Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Fi74osifLvycNBgaRd21Hjfb0NY.roa
File: Fi74osifLvycNBgaRd21Hjfb0NY.roa (raw, json)
Hash identifier: EQ2g/dsbrBSDwgqaC9xfyehJ6TfRbaTldofUiRZcTaM=
Subject key identifier: 16:2E:F8:A2:C8:9F:2E:FC:9C:34:18:1A:45:DD:B5:1E:37:DB:D0:D6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D17
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Fi74osifLvycNBgaRd21Hjfb0NY.roa
Signing time: Tue 29 Sep 2020 09:54:10 +0000
ROA not before: Tue 29 Sep 2020 09:54:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3351 (0xd17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=162EF8A2C89F2EFC9C34181A45DDB51E37DBD0D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4d:a1:0d:dc:80:22:2f:41:04:e4:5f:07:02:
d1:83:e3:ed:b9:7b:ba:d7:10:f6:fb:31:a3:55:d7:
81:9f:dc:ee:1c:9c:cc:34:62:f3:18:a6:84:28:ab:
6d:17:f1:92:4a:8d:63:0d:94:87:ca:30:70:57:73:
ad:57:27:90:1a:db:dd:44:c7:9c:d2:9f:21:86:b1:
d4:32:e5:dc:a5:1d:69:c8:bf:1b:40:90:63:44:50:
67:b8:13:49:c8:83:c4:2c:3d:0d:b0:bc:2c:15:1d:
ed:03:b5:95:b1:0f:6b:6e:9c:ba:ec:9c:70:81:2c:
83:3d:d2:86:14:86:63:77:37:2d:cf:b4:d9:f4:09:
48:6e:a0:f4:80:5e:2e:2e:f1:63:c9:ee:39:d6:6e:
0c:be:69:11:6b:97:00:68:d1:32:74:ef:c1:62:02:
ab:97:c9:a6:c3:98:57:f0:b9:d7:bc:aa:8f:1f:0b:
93:03:61:23:a2:60:9f:38:83:5c:2e:87:21:8e:b7:
23:57:f4:e5:66:cc:f1:a0:76:c4:28:b9:dd:cb:ff:
da:62:fb:47:63:e5:62:1c:db:d5:28:a8:ae:5d:af:
b6:1c:9a:16:34:40:ff:52:a8:44:d9:53:f8:7a:38:
c2:a2:1e:b3:39:53:3b:f6:4b:45:66:aa:72:c9:d7:
2a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2E:F8:A2:C8:9F:2E:FC:9C:34:18:1A:45:DD:B5:1E:37:DB:D0:D6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Fi74osifLvycNBgaRd21Hjfb0NY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.72.0/21
Signature Algorithm: sha256WithRSAEncryption
65:da:d0:af:3c:35:da:85:57:f5:2a:10:bb:a8:0d:1b:06:6e:
f3:6e:ed:c7:b3:7a:ba:5f:8e:96:eb:f4:56:90:c7:72:02:5d:
03:bd:6b:95:56:c8:32:ca:d5:92:3c:ea:ae:c3:7d:79:34:a6:
1a:b8:3a:1b:db:66:91:c9:01:42:c8:0f:dc:c9:1c:bb:9c:00:
03:e6:10:b7:bc:e4:34:de:a0:b6:5e:43:bd:62:10:83:c0:5a:
02:18:2d:91:cd:25:83:d9:ea:b4:b2:37:2c:f7:0f:91:62:5a:
bb:93:f4:1e:c7:6e:f5:e8:70:21:fc:05:07:45:48:14:ca:74:
62:54:6f:6e:99:78:7e:69:17:9c:3c:39:fe:ab:e2:5b:31:ab:
34:6a:7e:6c:de:30:c3:db:22:03:c2:76:fa:98:a6:7b:1b:08:
bf:dd:8d:be:6d:a9:1e:2d:2f:45:eb:3c:6d:48:ab:47:2f:d5:
86:02:c9:7b:89:1c:9b:99:ca:d7:c3:a5:9c:00:9e:5a:70:2f:
c7:06:bf:fe:27:ea:18:94:63:66:14:94:11:f6:a7:6d:d1:52:
8c:f4:58:08:64:af:b5:ee:1c:50:8e:22:86:fd:33:dd:b6:56:
30:31:f0:fe:ba:25:7f:86:ee:e9:88:d0:7c:1d:be:59:c0:6a:
d8:23:89:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:15 2023 by rpki-client on console-ams.rpki-client.org