Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BQLFx75Ug-Frmion3yvrcC8mUzc.roa
File: BQLFx75Ug-Frmion3yvrcC8mUzc.roa (raw, json)
Hash identifier: 2yxFXXhPy0ZU3Uj0xCAeMbGn3o7uiB8/7If6mlYf7Xg=
Subject key identifier: 05:02:C5:C7:BE:54:83:E1:6B:9A:2A:27:DF:2B:EB:70:2F:26:53:37
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16ED
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BQLFx75Ug-Frmion3yvrcC8mUzc.roa
Signing time: Sun 07 Feb 2021 12:15:23 +0000
ROA not before: Sun 07 Feb 2021 12:15:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5869 (0x16ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:15:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0502C5C7BE5483E16B9A2A27DF2BEB702F265337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4c:f4:bd:ad:9a:2c:a6:3a:ba:e7:77:24:a3:
fc:ec:a4:f5:cd:47:f5:0c:61:ce:5c:c1:07:e7:4c:
9d:7e:13:8d:90:3a:f2:b4:35:53:e3:17:b8:8f:96:
ab:b7:54:c5:20:50:b5:7a:ad:10:96:c0:be:cb:c3:
8d:53:63:96:2b:80:b2:85:7a:2d:33:eb:e8:76:7e:
db:57:32:6d:d6:b1:78:b8:c1:d5:bb:e4:f9:32:3b:
f3:d7:90:58:67:fd:86:e5:0c:74:b3:65:2c:42:9f:
a5:a8:38:26:39:a5:ab:2d:ff:77:95:6e:90:55:bb:
2a:3a:68:35:1e:f6:55:90:10:3a:54:25:a5:cf:32:
90:fb:5d:fa:94:09:9b:04:eb:b4:68:58:ec:ad:97:
42:69:ef:c2:92:cc:ee:f4:ac:15:cb:45:1d:83:3c:
ce:2e:7e:5f:ad:37:c2:ce:da:e3:1d:3d:bd:74:5c:
1a:1a:0a:0c:62:54:f6:fb:53:56:5a:b1:2f:c1:45:
47:e1:68:53:ce:46:fb:49:56:0a:11:37:21:0e:7a:
e0:a4:ef:bc:a3:25:e9:f3:f9:ce:2c:7d:c0:81:87:
2e:c8:84:ee:be:ad:6c:fe:17:ad:65:01:50:ca:b7:
1f:48:47:34:4d:eb:7f:88:2d:df:75:a2:7f:a5:11:
31:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:02:C5:C7:BE:54:83:E1:6B:9A:2A:27:DF:2B:EB:70:2F:26:53:37
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BQLFx75Ug-Frmion3yvrcC8mUzc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.40.0/22
Signature Algorithm: sha256WithRSAEncryption
41:84:5e:b8:e6:dd:d2:94:64:98:b2:a3:ef:70:3b:7b:b3:a8:
f3:b3:9d:cf:c6:30:d7:50:a0:c9:7d:88:02:f0:39:3d:e2:29:
1b:34:be:b7:36:1d:36:aa:58:db:41:3b:ca:7b:8c:fc:e9:b4:
47:0c:91:fb:f3:76:f0:e6:bd:bd:5a:03:5a:63:56:22:d5:52:
fb:6f:0d:0e:b5:7b:34:c1:2c:d9:38:09:13:df:7d:5c:e7:6f:
e2:07:6a:e4:87:2c:41:3a:83:81:d1:b8:d5:4d:aa:e6:36:cb:
80:31:4c:4c:76:0a:e3:49:1a:75:3c:97:15:4a:1c:89:4f:11:
eb:61:15:71:8e:85:51:9d:0f:1d:07:1d:e3:b5:8f:9f:34:e9:
57:f2:da:fc:b5:ef:3b:b3:7f:42:b1:ee:e2:b2:31:83:10:e7:
d9:6e:ed:f6:97:eb:bb:a8:3a:fa:24:2b:e9:99:30:0a:d3:e9:
45:f8:e7:ed:da:74:de:88:f0:35:57:ea:3a:2f:d2:be:6c:ca:
f7:aa:66:b0:fe:fb:0f:90:07:29:fc:54:06:8c:12:06:ae:32:
5e:8b:01:b6:ed:f4:72:ec:fc:53:15:ae:9f:3f:7c:01:8c:3f:
b7:9e:4a:83:4c:bb:ad:ca:c2:dc:8b:a9:e3:02:e4:40:47:f6:
16:34:55:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org