Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KQvAXDbKHaGICqDnyeOlh1Qt7UU.roa
File: KQvAXDbKHaGICqDnyeOlh1Qt7UU.roa (raw, json)
Hash identifier: JQRGzW47Vdrak3YPylKxe1cdazAhKdiQ4+eLSJ50RtI=
Subject key identifier: 29:0B:C0:5C:36:CA:1D:A1:88:0A:A0:E7:C9:E3:A5:87:54:2D:ED:45
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16D7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KQvAXDbKHaGICqDnyeOlh1Qt7UU.roa
Signing time: Sun 07 Feb 2021 12:14:45 +0000
ROA not before: Sun 07 Feb 2021 12:14:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5847 (0x16d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:14:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=290BC05C36CA1DA1880AA0E7C9E3A587542DED45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d5:f3:fd:a0:49:dd:ea:fc:c7:f2:01:4e:9b:
53:a2:0c:70:dd:6f:e0:aa:88:52:42:ce:f1:6f:a4:
c2:c1:9c:0b:a2:56:74:c8:7f:be:49:1b:1f:5f:9d:
c3:ea:4b:c2:07:06:3f:9f:9b:1b:40:74:77:9f:4c:
b9:8f:a8:b1:e9:c1:da:6d:7e:9f:8c:94:04:c3:be:
68:da:3c:7c:54:df:a9:5c:d5:60:d9:06:c5:b0:47:
3a:42:46:97:5b:66:f1:f3:b8:69:1e:a7:e0:a2:ab:
92:0a:af:41:7e:fd:de:7c:19:7f:30:46:57:38:cd:
8f:15:2d:a6:20:f4:61:b8:de:9d:4a:f6:72:4c:05:
dd:94:3b:bd:d5:f6:ce:9f:12:fd:09:3a:35:e6:0e:
8f:69:27:f8:1e:a5:c1:75:8c:eb:fd:4b:09:df:13:
3d:83:4b:ac:51:87:f6:ff:0a:66:a3:6a:2f:e7:ad:
b8:de:01:b9:c8:5c:01:59:7d:02:c9:70:ae:1a:a4:
b6:13:b4:b2:4b:d0:6c:7c:b2:b3:25:13:44:53:07:
bc:47:b6:5c:02:83:14:3a:52:dd:40:eb:0b:a0:8a:
2c:4d:47:fa:db:4b:5d:1d:17:64:52:d1:88:72:87:
bb:07:eb:4b:ec:ad:50:41:27:25:71:4a:58:87:48:
04:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:0B:C0:5C:36:CA:1D:A1:88:0A:A0:E7:C9:E3:A5:87:54:2D:ED:45
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KQvAXDbKHaGICqDnyeOlh1Qt7UU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.200.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:4c:ba:41:4c:09:90:3b:2c:c7:a5:05:9c:c0:f0:cb:2a:6b:
3e:50:ed:40:a4:42:03:ef:81:9f:90:95:e2:75:2c:15:9f:e8:
de:2d:df:e5:dc:dd:dc:d0:dc:d8:30:09:77:f2:7a:fc:a9:33:
61:72:4b:cc:53:da:f9:c4:a2:97:d4:12:f2:af:be:dc:e7:46:
6f:a5:5e:c1:2d:89:85:43:3b:0a:36:d4:db:9c:08:95:9b:3a:
49:6e:5d:d8:d6:a7:b7:0b:3b:ff:aa:e3:f2:09:25:34:55:c5:
ed:bb:11:a8:d9:a9:0c:9a:4f:38:24:d8:9c:06:65:76:cb:1a:
34:cf:3a:fc:56:26:fa:da:f4:b3:ff:34:f4:54:a3:fd:57:03:
9c:cd:78:a8:0b:8f:8e:e3:42:6e:be:ce:71:4d:bf:bf:e8:4d:
7a:be:c9:0e:6a:5f:92:0b:80:8a:20:59:8c:e0:c0:69:83:2e:
32:02:c7:f0:a5:47:f6:0a:5c:cb:e0:0c:27:b6:ab:9f:29:3f:
72:4b:f1:11:e3:42:a5:84:d7:ee:db:d7:00:a6:60:58:45:f2:
ca:02:be:e7:3e:65:b9:cd:b9:60:8e:e3:57:b3:02:85:94:af:
61:5d:5a:63:80:a9:b3:77:b7:b9:cb:7b:aa:0a:59:72:00:b5:
f5:31:53:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:28 2024 by rpki-client on console-ams.rpki-client.org