Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KG_1KsCTUWzvBP4ubIedih_noSA.roa
File: KG_1KsCTUWzvBP4ubIedih_noSA.roa (raw, json)
Hash identifier: A+96Q3TouiQ2OyVN/gwzBPV82F99AuWBQVfseoveiIo=
Subject key identifier: 28:6F:F5:2A:C0:93:51:6C:EF:04:FE:2E:6C:87:9D:8A:1F:E7:A1:20
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 17B7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KG_1KsCTUWzvBP4ubIedih_noSA.roa
Signing time: Sun 07 Feb 2021 12:22:59 +0000
ROA not before: Sun 07 Feb 2021 12:22:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6071 (0x17b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:22:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=286FF52AC093516CEF04FE2E6C879D8A1FE7A120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7b:ed:cc:08:1a:52:47:14:17:7e:7a:94:71:
cf:cf:fa:6d:f6:f0:aa:ed:f2:2b:b5:da:53:93:b7:
a8:71:e3:50:53:83:ea:10:ce:cc:ff:ac:13:ae:2e:
d5:9f:10:b5:da:70:7b:dc:05:60:c9:a3:c4:2c:88:
7d:83:93:2e:3f:95:d3:b6:16:f8:e2:79:a7:04:50:
34:63:ce:7f:f7:e7:47:96:d7:a6:3c:21:f6:d5:bd:
0d:05:d1:9b:76:e4:4e:10:c8:1b:f7:f3:ec:65:63:
94:13:4f:19:28:f8:c7:62:ab:d2:0e:df:3a:79:19:
0f:c7:40:4a:1b:c4:a6:8e:22:a6:32:ac:3b:82:b5:
39:b8:87:86:e4:28:84:9d:34:89:bb:35:a5:13:cd:
04:3d:1b:f4:a2:55:62:9f:04:8b:07:53:49:3b:84:
f3:19:b1:dd:04:94:e4:b1:f4:b1:cb:a4:5a:b3:38:
da:f0:39:4a:cf:db:72:75:f0:c4:71:dd:a8:6d:e1:
36:7e:40:78:ea:a6:52:6a:84:8d:62:a2:6e:7d:53:
04:eb:b5:6d:9b:da:70:ad:77:17:43:d3:b2:c4:f9:
b4:db:2f:62:cd:44:b6:93:6a:ba:d4:f3:33:ec:9d:
f2:46:44:8c:13:ff:44:4d:85:fa:29:38:c1:39:52:
f9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6F:F5:2A:C0:93:51:6C:EF:04:FE:2E:6C:87:9D:8A:1F:E7:A1:20
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KG_1KsCTUWzvBP4ubIedih_noSA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.152.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:d2:a1:fc:fb:f2:dd:41:fd:17:01:e1:c8:8d:bc:13:b3:30:
fb:96:c9:a1:fb:58:01:b4:3f:71:cc:44:be:fb:87:93:f5:7c:
67:a8:25:bf:eb:10:bd:ba:8d:ac:69:9b:00:d1:5c:e6:00:15:
80:be:8e:86:04:e7:f1:2c:56:7b:d0:ac:c9:1e:1c:80:dd:05:
10:d4:7e:1e:f8:16:60:81:4a:cb:e5:fc:1f:22:65:84:50:04:
71:2b:75:f0:6c:b7:65:c9:ed:ab:34:91:3b:57:cc:26:bc:ba:
3f:7f:48:f6:31:ce:d6:d4:28:4a:c7:e4:a4:7f:f0:90:9d:a5:
4f:a4:0e:da:49:16:a4:0a:5b:01:e9:b0:bd:b8:ac:4b:b7:29:
3e:4b:c1:b5:d3:58:5e:f7:9b:1a:8c:79:8b:eb:f8:18:a4:ca:
44:4c:6a:eb:2c:22:51:58:a6:47:f2:61:e9:14:aa:85:b2:ef:
41:ec:09:12:e3:17:a7:8b:ec:f4:af:93:9c:c8:e0:e7:51:11:
67:65:f5:6e:11:09:f8:d3:bc:82:a8:bd:e5:95:e1:60:ed:50:
c9:eb:72:8c:47:a3:f3:c0:ea:ac:4e:2c:63:aa:80:e1:79:dd:
c0:50:cf:b3:a0:a0:62:94:ca:97:13:f8:85:38:3d:d4:bd:5b:
cd:65:ef:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org