Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NOCaRVc4cVYfP6tYfoPKdRMcnIs.roa
File: NOCaRVc4cVYfP6tYfoPKdRMcnIs.roa (raw, json)
Hash identifier: hVOx5CvlTzakcPRIezPfqXKeZUL1v8FNZp6SfF2AAyY=
Subject key identifier: 34:E0:9A:45:57:38:71:56:1F:3F:AB:58:7E:83:CA:75:13:1C:9C:8B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0CD6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NOCaRVc4cVYfP6tYfoPKdRMcnIs.roa
Signing time: Tue 29 Sep 2020 09:53:53 +0000
ROA not before: Tue 29 Sep 2020 09:53:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3286 (0xcd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:53:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34E09A45573871561F3FAB587E83CA75131C9C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:bd:a7:40:33:68:a4:60:e5:1d:56:94:29:00:
73:07:66:12:f0:9f:f6:66:6e:90:47:e2:5c:18:a1:
00:79:06:63:f1:d8:e9:c9:9c:cf:fb:94:b4:cf:d5:
d5:83:1f:98:3d:88:66:d1:94:f1:2b:ce:ba:5a:07:
e5:ef:66:ce:8c:cb:dc:4b:08:b9:3f:87:b6:55:0a:
53:60:66:da:d4:7f:86:0c:a7:3e:a8:73:ad:2e:a8:
3a:ef:ec:2a:49:2f:d4:5b:b9:67:c9:93:ab:a1:14:
be:0b:07:e8:26:0e:45:61:e9:3f:fe:fe:ed:38:c8:
f5:74:27:09:5d:37:c3:e8:77:77:20:00:33:bd:22:
17:b8:19:5f:92:80:84:14:c7:3b:b0:81:a8:ea:f8:
a9:52:bc:7c:4c:9e:72:b6:b9:3b:c6:64:4c:0e:ee:
82:df:ea:4e:e5:bc:3c:68:bc:50:fa:b0:b3:63:a4:
0d:e5:10:34:35:40:31:c0:07:73:85:d3:57:41:26:
70:f5:46:aa:07:89:0c:2f:2c:28:d5:f4:25:83:dc:
b4:01:b1:9f:f3:03:38:a0:c6:7b:03:c3:81:d5:f5:
b9:88:c3:59:5c:90:01:66:06:14:fc:81:61:37:52:
a7:e8:ab:5a:7d:7c:00:87:40:e2:b7:f2:a5:a3:6d:
80:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E0:9A:45:57:38:71:56:1F:3F:AB:58:7E:83:CA:75:13:1C:9C:8B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NOCaRVc4cVYfP6tYfoPKdRMcnIs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.168.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:de:75:77:01:73:6f:ca:cf:df:95:f0:df:82:94:43:93:ae:
11:9d:b9:3e:75:71:6f:0a:47:8c:e9:6a:67:d3:ac:39:fa:d4:
d1:10:19:17:96:95:cc:43:3c:de:7e:a6:28:2c:da:e1:a1:14:
28:4c:b7:e3:82:10:bc:54:96:8f:0f:dd:99:93:42:56:5a:a8:
ff:3c:21:0a:58:5c:fd:de:6c:69:78:fe:5e:1b:14:ea:41:6f:
b3:98:6b:e9:28:3f:6d:d1:6f:e1:8b:c1:09:32:15:13:2f:71:
62:26:29:0c:89:32:36:7e:48:f4:6e:3c:04:03:ac:d2:18:55:
42:21:41:ca:88:9b:25:03:d0:0b:ee:78:c0:44:3c:9d:aa:ae:
06:cd:62:f4:54:14:3a:4b:f9:1c:b0:2b:98:30:ed:3c:f0:de:
2b:3e:78:5b:06:9b:d4:67:aa:2d:bd:f4:f0:6b:c5:8d:97:60:
a0:f5:28:67:1f:3d:13:21:ea:80:18:61:f1:77:8c:c3:c2:ba:
b0:18:d8:46:44:98:6b:df:4e:d7:ad:6f:8a:9f:37:71:85:ca:
41:b0:8c:f3:b2:d7:61:74:97:6b:aa:f4:88:17:79:31:b1:4b:
1a:a5:33:43:6b:25:7a:a8:f8:95:6c:5c:c7:4c:e8:81:22:ca:
54:30:ad:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-fra.rpki-client.org