Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CBZkOZ5xF3qYP2w9HFVDTbxTQlc.roa
File: CBZkOZ5xF3qYP2w9HFVDTbxTQlc.roa (raw, json)
Hash identifier: PD6hOMn+bm8zk2AJPg+8vumYdvCeXElb77MrJVl9td4=
Subject key identifier: 08:16:64:39:9E:71:17:7A:98:3F:6C:3D:1C:55:43:4D:BC:53:42:57
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1743
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CBZkOZ5xF3qYP2w9HFVDTbxTQlc.roa
Signing time: Sun 07 Feb 2021 12:17:54 +0000
ROA not before: Sun 07 Feb 2021 12:17:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5955 (0x1743)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:17:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=081664399E71177A983F6C3D1C55434DBC534257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3e:73:b7:dd:f6:04:64:ac:30:9d:ad:8a:41:
44:68:5b:9b:24:53:a3:71:63:ae:92:8b:1d:6e:bb:
0c:88:2c:2c:06:e0:ca:a0:cf:6a:27:22:c5:c4:d3:
b8:42:9e:e6:2e:4b:fe:7d:21:dd:39:7c:6c:5f:30:
40:e6:40:40:a0:45:2f:d5:c4:79:3d:6d:61:d0:93:
b1:7f:5e:44:89:81:c4:35:38:35:5f:44:52:72:78:
0a:78:27:4b:2e:47:64:14:bc:3d:93:e8:66:3f:a9:
7b:bb:40:0b:6f:d2:92:ec:cd:a1:8d:1a:f0:00:2f:
9a:67:3b:e3:11:b9:39:2f:0e:fe:ad:54:07:e9:9f:
b8:9b:66:2e:48:c4:52:b2:93:50:c5:a4:1f:c7:82:
14:4e:93:cb:a4:8a:16:ee:c0:51:88:67:ec:5e:4d:
7c:4e:7a:7b:b2:f0:fa:de:0d:84:2f:1c:94:f2:c7:
b7:2c:03:7a:c8:8b:66:2e:11:3c:96:fa:4b:1b:df:
a2:4b:13:d0:de:7f:f4:2e:a5:f7:94:46:8d:72:cf:
4b:3a:34:ed:c4:2d:a2:d1:29:8a:6d:61:aa:49:08:
c7:84:14:5c:41:c3:4e:08:50:a1:c2:51:08:14:44:
26:f4:e5:f6:db:7e:ff:87:e9:8f:11:b2:18:65:30:
d4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:16:64:39:9E:71:17:7A:98:3F:6C:3D:1C:55:43:4D:BC:53:42:57
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CBZkOZ5xF3qYP2w9HFVDTbxTQlc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.0.0/22
Signature Algorithm: sha256WithRSAEncryption
31:d6:3e:60:8e:e7:de:60:1a:db:86:ec:db:cf:6e:94:b9:f1:
9d:f6:b4:ea:c4:0b:50:5c:73:07:a4:da:34:94:ee:4c:4f:34:
dc:55:de:94:df:72:d4:2e:14:31:03:97:2c:8a:dc:ea:29:f9:
6a:63:07:28:09:c8:95:ee:bc:da:35:82:26:c0:0b:eb:b6:fe:
95:b1:09:ba:e5:72:cc:e7:2f:e0:ba:e2:88:2f:21:34:ed:17:
1b:ce:ad:02:84:a6:b1:44:73:7a:f5:32:38:f1:77:4b:81:b5:
5a:66:e4:9c:e7:9f:18:39:7f:f8:fd:5a:2b:e1:20:c1:f7:3b:
d9:ed:3c:98:46:7c:1e:d5:6b:26:35:1b:7b:d0:b5:c9:d8:4a:
23:de:ea:fb:b1:09:7f:d0:60:56:1b:f5:be:39:ce:40:e6:08:
b4:52:50:58:a8:c2:b3:9a:a2:36:10:de:cc:d7:dd:be:74:b8:
12:59:72:83:e0:d7:47:c1:6c:65:e1:3e:85:3a:b8:f6:06:4a:
c4:b8:b6:50:52:d5:c2:71:3a:28:34:4f:46:93:ef:45:8c:4f:
f2:0a:ac:5c:be:fc:9a:36:b0:17:f8:3a:c7:3d:aa:26:6b:56:
e3:8c:d4:18:e1:08:18:35:dd:0d:a9:d1:fc:5f:ba:2e:50:16:
32:ca:97:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org