Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NZvtntx1dYvy-6pZaZiCwTX1EeQ.roa
File: NZvtntx1dYvy-6pZaZiCwTX1EeQ.roa (raw, json)
Hash identifier: h1WFUagkz8DWadXaQbNTKWMu635kwKEocSHCyNayBYg=
Subject key identifier: 35:9B:ED:9E:DC:75:75:8B:F2:FB:AA:59:69:98:82:C1:35:F5:11:E4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21C7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NZvtntx1dYvy-6pZaZiCwTX1EeQ.roa
Signing time: Fri 25 Nov 2022 04:40:23 +0000
ROA not before: Fri 25 Nov 2022 04:40:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8647 (0x21c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=359BED9EDC75758BF2FBAA59699882C135F511E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9d:1a:c0:a4:22:ef:bc:45:1c:47:5c:24:ca:
53:99:f3:bb:af:66:bf:c8:15:a0:98:07:66:2e:4a:
d8:37:3b:97:87:f0:bb:2a:34:97:eb:d2:fe:9b:36:
af:8f:24:d9:07:54:81:0a:91:7f:4e:f0:4a:22:3f:
14:c7:36:18:1b:02:4e:40:c9:19:6d:95:68:f9:5d:
6d:d5:7f:8a:96:a1:fa:46:a2:5a:cb:61:2e:35:90:
28:c2:5e:4f:0e:39:cd:df:28:c4:4c:37:6c:24:e0:
18:be:b6:43:fb:39:e9:80:9c:74:1b:a7:92:d8:1c:
eb:09:65:25:3c:d3:4e:eb:24:00:57:d9:e2:97:8f:
b5:4d:a8:0a:5a:fb:b0:f4:cd:3c:3e:61:91:f7:f3:
b7:7b:fe:ab:d2:9f:8d:1b:24:85:8e:9a:79:52:48:
08:42:8a:47:73:52:49:c7:19:ac:f6:18:b1:8f:89:
80:bf:49:ef:86:62:68:a3:62:d2:aa:26:18:04:a3:
fb:57:d6:d5:a7:f8:ee:dc:b9:04:4a:d6:b6:e4:ab:
6e:f4:be:1a:2d:2c:b2:6c:ac:f9:5d:74:b7:86:2a:
f9:c2:94:d6:07:5f:1f:42:55:51:60:e2:ba:f8:7b:
ad:61:b2:31:57:fe:48:f0:4a:30:a8:8f:c2:72:ac:
74:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9B:ED:9E:DC:75:75:8B:F2:FB:AA:59:69:98:82:C1:35:F5:11:E4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NZvtntx1dYvy-6pZaZiCwTX1EeQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.44.0/22
Signature Algorithm: sha256WithRSAEncryption
98:31:8a:ef:0d:ea:4f:0a:5c:f6:cd:9e:6c:c2:b1:04:67:48:
c3:ca:93:95:ab:0b:b1:20:34:74:d1:33:44:e3:8b:fd:68:c6:
d8:38:8b:c7:63:3a:d9:48:a6:4c:dd:0b:da:65:f2:df:14:0b:
b5:72:0b:28:84:0d:ab:f7:51:74:44:c8:b6:77:7a:10:e6:e7:
9d:aa:83:e0:66:4c:54:a1:b9:2f:90:95:dc:0d:e4:6d:83:bf:
d8:a9:f2:d0:b7:c5:b6:fd:2d:c8:c1:77:20:1f:04:9f:6c:61:
d2:3c:18:60:ce:97:f5:43:c8:46:59:13:88:96:27:5f:c1:1c:
71:4c:ea:f1:65:b0:38:b8:3c:06:aa:35:94:67:82:5d:fa:d6:
8f:ac:52:61:c5:56:bc:af:fb:f6:eb:5d:2d:24:57:22:1d:e1:
35:75:6b:9e:f4:73:a5:b5:ac:e3:f6:6e:ca:89:5c:f9:d9:71:
f1:9b:78:c7:4c:01:06:c7:97:fe:b9:5c:7f:fa:5d:04:57:79:
74:cd:16:b6:57:12:f1:6e:19:08:30:eb:3a:82:a0:81:ff:37:
aa:8f:68:01:13:9c:2c:74:b7:6d:4f:bd:8e:7f:ab:f8:8a:cb:
b1:d8:4f:ef:1e:78:19:6e:c2:79:61:42:45:20:03:b9:ae:76:
8d:6f:e8:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org