Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CyHNq9khiyfQFXhReIt7BRqAIho.roa
File: CyHNq9khiyfQFXhReIt7BRqAIho.roa (raw, json)
Hash identifier: j6+lUtclp3KqDDWfjOKv1ggI9aLCTSZmaoG8qBR7bKY=
Subject key identifier: 0B:21:CD:AB:D9:21:8B:27:D0:15:78:51:78:8B:7B:05:1A:80:22:1A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C9B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CyHNq9khiyfQFXhReIt7BRqAIho.roa
Signing time: Wed 29 Sep 2021 02:47:58 +0000
ROA not before: Wed 29 Sep 2021 02:47:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7323 (0x1c9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0B21CDABD9218B27D0157851788B7B051A80221A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:63:a2:36:9f:1f:b8:dd:a8:91:b3:6c:35:6a:
8b:64:29:3b:9f:81:6f:1c:a7:fd:83:d0:a2:55:49:
44:75:5b:98:ff:37:51:2d:ad:f1:07:5f:66:40:45:
26:68:a3:a9:78:3b:42:7f:6b:5b:62:59:48:75:72:
1d:1f:43:2a:43:1f:17:79:4e:f3:a7:b6:df:ad:d1:
90:9d:89:40:27:bc:96:87:88:d8:87:db:ba:f2:23:
7d:97:a0:34:4a:03:30:11:2a:e9:41:b2:19:60:91:
1d:c7:60:ed:4d:85:e4:57:5e:01:d3:9f:6b:cd:72:
7c:aa:91:f6:e6:08:7e:02:15:60:08:a1:9e:ab:a5:
e9:52:c4:b6:56:ea:84:cc:89:af:30:13:3e:0f:5f:
07:12:55:9e:03:95:0b:5e:a6:64:dd:e4:5a:f5:17:
96:d0:89:51:a9:1c:37:e5:96:3e:8f:d9:4d:1a:88:
20:30:91:85:8c:e4:c9:04:7d:71:8d:cb:7d:1c:44:
0d:fa:e1:88:ca:9b:fe:c1:ae:45:ba:08:68:d1:9c:
4d:1c:8f:8e:70:ca:d8:dd:f6:7b:a6:69:aa:74:92:
c6:41:5c:ab:8a:ca:9d:e5:fb:66:1d:d5:40:a7:3a:
a8:ce:61:1d:27:4a:75:4b:14:b9:fe:2c:bc:6a:ce:
29:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:21:CD:AB:D9:21:8B:27:D0:15:78:51:78:8B:7B:05:1A:80:22:1A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CyHNq9khiyfQFXhReIt7BRqAIho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:63:48:e3:48:78:e8:39:ca:63:bd:a0:66:b9:50:a7:e8:23:
b6:8e:b3:b1:85:7e:e1:de:57:e0:fa:25:50:ae:f6:87:80:e4:
5c:4e:9d:a5:45:7b:be:3c:f6:61:49:fd:87:44:75:0e:46:1f:
7a:1d:a8:96:6d:38:40:d4:87:5d:d4:ce:a8:fc:5f:a2:4c:2b:
c0:4f:7a:be:0e:7e:89:c8:61:87:ea:cc:7d:05:b3:7b:42:39:
1e:6b:95:b9:e9:af:3a:30:b4:ca:23:db:ac:c5:be:26:ff:f6:
c9:5b:4c:71:dc:ce:51:98:ce:a2:6f:11:8f:fa:cc:09:84:88:
45:b2:48:a5:bf:80:17:85:27:88:95:ce:c9:19:e6:f7:80:6f:
71:7a:c5:41:f9:30:f6:25:e6:ca:0d:89:66:90:79:e1:fa:82:
3a:23:bb:4e:5b:b6:c6:c1:3b:50:9b:fc:eb:1b:ed:12:f7:51:
34:04:09:17:3b:16:69:91:bb:ac:b6:df:4d:08:dc:3e:0a:d8:
6e:27:a4:f7:33:f2:7b:fa:72:7d:65:aa:c9:b9:39:1d:5c:0a:
76:0b:12:4a:f8:2f:12:3a:b6:8f:c7:8a:a3:04:6d:75:ae:5b:
d0:a8:db:c5:c2:5e:57:37:9c:ac:1d:cb:93:93:59:c8:f4:fa:
83:22:7b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org