Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IjhPTgM9DyaWB-3tDkuVVIKwwfE.roa
File: IjhPTgM9DyaWB-3tDkuVVIKwwfE.roa (raw, json)
Hash identifier: UkDYjjHD4dpOB6v3d3vuS7bOZzcNUo81jwcweOlgR8o=
Subject key identifier: 22:38:4F:4E:03:3D:0F:26:96:07:ED:ED:0E:4B:95:54:82:B0:C1:F1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DA9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IjhPTgM9DyaWB-3tDkuVVIKwwfE.roa
Signing time: Tue 29 Sep 2020 09:54:49 +0000
ROA not before: Tue 29 Sep 2020 09:54:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3497 (0xda9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=22384F4E033D0F269607EDED0E4B955482B0C1F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:17:d5:c3:fa:67:13:7e:29:3a:1c:dc:9d:c9:
57:d4:33:1b:11:51:d6:46:76:06:d6:1b:57:e4:35:
b1:14:87:d6:fb:9f:e8:13:c7:74:d8:31:46:c2:2f:
5a:01:c8:03:20:93:b4:33:5c:00:75:6c:5f:5d:67:
4a:e6:4c:04:fa:88:6d:15:af:c3:a6:32:c6:c4:7d:
1f:89:f9:1f:64:84:8b:f1:ae:5e:97:b2:ee:55:b9:
d9:b7:dd:b4:df:d8:68:3a:d3:39:bd:e7:fa:5e:c3:
ba:9a:ec:e7:0e:26:0a:10:06:04:9a:53:6f:23:8f:
79:d5:25:f9:69:cb:88:92:f6:14:d0:63:e0:ac:ca:
72:9d:19:39:9d:43:65:5e:46:96:88:0b:fc:02:fe:
46:a1:4b:22:31:53:02:89:1f:f9:2e:d6:ae:b8:d5:
29:75:2e:31:4d:f2:99:68:3e:8a:9a:19:02:35:74:
e5:1f:e2:72:c5:67:0d:7f:31:d4:55:e1:d0:ae:88:
d3:57:ed:de:0f:3c:c7:01:56:e5:fe:9c:e5:4b:af:
f6:40:8d:82:5c:97:ad:c2:4f:c0:75:8a:e0:af:a0:
c8:69:7b:ff:26:25:11:c6:0c:42:d1:c2:33:0e:df:
0d:6e:af:8d:30:c2:ba:c4:f7:fc:3b:59:28:9b:72:
92:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:38:4F:4E:03:3D:0F:26:96:07:ED:ED:0E:4B:95:54:82:B0:C1:F1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IjhPTgM9DyaWB-3tDkuVVIKwwfE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.176.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:4a:1d:57:1c:ad:63:78:e1:e0:4e:21:e5:ce:52:5f:2e:0e:
b7:f5:25:15:da:4c:1d:bd:cc:72:d4:f7:fd:b6:1a:f5:0b:61:
12:4c:77:e4:fc:b0:c6:0e:98:cd:f4:e6:fe:4a:35:91:b3:f1:
82:72:f1:6d:9c:25:e1:ee:c7:b2:dd:51:ef:4f:84:b1:ed:ae:
13:71:d6:c5:87:16:e3:45:37:0c:6d:75:2c:06:67:eb:97:58:
20:b6:90:9f:dd:3e:47:88:27:73:75:8c:9f:18:f6:70:ae:dc:
fd:fe:0b:fc:7e:ed:32:2f:db:be:a0:42:68:5d:41:8f:f8:2e:
25:3f:e4:ee:c5:1e:7d:ab:de:13:af:89:54:e5:5e:71:9a:36:
47:da:99:75:8b:bf:b7:22:cc:e6:3a:e3:56:e4:23:40:e1:23:
20:a6:87:65:58:9a:89:7a:a3:b3:7b:d4:ce:91:d6:f8:3a:b1:
09:54:94:e7:08:3c:ea:59:2c:74:2a:14:b3:4f:9c:15:cc:7e:
f1:71:f6:0b:92:42:83:ab:89:39:28:7a:c0:80:d9:6c:e5:c2:
e6:0b:6d:50:c4:35:1b:4e:cf:f2:4f:df:6e:7b:aa:5e:61:40:
19:1f:8f:6d:97:1b:a5:b4:14:d4:24:ff:9c:21:54:fc:21:28:
08:e3:79:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org