Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MjBy4i5OHQiWyfk-fjuqsfNOQhc.roa
File: MjBy4i5OHQiWyfk-fjuqsfNOQhc.roa (raw, json)
Hash identifier: NzxDRf9sA20ibVUULfK2VP62J2dIAIO/hoKAcb00l1c=
Subject key identifier: 32:30:72:E2:2E:4E:1D:08:96:C9:F9:3E:7E:3B:AA:B1:F3:4E:42:17
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BC5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MjBy4i5OHQiWyfk-fjuqsfNOQhc.roa
Signing time: Wed 29 Sep 2021 02:46:58 +0000
ROA not before: Wed 29 Sep 2021 02:46:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.212.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7109 (0x1bc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=323072E22E4E1D0896C9F93E7E3BAAB1F34E4217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b4:6f:d2:8d:9e:19:72:17:9e:3e:28:1c:c8:
8d:87:76:63:27:e0:3e:05:0c:ee:36:05:b4:d7:d4:
27:3e:4c:5b:f3:61:05:fc:bc:70:63:e6:53:f2:c2:
69:c1:c3:f1:30:fd:e1:ff:59:50:0f:f1:fb:e1:78:
7e:f6:72:f9:3b:9f:74:45:40:5b:35:06:c1:e4:43:
d8:67:a7:dc:a5:cb:27:5d:60:98:ca:49:dd:d4:7f:
6d:55:9d:64:c4:72:7c:a7:87:79:f5:12:dd:41:01:
e7:03:00:db:cb:ee:33:47:d5:73:e6:56:ea:83:6c:
7c:ce:2e:3c:ee:32:19:43:1c:c3:45:1a:c5:37:f4:
cf:32:14:8c:50:e2:6f:76:b4:f3:68:3a:28:38:96:
0c:fb:11:38:67:f6:ac:c3:31:eb:fa:1e:0e:cb:fc:
52:29:d9:c6:95:23:da:38:5b:db:1e:fa:69:ba:62:
8e:2a:08:d9:81:f1:79:73:a9:30:18:7f:51:6b:68:
bf:a7:95:96:5a:07:de:be:ae:32:49:3d:ea:82:53:
61:90:98:75:ad:8d:3f:25:42:8d:4c:cc:32:41:97:
ad:a5:6d:59:0f:3a:ac:67:6b:7c:61:67:e5:94:a9:
a5:72:42:93:c2:61:10:93:c6:62:d8:bd:4f:29:18:
e8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:30:72:E2:2E:4E:1D:08:96:C9:F9:3E:7E:3B:AA:B1:F3:4E:42:17
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MjBy4i5OHQiWyfk-fjuqsfNOQhc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.212.0/23
Signature Algorithm: sha256WithRSAEncryption
78:9a:e3:fa:d3:7a:0e:36:8e:62:3e:9b:b5:35:a0:17:16:62:
b7:77:c3:d1:63:ac:ac:7c:17:8f:90:6c:7e:2e:49:ad:82:6f:
e4:5c:b6:98:1b:b2:ea:e4:f4:0e:1b:6e:b8:f2:35:da:cd:5f:
87:62:28:cd:dd:3d:63:7e:4f:78:5d:72:dc:e7:db:77:1f:35:
45:4d:be:5f:53:07:24:90:00:15:ca:06:70:f5:44:0d:50:55:
5d:f3:68:fb:de:1e:80:94:bd:98:9c:c1:9e:64:23:5a:ad:34:
23:21:2a:91:e4:96:d7:c4:77:4e:1c:42:6f:81:21:24:11:22:
e9:de:1b:58:ea:4b:2f:7c:c6:79:df:0d:2e:5a:7e:c0:89:af:
ef:44:13:d3:d6:7e:8e:cd:b5:b8:26:8c:fc:90:b5:d7:4d:05:
61:4d:fa:76:3d:64:6d:7d:9b:91:83:7d:94:0b:ec:3a:de:6e:
20:92:a7:e4:ef:ce:70:92:d0:d3:44:47:45:0d:b9:72:a2:7b:
b8:d8:aa:9e:8b:8b:39:8e:07:66:9b:91:f7:1f:b1:f5:fd:0a:
7f:17:e4:c8:47:65:13:a4:3c:46:ae:7b:ef:ae:c5:95:c6:a7:
9f:bd:e2:ce:35:47:52:e2:ba:70:b2:55:18:08:ff:6e:80:90:
21:d1:50:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org