Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NIbEwcFJUqNcDpvQIQQx64X6avg.roa
File: NIbEwcFJUqNcDpvQIQQx64X6avg.roa (raw, json)
Hash identifier: 3l/LC1i4h0hpAnpfXTZ2jUAwfIKNy7lBbji+cJex51U=
Subject key identifier: 34:86:C4:C1:C1:49:52:A3:5C:0E:9B:D0:21:04:31:EB:85:FA:6A:F8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AF7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NIbEwcFJUqNcDpvQIQQx64X6avg.roa
Signing time: Wed 29 Sep 2021 02:45:58 +0000
ROA not before: Wed 29 Sep 2021 02:45:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6903 (0x1af7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3486C4C1C14952A35C0E9BD0210431EB85FA6AF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c8:3e:66:c4:3f:49:23:b2:74:58:1d:3e:3b:
3f:2b:9e:1b:dc:b7:1d:b1:2a:ce:bb:4c:40:55:40:
0a:0d:1d:7b:71:a9:f3:76:5c:a6:5c:7c:c7:42:a7:
c1:33:4a:59:80:95:6a:f5:18:50:e7:7e:29:01:49:
d9:ef:0a:47:e4:46:0b:17:6a:3f:30:39:c3:d9:60:
b8:58:b3:1c:cf:70:9b:f4:af:21:14:91:d3:4e:d5:
ba:06:af:c1:46:a2:c8:3c:21:15:0a:d0:da:27:de:
a2:a9:e4:75:9c:cc:2d:0d:04:cc:10:84:c3:d7:cb:
21:5d:6a:72:57:5e:7a:60:a5:7a:45:d6:d1:54:f1:
9a:88:3d:c6:d2:36:bc:5d:be:1b:fe:43:ad:07:0d:
57:9f:c9:2f:0f:34:2a:0a:a9:9f:24:6f:9b:a0:90:
dc:da:43:b0:20:12:0f:6d:49:af:c3:5f:2d:13:38:
6e:0f:c8:e5:1d:08:74:d8:d5:f7:38:22:a2:b5:28:
93:d1:04:7c:5b:9b:3b:d1:21:fc:21:dd:7e:a9:01:
09:3e:80:61:dc:41:65:26:ad:56:0e:76:d1:23:24:
01:57:21:0f:ef:7f:db:b8:da:a9:9c:0e:8c:6b:42:
4f:9a:67:dc:71:46:35:01:02:01:cc:1a:3f:39:65:
b3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:86:C4:C1:C1:49:52:A3:5C:0E:9B:D0:21:04:31:EB:85:FA:6A:F8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NIbEwcFJUqNcDpvQIQQx64X6avg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.108.0/22
Signature Algorithm: sha256WithRSAEncryption
42:9e:e7:c0:36:e4:65:28:fc:81:fb:9e:45:c8:09:53:fd:c7:
57:b1:e4:b0:c7:2e:66:bd:28:bf:7b:c4:8d:6e:66:09:30:02:
0f:42:93:c3:98:01:2e:b2:60:18:d1:d2:33:d9:85:66:13:b0:
00:23:38:f6:06:33:61:e7:2c:dd:6c:ab:ac:8f:fe:6d:ed:c1:
04:a3:2e:76:d5:03:79:38:d6:8e:c8:cc:4a:9f:f3:53:3a:6d:
ac:ad:40:ad:3d:c9:04:08:0b:cb:67:bd:9f:2d:64:37:23:1d:
ac:5d:ab:c5:3b:21:30:b3:69:a6:8f:b4:19:1c:1d:4a:48:c9:
37:b9:ae:bf:e1:a1:39:ac:a2:ec:0d:9f:62:ca:fa:9b:65:9f:
2d:30:51:a3:4d:4e:81:34:76:54:01:9e:1e:3e:27:50:c5:9c:
14:e8:bb:d0:02:be:87:6d:36:2d:e9:1b:7c:43:f0:a6:11:f7:
df:ee:77:1b:48:66:ad:27:bf:bd:17:6a:97:1a:44:7a:79:a2:
77:9b:9c:8d:24:ce:d3:97:c9:1a:00:0f:44:cf:eb:2a:7f:85:
e2:59:4b:4b:cf:87:25:e2:a8:ac:4f:9f:a9:48:56:99:df:ae:
f7:1b:34:b7:6d:c5:02:bb:ab:40:f7:1a:1d:e7:26:10:c3:24:
05:3e:8e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org