Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DAI7Dh27JXqIHufCC-jBzrb8wKc.roa
File: DAI7Dh27JXqIHufCC-jBzrb8wKc.roa (raw, json)
Hash identifier: 4c/G7/1ABII8/NObukpqoESlBOCYGwEBUiZoGVGOr5Y=
Subject key identifier: 0C:02:3B:0E:1D:BB:25:7A:88:1E:E7:C2:0B:E8:C1:CE:B6:FC:C0:A7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CBE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DAI7Dh27JXqIHufCC-jBzrb8wKc.roa
Signing time: Wed 29 Sep 2021 02:48:08 +0000
ROA not before: Wed 29 Sep 2021 02:48:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7358 (0x1cbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0C023B0E1DBB257A881EE7C20BE8C1CEB6FCC0A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:14:aa:7e:91:0f:7d:c3:af:23:74:09:27:ee:
56:ef:57:f8:34:9e:2c:b6:83:f6:f0:dd:2d:48:3f:
aa:d0:5c:bd:e6:bf:c3:40:3d:2e:16:be:e8:ab:fb:
14:7c:4b:37:e3:68:e5:f2:a7:c4:52:3d:42:92:82:
b1:87:14:59:d9:50:5a:e0:b6:e9:4e:ea:a3:42:22:
14:1a:af:64:44:42:71:90:03:da:c7:9c:38:77:df:
26:3c:8c:5f:c1:35:97:75:f4:8e:e6:cb:99:49:05:
01:de:6a:42:28:44:ee:33:21:53:2d:8d:a6:bf:34:
8d:d2:be:0e:b9:87:34:26:40:1c:47:cd:18:df:a4:
03:46:58:50:cd:70:36:5c:4f:49:54:47:a9:95:29:
67:ed:cd:f9:0b:91:6b:50:9a:26:b0:64:e3:38:e7:
af:07:fa:58:94:ce:5f:74:e5:f6:bb:ae:02:52:00:
84:64:17:14:06:aa:14:d8:c3:f3:67:18:de:89:0b:
c1:80:22:73:2a:91:d6:df:e2:4e:55:50:26:cd:b1:
65:5d:98:52:80:05:9c:ad:f9:bc:09:dc:11:1f:b2:
7e:a0:76:8b:bd:39:cd:10:af:02:49:8f:83:a7:85:
c1:c5:1e:7f:88:3a:64:33:6c:fb:3e:ea:60:a3:b0:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:02:3B:0E:1D:BB:25:7A:88:1E:E7:C2:0B:E8:C1:CE:B6:FC:C0:A7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DAI7Dh27JXqIHufCC-jBzrb8wKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.184.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:85:f5:d5:6c:93:e9:72:b2:51:94:e5:3d:66:24:a2:2a:52:
4a:44:fb:1a:9d:d3:1d:bd:ec:25:6b:2d:9c:c0:b7:0a:9b:3d:
9b:37:6c:e4:72:44:c8:27:49:f4:0d:8f:af:25:46:d0:12:3d:
a2:a1:24:e4:8f:29:b7:ec:74:73:c9:32:23:f9:b6:34:28:5c:
67:7c:cd:8b:18:11:e4:19:5e:3b:34:74:34:10:8c:00:d2:e8:
a7:de:27:cd:2e:9a:10:35:4f:e8:55:01:4a:8b:f4:5c:bb:6d:
d9:e6:ec:f1:12:0c:27:0b:c6:19:0b:5f:a8:ab:ac:9c:aa:bf:
5e:9d:82:49:e5:df:60:79:ae:3c:1f:53:30:8e:3e:26:6a:aa:
73:69:66:b1:f3:0f:29:94:00:2c:47:5c:6a:cd:b5:34:68:ae:
96:2b:99:59:a3:e4:cd:3a:ae:fb:33:eb:62:6e:f6:d4:10:e8:
33:2f:d7:9a:11:02:b1:fa:87:74:68:86:53:a5:19:57:2e:41:
88:b4:0e:31:14:95:07:a0:86:33:49:53:d6:50:c5:0b:28:cb:
ea:be:2d:85:34:e6:02:5d:bd:78:bd:53:e1:f3:48:70:7e:57:
a0:ca:c3:1b:c5:21:86:b8:bc:eb:62:8b:1c:f3:bf:6d:43:d9:
7c:dd:db:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:24 2023 by rpki-client on console-fra.rpki-client.org