Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MXwEXzj0fhv1p_Y4fqABPwUr28I.roa
File: MXwEXzj0fhv1p_Y4fqABPwUr28I.roa (raw, json)
Hash identifier: XBAa4LonTSRcESc1/ZnHOk1wc/7YXJ/LDOOgSmzNbhA=
Subject key identifier: 31:7C:04:5F:38:F4:7E:1B:F5:A7:F6:38:7E:A0:01:3F:05:2B:DB:C2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MXwEXzj0fhv1p_Y4fqABPwUr28I.roa
Signing time: Thu 15 Sep 2022 02:53:46 +0000
ROA not before: Thu 15 Sep 2022 02:53:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=317C045F38F47E1BF5A7F6387EA0013F052BDBC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:80:f2:c8:b3:42:43:03:98:bd:e0:83:76:53:
ce:b6:72:be:1a:cb:f9:2f:87:62:0f:fb:8a:17:9f:
5d:43:28:b5:13:91:ca:6b:71:44:b7:09:49:3d:c7:
35:00:3e:ed:7e:3d:9e:66:ef:04:67:80:b9:33:e7:
ff:f1:cb:7f:d1:53:61:ec:aa:30:ae:40:ea:b6:f6:
95:cd:d2:55:d2:51:ce:72:60:1b:17:e4:17:b4:da:
fa:79:10:1b:0b:43:8c:d7:be:f8:3c:da:52:1b:71:
ce:6f:01:be:b0:8e:59:f2:6c:a7:ae:a0:b6:2f:bf:
69:70:72:be:d6:4a:11:01:87:e3:9c:8b:74:e7:1e:
d8:45:4f:99:bb:a0:42:b8:0d:4d:75:18:9d:e5:75:
e9:76:dd:79:cb:17:95:df:bf:d2:c0:7f:1b:08:c9:
31:2e:dc:9f:37:bf:34:83:aa:5b:4d:50:8e:73:37:
bf:74:12:7e:57:2c:89:a1:6c:5b:a3:ff:c8:5a:76:
df:b4:87:7d:ef:64:59:55:1a:8e:cb:91:ea:2a:de:
01:ec:c5:8e:99:64:df:cb:5a:d5:13:b9:79:e1:bb:
d4:7a:c6:03:ea:7f:3a:07:46:f7:71:93:9e:23:b3:
ef:8f:13:e6:bd:1f:0a:0d:da:81:11:6d:79:d3:9a:
66:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7C:04:5F:38:F4:7E:1B:F5:A7:F6:38:7E:A0:01:3F:05:2B:DB:C2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MXwEXzj0fhv1p_Y4fqABPwUr28I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.16.0/22
Signature Algorithm: sha256WithRSAEncryption
07:f8:c4:32:c9:82:5c:bb:90:79:40:4e:45:ab:ec:7d:df:df:
d0:52:43:eb:83:10:8a:29:2a:24:a6:15:20:99:37:6b:e7:44:
7d:6d:06:45:18:44:65:7b:ca:4c:cb:fc:d9:28:37:7f:c5:3b:
6e:74:76:e4:e2:e1:2d:12:06:65:ae:17:7f:14:3d:30:0b:34:
03:bb:d5:f2:7b:84:60:9b:63:ed:d4:f8:61:8a:3e:1c:c8:27:
41:97:b5:ab:2a:01:56:65:96:ed:e0:83:6f:c5:8a:ca:bc:f2:
b6:30:33:ca:ea:13:4f:48:aa:ea:74:8e:f2:fd:00:bf:4e:9e:
55:63:7f:a7:6b:43:ea:30:16:77:dd:4a:97:6b:0c:4b:c0:2d:
8a:c9:4f:ec:e9:83:3a:c8:16:a6:3a:7b:7d:32:db:17:9a:f0:
e7:e0:0e:dd:c9:8b:40:2b:46:62:b1:37:b1:46:b0:8e:4e:ad:
47:80:9a:ec:a1:d0:f5:d7:9d:53:c9:a5:2e:7f:d5:5e:fc:17:
65:de:71:ea:f7:fd:12:8a:a1:f4:85:6f:58:d5:c5:45:fc:6b:
b3:73:17:d2:d2:6f:f0:9d:f7:d0:d9:d1:07:8d:e0:7b:67:44:
18:6b:cd:e2:dd:2f:53:ff:f5:d4:2f:a2:c7:df:31:65:b5:f5:
51:ed:8e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org