Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D24NlLy-9zjkJNoKyUOpnjmxSlo.roa
File: D24NlLy-9zjkJNoKyUOpnjmxSlo.roa (raw, json)
Hash identifier: XhBvD56CBer7czuG/Khmua4TL0NIC+Y+eRK/x1+kWc4=
Subject key identifier: 0F:6E:0D:94:BC:BE:F7:38:E4:24:DA:0A:C9:43:A9:9E:39:B1:4A:5A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CFE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D24NlLy-9zjkJNoKyUOpnjmxSlo.roa
Signing time: Wed 29 Sep 2021 02:48:28 +0000
ROA not before: Wed 29 Sep 2021 02:48:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7422 (0x1cfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0F6E0D94BCBEF738E424DA0AC943A99E39B14A5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9d:a7:ec:0f:17:3c:b7:40:33:3a:74:74:38:
d8:11:70:cb:42:14:e7:1d:c9:cc:aa:3f:0b:29:e8:
5a:20:eb:c2:2d:da:83:3e:50:87:37:c8:bf:1d:9f:
19:67:b6:fc:ab:a2:59:c6:40:61:f1:40:6b:f3:25:
7b:9f:a6:2d:c3:fa:2f:74:e8:f3:68:a2:e3:19:23:
0d:ed:d8:bc:92:2d:f7:d4:b6:73:5a:10:cc:2c:7e:
40:49:ca:f0:4c:89:24:9d:f4:91:e1:76:a3:83:c8:
8c:c0:94:e8:d3:c4:48:e2:95:e7:f0:fd:5a:96:79:
bd:ed:cc:a8:ae:33:a8:6f:f9:77:29:80:bf:18:de:
c7:6f:67:b8:3c:a8:9e:ba:7a:fe:c5:8c:90:c6:bd:
a9:8e:56:e2:b4:ac:78:d0:2e:1e:56:04:23:e0:c3:
33:89:ab:65:4b:59:cc:d2:14:33:cb:4c:22:7f:d2:
0b:9b:ff:5d:11:97:54:48:b9:fb:51:59:61:1a:56:
5b:e5:1d:a1:31:de:fa:c3:4f:1a:52:d2:1a:b5:3f:
72:c6:e4:7d:f3:f1:92:c4:b2:10:2b:21:bf:39:d4:
27:8b:70:f2:cf:d6:9a:24:06:87:1d:fc:a4:ae:c6:
ec:65:93:5a:7b:cf:75:b8:94:bf:bb:7f:dc:3d:3c:
f2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6E:0D:94:BC:BE:F7:38:E4:24:DA:0A:C9:43:A9:9E:39:B1:4A:5A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D24NlLy-9zjkJNoKyUOpnjmxSlo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.80.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:da:22:49:e6:41:d7:16:59:02:31:63:31:4b:a8:76:80:2f:
17:7e:ae:e5:53:22:d1:b6:13:7a:77:3a:63:64:9a:fb:4b:8b:
cd:02:5f:ab:b2:28:93:71:f2:af:40:6d:eb:74:3d:78:6d:7c:
98:ab:82:33:5b:25:92:ee:55:b6:e2:0d:b1:c4:da:3d:27:1e:
15:b6:06:b0:e7:c1:7c:7a:e2:1f:40:d9:43:44:01:6d:a9:0c:
e1:64:67:8a:61:5a:89:65:a7:8c:1e:0e:8d:14:ca:61:c6:0f:
a6:84:a6:16:f5:ae:c2:20:53:aa:d4:02:db:c0:1f:46:be:09:
62:ae:a7:36:cf:ab:06:95:4a:7b:48:d0:49:47:42:e8:f4:6f:
33:45:32:22:52:cb:38:f4:c1:e2:32:b3:37:ae:e6:44:76:d0:
c0:95:94:ab:44:e5:ab:2a:a1:cd:20:4b:7f:6b:b8:40:58:a8:
63:4b:35:22:c4:df:d9:91:8f:21:47:45:63:90:0d:c3:af:15:
7d:d3:e5:f0:2f:e8:ca:82:71:32:3e:22:48:0c:8b:f5:66:80:
38:82:7d:91:05:3c:81:7d:92:36:40:e3:f6:62:22:30:ad:b8:
84:aa:09:fd:11:4b:cf:b8:56:d8:22:18:32:a7:fd:c1:5f:61:
12:b4:36:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org