Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OLenNWnUotSw6IddY9Vdfw0KVW0.roa
File: OLenNWnUotSw6IddY9Vdfw0KVW0.roa (raw, json)
Hash identifier: 8kwQEuH6jbmiHP/4s7fq8iu3ww0pcAL+le6wA/Hqmzg=
Subject key identifier: 38:B7:A7:35:69:D4:A2:D4:B0:E8:87:5D:63:D5:5D:7F:0D:0A:55:6D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C30
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OLenNWnUotSw6IddY9Vdfw0KVW0.roa
Signing time: Wed 29 Sep 2021 02:47:27 +0000
ROA not before: Wed 29 Sep 2021 02:47:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.240.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7216 (0x1c30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=38B7A73569D4A2D4B0E8875D63D55D7F0D0A556D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:db:90:41:e2:96:72:80:e6:71:c3:3a:1d:a2:
ab:2d:e6:2d:a5:d1:6c:23:0e:d1:f9:b3:b6:2a:78:
94:32:54:53:16:d6:7b:e3:48:be:fc:47:ab:05:98:
e7:fd:71:b6:09:8c:00:fc:4f:f2:a2:c3:47:20:b6:
0a:70:85:e6:0a:5d:75:e0:19:6b:b2:7b:ba:5f:ff:
6a:c0:4a:ea:20:c1:49:95:ef:68:53:33:3a:31:73:
5f:44:38:f6:81:c8:41:44:ac:98:14:75:20:e9:a5:
df:b6:b0:6a:e3:2b:97:cc:65:ed:d0:5e:fe:20:aa:
30:cf:22:b9:cf:8a:d5:73:90:dc:e8:fc:81:3f:a1:
9c:69:2f:65:64:84:85:b8:00:f2:a6:5d:09:6a:be:
35:a6:20:74:5e:8f:5e:14:58:da:e4:b8:72:25:3a:
f9:ab:65:29:b0:10:5d:0d:5e:fc:cb:3a:0a:28:6f:
be:f9:d3:b2:ae:fb:ad:e6:c2:16:26:fa:b4:ed:70:
b0:7c:17:17:52:e3:dd:e9:1e:71:51:32:57:40:67:
56:73:ea:40:97:2b:0b:d2:2b:05:a9:0d:f3:21:0f:
7c:61:8b:52:e0:b7:49:bb:1e:03:89:09:f6:cd:a9:
e8:04:dd:52:f1:53:75:6a:a0:d3:8b:a8:67:94:df:
93:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B7:A7:35:69:D4:A2:D4:B0:E8:87:5D:63:D5:5D:7F:0D:0A:55:6D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OLenNWnUotSw6IddY9Vdfw0KVW0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.240.0/23
Signature Algorithm: sha256WithRSAEncryption
88:49:34:16:6c:6b:3a:95:31:0a:73:04:b2:06:69:27:99:e9:
88:c7:79:6b:f5:75:dd:9d:8f:1e:3c:7f:c5:6c:d6:d6:6f:85:
8d:2f:c5:74:69:79:1e:c8:db:eb:02:2d:60:62:89:eb:60:ac:
6b:eb:2a:8d:43:09:5c:1b:b5:78:c1:60:dc:07:b6:b5:8f:0b:
c5:1d:04:59:bd:f9:e4:68:5d:16:48:78:21:ca:a7:37:be:12:
f8:fa:22:a6:1e:4b:97:0f:ac:7f:08:14:3e:d5:f2:d4:1d:ec:
0d:e6:90:86:1b:21:64:31:75:2b:4b:6f:f0:de:c7:d9:6b:6a:
f8:3c:ec:1c:3b:63:f9:40:63:78:c3:6c:08:f1:28:5d:a8:41:
02:c8:9a:5f:7e:bd:5c:42:45:95:5e:3e:6d:dd:4f:8e:d6:6f:
54:47:9d:41:4b:81:8d:11:35:1b:d9:e4:7f:5d:3f:1f:ac:46:
69:5a:9a:13:03:94:03:01:10:d9:21:c7:08:4f:5d:ab:bd:83:
8f:c7:59:fb:3b:9d:20:c9:6b:36:0d:15:12:6a:77:23:dc:79:
73:e7:6f:33:fc:16:21:a4:aa:55:92:68:06:f3:ad:89:7c:96:
7f:44:00:98:4c:cd:27:b7:36:69:86:ea:95:44:e7:53:5e:8e:
26:9a:4b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-fra.rpki-client.org