Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DiJYkqswhpFDNtMU_Q0DALpuoVg.roa
File: DiJYkqswhpFDNtMU_Q0DALpuoVg.roa (raw, json)
Hash identifier: K8Sm0+gb39RGEXLX4v+e5k+0oyQxNpBK67JcoQvt0Ss=
Subject key identifier: 0E:22:58:92:AB:30:86:91:43:36:D3:14:FD:0D:03:00:BA:6E:A1:58
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C86
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DiJYkqswhpFDNtMU_Q0DALpuoVg.roa
Signing time: Wed 29 Sep 2021 02:47:53 +0000
ROA not before: Wed 29 Sep 2021 02:47:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7302 (0x1c86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0E225892AB3086914336D314FD0D0300BA6EA158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dc:8c:41:23:7d:b1:e0:01:cf:23:20:5b:33:
5b:54:6f:7a:b7:2e:41:5a:9d:e9:1f:b7:88:e4:16:
7b:0a:9a:fa:db:94:79:77:28:c6:28:4b:e2:02:d3:
32:ba:b0:14:f2:5c:03:bb:31:ac:da:ff:bc:8f:84:
a1:ec:70:cd:3f:4c:28:b4:a4:75:0e:6a:e2:a2:3b:
d3:97:7b:ba:ee:db:c2:e4:fd:43:85:0c:a5:7d:f0:
76:85:0c:1b:02:24:75:f3:1e:51:2f:d7:ba:44:2c:
38:fd:95:f8:69:9d:76:35:a2:55:f9:6a:a4:a4:e6:
62:b6:dc:80:bc:2a:3b:db:35:7c:21:e4:18:e9:7a:
22:d8:3c:c1:48:36:4b:e4:82:3d:53:da:73:c5:61:
c2:2c:ca:e3:ec:48:c4:00:e1:1d:f4:58:60:40:40:
b9:b7:bc:ac:8b:08:bd:92:ef:73:07:12:6f:98:6d:
86:f7:8a:d4:e1:b5:92:9c:ef:a7:69:bc:7e:50:3b:
0a:01:25:4a:71:e7:9f:80:02:3f:73:51:d8:49:05:
6d:70:7c:0d:3c:83:3c:56:e6:ef:b0:ed:3d:c2:25:
df:ce:72:d0:c7:91:64:1a:fa:b2:1f:33:5b:90:cd:
a6:08:61:94:cf:88:36:a1:c9:40:02:0c:96:c1:e6:
f6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:22:58:92:AB:30:86:91:43:36:D3:14:FD:0D:03:00:BA:6E:A1:58
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DiJYkqswhpFDNtMU_Q0DALpuoVg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.160.0/21
Signature Algorithm: sha256WithRSAEncryption
42:84:8b:53:9a:7c:57:f2:32:7c:56:6a:d7:34:cf:57:36:77:
af:56:40:89:0e:b3:1a:c7:ea:79:d5:4e:55:56:a0:48:32:9e:
f2:1c:d1:0c:5d:cd:a4:5c:fa:40:e9:3b:d9:1c:e0:b5:78:ca:
bb:cc:99:11:d4:b8:b8:44:5a:f4:fb:21:e0:f8:fb:3c:97:c6:
21:b7:57:7f:ae:84:45:ab:57:b3:86:e2:77:99:6d:51:17:db:
cb:b4:e7:57:15:d9:28:4e:a6:fc:61:f5:2d:1b:2e:5e:a8:1b:
05:65:2a:e5:48:7b:b3:f2:b8:3c:ba:07:f4:e1:d7:97:b0:f7:
92:fc:fc:a3:ad:25:dd:c1:43:5b:aa:a3:62:06:30:71:61:41:
97:5f:5e:1b:93:83:66:e9:c5:8b:89:c8:fc:ee:53:36:90:c1:
09:4f:ac:63:40:64:0b:b8:34:06:3d:7c:ab:61:bc:40:38:b1:
f5:d8:6b:9e:e7:0d:e9:1c:64:5a:65:62:42:2f:0e:7d:69:f8:
f9:51:94:0a:19:9a:b4:27:9f:de:dd:96:ec:96:dc:6f:7a:7a:
e5:85:ed:16:12:55:31:f8:75:61:11:3b:c4:ae:a7:6f:a5:39:
1e:7b:26:65:5b:8f:da:39:fa:bb:6d:4c:8c:47:40:3a:46:eb:
41:ae:19:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:24 2023 by rpki-client on console-fra.rpki-client.org