Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NyAhydyAadgtURka-T1E986UeTM.roa
File: NyAhydyAadgtURka-T1E986UeTM.roa (raw, json)
Hash identifier: p9MHwaoUEn0Cpd5oG4WkCNf2P/LrsAdRHwcooJGgXzg=
Subject key identifier: 37:20:21:C9:DC:80:69:D8:2D:51:19:1A:F9:3D:44:F7:CE:94:79:33
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C85
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NyAhydyAadgtURka-T1E986UeTM.roa
Signing time: Wed 29 Sep 2021 02:47:52 +0000
ROA not before: Wed 29 Sep 2021 02:47:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7301 (0x1c85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=372021C9DC8069D82D51191AF93D44F7CE947933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:86:0e:26:48:22:58:ac:57:59:a5:4d:aa:ae:
ff:f2:3d:c2:c5:8b:3e:a5:7b:e4:5d:c4:a8:6a:f1:
46:9c:89:a6:22:3e:57:81:45:36:ad:06:53:2f:d6:
19:5a:6e:b3:b9:e5:ac:3f:30:aa:b5:10:2d:c5:8b:
2b:49:39:a5:29:e8:a8:d7:0f:67:98:d2:bf:fd:ca:
97:99:bd:5f:1b:b0:27:06:5b:c8:a2:1a:2f:34:c9:
48:f6:06:4f:e4:6d:9b:44:bd:95:7b:07:fc:26:11:
2a:58:e3:32:7b:41:b9:86:6c:85:bc:7e:a3:82:79:
68:12:f9:85:32:82:2e:a5:e0:96:e2:0d:5a:0e:a2:
77:4d:bc:b5:30:3e:73:9e:fa:e2:d3:2c:92:2d:bb:
d4:ca:0b:b7:73:0c:90:6b:5c:9f:95:f7:8d:85:5e:
60:83:ee:de:4e:bb:bf:4b:06:40:a3:77:f1:84:20:
75:f9:90:6c:a4:9b:0f:a7:a2:cb:32:b9:aa:af:67:
89:65:46:6a:75:95:0d:bf:8c:04:e4:d4:f8:53:ce:
d7:b9:e4:22:30:cd:d3:d4:80:2a:5d:5d:b5:b0:90:
03:4a:51:16:ea:97:a4:9f:09:62:0f:b0:bf:5f:c8:
c0:b3:49:f5:a5:93:dc:ed:e5:e9:cf:3c:a1:e5:e3:
57:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:20:21:C9:DC:80:69:D8:2D:51:19:1A:F9:3D:44:F7:CE:94:79:33
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NyAhydyAadgtURka-T1E986UeTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.96.0/21
Signature Algorithm: sha256WithRSAEncryption
82:9e:54:d3:d6:97:7f:5e:ca:dd:43:f4:f0:a4:bd:9a:76:a8:
7c:02:59:17:19:c6:c1:ff:32:f4:83:27:d8:16:8e:cf:38:e4:
23:77:6c:c8:3d:38:08:5b:4a:26:c1:d4:72:b0:d0:fb:68:d8:
d2:c8:ee:04:c5:35:b9:f8:7b:c3:e9:03:89:f8:da:8b:b1:6f:
b4:6f:7c:f4:d1:da:95:7d:43:cf:c1:d0:1b:cc:f2:c9:d0:7a:
6f:0a:1a:be:4b:8f:a7:22:d8:fe:f4:17:8f:dc:ef:e1:a6:c3:
2e:b5:38:83:13:12:4d:47:46:7a:85:ab:20:51:ca:52:4c:bd:
31:67:be:7e:17:77:98:b3:b9:94:6f:e5:a0:cd:dd:bc:ec:79:
d9:b4:19:be:90:11:2b:04:51:34:ad:da:01:74:7c:82:ad:ea:
8b:d7:c4:f8:ac:69:f6:63:07:42:b1:d0:90:97:e6:30:55:e0:
de:6e:42:a1:ca:25:46:dc:3b:e0:91:98:d6:3f:83:76:b8:82:
64:cc:3b:61:e6:1f:25:0a:1b:9b:91:84:f2:b3:2f:92:13:53:
bf:ff:e1:f9:34:25:dd:08:01:4b:cc:8c:cb:dc:9c:fd:28:92:
ac:12:0a:ed:64:9a:fc:fd:5b:3e:bf:ae:03:0f:32:1c:7f:ce:
03:dd:cd:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org