a:24:61:6e:cd:
2c:e6:40:03:31:85:c3:4a:53:14:79:27:7f:62:d1:bd:9d:fe:
07:b1:02:2b:9f:92:c3:f7:1f:9c:7f:e2:cf:86:e3:11:5d:b9:
ae:05:c3:69:4c:37:5b:bb:d0:0f:f6:d7:2b:7f:9b:72:51:e0:
33:7b:f4:e5:03:2d:69:ac:b1:40:2c:81:7e:5f:03:5d:c8:66:
c9:b8:3c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org