Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KAb4AljYkSNtdEnxtv3xYqoA1dg.roa
File: KAb4AljYkSNtdEnxtv3xYqoA1dg.roa (raw, json)
Hash identifier: Wm5ffOJgqN8TlDFGqGqFD4R2/yMeC/K/MrvQw1+yI2U=
Subject key identifier: 28:06:F8:02:58:D8:91:23:6D:74:49:F1:B6:FD:F1:62:AA:00:D5:D8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1705
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KAb4AljYkSNtdEnxtv3xYqoA1dg.roa
Signing time: Sun 07 Feb 2021 12:16:03 +0000
ROA not before: Sun 07 Feb 2021 12:16:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5893 (0x1705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:16:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2806F80258D891236D7449F1B6FDF162AA00D5D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5b:47:b8:c7:fc:d6:bc:a5:38:60:0c:28:22:
c5:75:7c:22:00:a1:8d:26:1d:24:04:ea:5f:fe:af:
3c:a1:79:8e:94:40:c8:89:ba:8e:85:2e:a6:51:d9:
61:89:98:a0:ac:63:dd:98:d9:2a:21:ba:89:58:c8:
df:90:73:ba:fc:fa:9c:9e:be:bf:b6:95:9e:58:9b:
f4:e2:76:56:3c:44:36:50:bc:66:bc:b9:9d:ac:c4:
1b:57:cb:fe:de:41:61:41:fc:dc:c8:c0:fd:cd:92:
a2:71:4e:99:6c:96:4e:8d:51:16:ab:b5:2c:88:8e:
bc:9d:b0:1a:88:2f:cb:fe:7a:53:fd:83:a3:8b:6e:
14:9d:25:1b:52:41:76:c3:dc:1d:46:10:89:d6:ae:
72:e0:ae:c6:72:91:76:cc:a8:83:d9:4d:82:1b:58:
d4:b0:ed:dd:e9:48:88:62:79:9d:e8:47:20:69:a4:
4f:82:e9:b0:99:9b:73:fd:52:12:d1:5e:f6:9f:ac:
b2:08:99:fb:2f:12:52:af:96:db:99:50:e9:f0:f4:
7d:91:50:16:4a:84:9b:07:b3:17:4b:26:3a:da:dc:
6b:a4:25:e9:a5:0d:97:c4:be:52:44:ac:1e:1a:81:
d5:c1:c1:55:e4:3c:bb:aa:81:05:f8:71:d5:2a:22:
e6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:06:F8:02:58:D8:91:23:6D:74:49:F1:B6:FD:F1:62:AA:00:D5:D8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KAb4AljYkSNtdEnxtv3xYqoA1dg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.200.0/21
Signature Algorithm: sha256WithRSAEncryption
66:5d:98:9d:16:16:e5:f1:24:9f:d7:59:99:96:b6:b1:e5:24:
ae:2b:e7:59:6c:08:c3:ca:22:8a:11:3d:4a:5d:a7:58:aa:18:
7a:01:c8:2c:22:1a:73:b7:52:c6:29:78:76:df:08:b4:cd:a6:
d4:e0:23:54:ec:86:c8:fc:ff:4b:53:3d:49:00:79:50:17:d5:
97:2e:93:78:be:61:fa:8b:ec:40:5f:38:93:a6:79:7b:07:af:
cb:ee:5e:de:a2:6e:89:9a:9d:72:96:dd:26:25:fe:9c:a8:63:
bc:8e:5e:d9:76:a3:94:a6:4a:33:59:4d:db:ef:0c:e2:43:2f:
2d:ea:72:a8:f0:53:47:88:55:51:05:a6:71:95:70:2e:7a:dd:
a3:42:0f:a6:cd:d1:4c:ae:4b:12:f6:11:c6:9e:a1:17:93:8c:
3c:98:f2:b8:ae:18:86:bb:6b:8a:21:c7:bf:0f:57:84:91:c7:
03:fa:e1:98:e9:0f:7f:9e:fc:21:2a:ad:1b:66:9c:d6:22:a7:
00:82:82:59:b4:0c:61:4a:c4:07:4b:df:21:b4:25:2c:0b:6f:
8b:f5:a4:9f:24:7d:ab:3e:21:98:84:ff:96:a2:71:3c:1c:06:
75:37:9c:48:6f:d6:5c:be:1e:db:36:3f:17:ec:5b:10:f2:90:
38:47:ea:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:26 2023 by rpki-client on console-fra.rpki-client.org