Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OHA0FwJQiIT4C4ymvM2pMxIstZc.roa
File: OHA0FwJQiIT4C4ymvM2pMxIstZc.roa (raw, json)
Hash identifier: yPYPylPVXZF09hp2Z36fJi39AuTMDE1/pwyH7t4sHag=
Subject key identifier: 38:70:34:17:02:50:88:84:F8:0B:8C:A6:BC:CD:A9:33:12:2C:B5:97
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E17
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OHA0FwJQiIT4C4ymvM2pMxIstZc.roa
Signing time: Tue 29 Sep 2020 09:55:19 +0000
ROA not before: Tue 29 Sep 2020 09:55:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3607 (0xe17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3870341702508884F80B8CA6BCCDA933122CB597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:55:82:5d:21:4b:fe:48:7b:50:a8:08:5c:66:
48:e8:a5:3a:1d:af:d0:6d:7a:e4:51:79:bd:0f:1e:
f3:d6:6b:73:f6:57:9e:18:7e:06:2f:53:43:ce:9d:
d6:1d:e0:5a:72:34:14:2d:d3:12:ae:04:ec:e7:0c:
9e:f2:e1:b5:7f:4e:bd:ed:5f:54:2f:12:82:ea:d1:
07:26:76:0b:c3:56:15:1f:c6:33:e9:2c:8e:a5:15:
8d:cb:af:2e:2e:2d:1f:57:90:71:9e:37:78:2b:4d:
ab:f4:d3:d6:35:85:af:52:72:8e:63:17:d8:96:55:
08:46:bb:bc:47:4f:69:ab:32:b6:90:0f:d9:b5:50:
b6:1f:5a:44:54:9f:fb:ac:61:80:39:04:c3:5a:63:
ab:e3:13:38:80:75:78:26:ad:4a:9f:e2:1f:b7:04:
ad:9d:a6:ba:6c:89:dd:b9:a0:10:00:e4:08:40:93:
bb:52:2f:7a:1a:6c:c9:c5:1a:f3:ba:54:a7:e5:ed:
0c:67:8a:e9:c0:cd:7c:24:5d:65:f6:b6:3d:27:9c:
cc:66:d4:4b:e6:dc:b0:43:31:b2:89:f1:7a:90:a9:
48:0b:e5:d0:73:68:b4:fb:89:2c:e3:d7:1e:d9:3b:
07:b3:51:fa:41:28:10:01:89:8b:5f:a4:3c:26:91:
c2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:70:34:17:02:50:88:84:F8:0B:8C:A6:BC:CD:A9:33:12:2C:B5:97
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OHA0FwJQiIT4C4ymvM2pMxIstZc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.104.0/21
Signature Algorithm: sha256WithRSAEncryption
ba:9e:b5:ed:4e:f9:ce:cb:00:c2:3a:b0:bb:55:30:e6:30:6d:
1a:39:27:da:88:d3:1f:cc:c7:c8:3b:9f:64:52:b3:3b:02:75:
d3:da:4b:87:94:14:78:fd:81:4d:36:01:57:be:41:fb:6d:ad:
69:c2:9c:8f:65:91:77:f4:10:a9:de:04:c0:c6:ee:d9:7c:1e:
71:e7:8f:79:b5:f7:4f:a5:be:1a:da:bc:98:5e:5e:7a:ee:32:
f4:9b:fa:4f:09:5f:21:ad:c1:bf:15:4d:c2:07:fc:6a:9d:f3:
d0:9d:88:b3:d7:a8:22:74:08:42:0c:d0:40:1c:10:2c:db:c6:
94:9b:a1:96:a5:91:16:ae:01:36:86:58:f4:6f:ea:22:bd:e3:
74:1f:0d:49:a8:bb:a6:5a:85:2a:27:45:6d:4f:98:0b:24:2c:
bb:63:4a:40:0f:8f:cc:65:95:67:cf:4c:af:49:f7:fb:b2:c7:
c4:b4:25:f3:c8:2e:8a:10:96:6f:0f:91:a0:11:26:7c:2b:80:
3c:4a:64:03:ee:88:a5:9f:15:f3:3e:67:c7:ea:a7:ea:c9:74:
b3:50:30:f7:f0:17:40:1e:68:1e:cc:d4:42:93:39:a7:f4:30:
d4:d2:0c:b3:ab:02:37:14:1c:10:82:fc:42:00:26:e6:7a:d8:
95:7c:31:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-fra.rpki-client.org