Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CzlnPUBH_S4ZFXJ5YZzHIqqGHAQ.roa
File: CzlnPUBH_S4ZFXJ5YZzHIqqGHAQ.roa (raw, json)
Hash identifier: n4VkAYyUIYfxgcj+kpy+3EjWavDBcVUAssduVYvhXRU=
Subject key identifier: 0B:39:67:3D:40:47:FD:2E:19:15:72:79:61:9C:C7:22:AA:86:1C:04
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C13
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CzlnPUBH_S4ZFXJ5YZzHIqqGHAQ.roa
Signing time: Wed 29 Sep 2021 02:47:20 +0000
ROA not before: Wed 29 Sep 2021 02:47:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7187 (0x1c13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0B39673D4047FD2E19157279619CC722AA861C04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:1b:6c:81:17:fe:a0:af:ad:66:99:8e:28:
19:85:b9:ac:2e:d8:fe:83:98:a3:fa:32:0d:cc:5c:
58:c0:7a:35:31:cd:e2:84:94:eb:93:df:f5:0c:6f:
b8:dc:72:f4:29:31:6a:0f:f4:b9:a7:e8:33:6a:ea:
9c:6f:10:38:22:24:de:05:2c:7c:4d:7c:06:4a:e7:
50:e9:76:95:cb:3e:0b:b0:d8:28:26:13:f5:b6:2e:
e0:8a:1e:83:14:db:3f:a6:31:51:51:4c:00:fc:91:
c9:3d:ea:42:73:6f:4f:e0:35:09:49:0a:ef:08:0a:
61:50:cd:10:17:27:a4:fe:39:34:47:e1:9f:46:d8:
bf:4c:e9:32:61:9a:c5:3e:fb:37:99:39:68:43:eb:
43:7e:77:92:7e:f8:ba:96:6d:dc:f9:73:6d:94:3d:
83:04:46:1c:5f:f2:4f:6d:01:d1:f1:ba:a9:3f:91:
48:69:20:11:55:8b:46:4c:f2:69:af:27:b3:26:32:
f7:c7:a5:ba:9e:33:42:f7:1e:c6:ab:97:25:55:08:
89:43:db:da:b5:80:13:50:b4:23:e3:d8:26:17:61:
a7:b2:be:96:2d:6e:7a:29:81:05:f4:99:b1:95:d5:
8f:8c:21:55:73:92:65:17:eb:bb:92:6d:55:44:34:
66:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:39:67:3D:40:47:FD:2E:19:15:72:79:61:9C:C7:22:AA:86:1C:04
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CzlnPUBH_S4ZFXJ5YZzHIqqGHAQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.200.0/22
Signature Algorithm: sha256WithRSAEncryption
42:4e:16:ad:19:db:69:0f:64:88:be:b7:57:91:29:bc:ea:78:
e3:a4:84:99:79:80:73:70:1f:ce:a2:9d:db:e7:78:08:ab:03:
eb:d5:d6:c3:b6:5a:d3:f3:77:68:2d:48:76:cd:5e:5b:d3:c8:
8c:b9:e2:f5:16:b5:e3:85:32:7e:d4:68:9b:cc:b7:ea:de:52:
9f:9b:dd:5d:a1:af:78:25:5a:66:b0:95:8e:16:63:bd:b0:ea:
02:54:2c:55:18:a2:a0:c2:48:c4:a6:ef:4b:6a:98:4e:53:fb:
5d:22:53:66:5a:f4:5e:c0:e4:e0:8b:e1:79:48:8c:1c:a7:e1:
aa:2b:c9:7a:5a:08:23:bf:26:9e:ba:b8:f5:a2:f4:f8:64:89:
9a:0c:a2:54:b6:59:03:63:39:c7:49:f7:4d:22:8e:d4:b2:b5:
b0:a6:be:42:fb:2c:fe:6f:50:2e:e7:1f:81:6f:75:7f:cb:4f:
4f:4b:42:1f:71:aa:02:4e:eb:fc:e8:1e:ca:ca:96:7e:24:f7:
c9:62:38:1f:48:9c:1c:61:5c:e0:e8:22:76:27:05:14:70:dd:
df:43:96:6b:92:85:0b:da:85:fb:64:89:42:6b:ae:1d:92:78:
d1:1f:a8:47:00:9c:93:2a:fe:01:be:5e:42:9a:65:6b:7e:43:
3b:f3:db:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org