Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NqTSFKesRxaTN2V3pckCUp1hirc.roa
File: NqTSFKesRxaTN2V3pckCUp1hirc.roa (raw, json)
Hash identifier: 8jyWzWmiH0ltO9rObDXiPuz8BD+Ga8WLbX0XXBw6bmQ=
Subject key identifier: 36:A4:D2:14:A7:AC:47:16:93:37:65:77:A5:C9:02:52:9D:61:8A:B7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FFA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NqTSFKesRxaTN2V3pckCUp1hirc.roa
Signing time: Thu 24 Nov 2022 04:04:08 +0000
ROA not before: Thu 24 Nov 2022 04:04:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8186 (0x1ffa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 24 04:04:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=36A4D214A7AC471693376577A5C902529D618AB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:98:cf:8b:b0:7b:3c:af:0d:56:4c:29:ff:b7:
ee:b1:9d:18:89:0e:6c:e6:33:52:84:3c:5e:ff:b0:
b4:28:4a:07:9e:ce:3c:d0:8c:76:26:c8:29:7a:27:
48:71:c3:55:e8:67:59:ff:47:93:56:44:d0:dd:d2:
bb:99:66:2a:9d:6d:b2:e7:0f:b3:2a:47:df:a8:97:
5a:e6:ab:be:1c:39:f5:27:41:19:8a:1d:28:51:c8:
11:89:3a:20:fe:7c:69:cb:4c:b8:59:c5:b7:48:bf:
3f:7a:80:58:e2:bb:68:9b:a7:83:96:76:c6:8a:d8:
d6:77:39:7a:40:ea:65:68:43:be:d0:c2:71:7c:bf:
c0:0f:d3:56:3a:a1:89:dd:51:86:64:68:56:6c:8b:
8b:46:33:ae:fa:43:3d:fa:b2:71:a6:79:ae:78:08:
83:84:54:aa:f5:de:43:b4:cd:b7:b4:31:9a:24:9c:
fd:cd:71:84:0f:0e:c4:e6:fc:27:cd:36:7e:94:b4:
e1:20:c7:d3:a0:db:af:c9:ad:f4:b7:c4:0b:f2:3e:
9e:42:88:0a:c5:42:9e:6a:ee:b6:d8:ff:16:b0:8e:
bb:7e:32:b2:bc:81:f0:fb:13:10:10:d8:74:ca:64:
af:8d:90:91:c9:e4:a5:95:a4:5e:73:6c:9e:07:2c:
b6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A4:D2:14:A7:AC:47:16:93:37:65:77:A5:C9:02:52:9D:61:8A:B7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NqTSFKesRxaTN2V3pckCUp1hirc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.152.0/21
Signature Algorithm: sha256WithRSAEncryption
50:ab:7e:0c:83:80:38:6c:93:ef:5e:5d:94:69:20:33:3d:ec:
3d:f8:37:89:3a:af:1e:a3:ea:9f:4a:f5:b0:1d:b7:d4:71:2d:
fc:41:aa:45:e5:74:2e:b5:00:6d:3c:39:22:66:47:e2:6b:2c:
af:87:7e:21:e8:42:80:57:2d:f3:c6:d4:dd:97:ab:04:14:05:
85:5f:d8:bc:ff:ab:4d:e6:19:7d:33:ff:72:81:75:12:79:7f:
19:30:b9:1b:7a:55:46:4c:16:f0:ee:23:78:d2:5b:fa:ee:18:
c6:41:a3:21:cc:ef:48:ba:e7:4f:08:f2:6d:d9:3e:a8:c5:be:
0d:08:0a:42:b6:30:23:0c:0a:5a:d0:b9:3f:4c:8c:22:b0:06:
c7:d7:6a:fb:ef:e2:a6:cb:68:01:7d:1f:4f:fc:ce:96:05:56:
eb:10:ac:42:e6:4a:43:d3:5d:fb:cd:d8:3a:24:a8:35:80:c5:
f6:4e:05:0c:29:19:de:b0:80:b8:51:b6:73:85:1d:1d:6c:26:
52:b3:1c:c3:59:39:82:68:ad:44:db:af:45:3e:0e:60:45:81:
92:d1:8e:4d:60:6b:cf:8d:3b:a8:b3:82:1e:26:c4:30:84:c9:
3c:30:65:1b:60:40:51:f6:2a:84:3a:58:fb:ef:cb:32:dd:a3:
ff:65:9d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org