Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BgkSfgVaAh-fAI0FzH42jGo5zXY.roa
File: BgkSfgVaAh-fAI0FzH42jGo5zXY.roa (raw, json)
Hash identifier: y7lKr+yt35jacnWiH64w3MMYzV8BR0azq49RUgrbxmA=
Subject key identifier: 06:09:12:7E:05:5A:02:1F:9F:00:8D:05:CC:7E:36:8C:6A:39:CD:76
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F94
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BgkSfgVaAh-fAI0FzH42jGo5zXY.roa
Signing time: Thu 08 Sep 2022 10:09:43 +0000
ROA not before: Thu 08 Sep 2022 10:09:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.184.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8084 (0x1f94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 8 10:09:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0609127E055A021F9F008D05CC7E368C6A39CD76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1e:b4:12:39:b7:fb:9f:82:71:6f:6d:0d:e9:
de:25:d2:c3:59:b1:db:e2:0f:00:d4:db:47:85:94:
00:52:54:bc:48:7e:aa:5d:2b:c1:db:f0:ee:2d:31:
13:d9:f1:c8:de:d8:0a:d2:ec:06:f5:1b:aa:3f:6d:
9a:9f:4a:83:66:c9:85:60:42:c5:49:36:88:a8:e2:
f8:c4:f6:15:9c:24:74:6d:3e:fa:ce:d9:05:e1:ba:
20:bc:26:f2:77:5c:8f:c7:96:09:5f:10:22:29:c3:
ac:bf:96:8a:d9:45:51:7a:fe:48:b0:38:9f:8e:35:
88:73:c2:3d:a6:dd:64:c8:33:4a:e7:33:22:e9:8a:
ed:c7:3e:48:7b:d8:6f:31:bd:0c:bd:a4:11:57:b6:
c6:4c:8e:ed:82:68:5b:0c:77:b7:5a:bf:78:72:03:
ee:2b:ff:00:b3:fc:84:1c:ec:e7:2f:f2:32:8d:26:
80:de:48:a6:ba:1c:75:7e:2a:fb:70:79:1b:e3:f2:
35:3a:7a:7c:b8:74:9f:89:30:4a:70:3e:ee:15:5f:
36:3c:0d:0c:35:56:b5:4e:59:62:59:29:c4:c7:1e:
98:5d:7f:af:32:d1:21:f0:58:75:84:ff:16:a1:26:
e2:3d:e0:59:4b:72:99:7e:fe:ce:b5:e4:f8:22:56:
8e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:09:12:7E:05:5A:02:1F:9F:00:8D:05:CC:7E:36:8C:6A:39:CD:76
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BgkSfgVaAh-fAI0FzH42jGo5zXY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.184.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:a6:22:3b:b1:32:a9:e8:cf:c1:ef:e0:c9:80:2b:b9:72:c4:
27:21:64:0c:4c:5b:bc:7a:4b:6a:b8:45:34:20:3c:ca:32:30:
b6:75:cb:82:d8:f5:43:4d:4b:ce:af:12:7b:7e:6a:c4:10:0f:
20:32:e9:dd:99:aa:dd:ee:c2:1f:48:a8:4a:de:7f:a9:93:86:
50:a0:6f:00:b4:95:c2:e3:ef:9f:a6:1f:00:65:c1:c8:9c:e9:
f4:9d:65:0b:c3:4e:e8:fd:af:c4:47:2e:89:d6:22:23:ed:29:
64:cb:6c:85:89:9c:46:64:d2:14:ec:25:cf:e1:8f:0d:4e:88:
f1:65:71:73:10:6d:cd:7b:13:92:c1:fb:c5:9c:ea:a8:e8:9a:
f7:b4:76:62:47:fc:d8:72:08:6c:be:ec:c0:f1:18:00:36:44:
13:cf:7a:38:c2:e6:dc:e5:4e:a7:72:d8:1b:5b:11:d0:74:e9:
e7:d9:15:f1:7d:50:0c:b0:12:22:16:b4:61:4a:11:35:eb:87:
d1:14:98:73:7f:26:88:05:c7:9a:8d:c6:e3:e8:f0:ed:72:4d:
55:b9:dd:c0:7e:21:44:a4:e6:4a:e8:5d:d8:00:92:b7:af:d9:
ce:9a:83:92:6d:46:fe:b2:26:b8:a6:5c:8f:ad:87:7d:4c:c8:
b0:be:98:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org