Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ONun2Y9gF-g20MYlWyFPvrLosUE.roa
File: ONun2Y9gF-g20MYlWyFPvrLosUE.roa (raw, json)
Hash identifier: /Gog3AVFK57nsOfwkeAyDaG+BBQLGCORTQnG13mS6gM=
Subject key identifier: 38:DB:A7:D9:8F:60:17:E8:36:D0:C6:25:5B:21:4F:BE:B2:E8:B1:41
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F5D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ONun2Y9gF-g20MYlWyFPvrLosUE.roa
Signing time: Tue 23 Aug 2022 09:29:40 +0000
ROA not before: Tue 23 Aug 2022 09:29:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.56.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8029 (0x1f5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 23 09:29:40 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=38DBA7D98F6017E836D0C6255B214FBEB2E8B141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9d:bc:51:84:a0:1c:03:8a:78:18:06:86:5b:
23:d6:39:d0:25:12:55:56:69:55:40:55:0c:a5:46:
d8:22:a8:b5:09:f0:3e:fe:e7:ef:55:c7:87:79:11:
53:51:04:d5:97:0f:ce:d7:a4:5a:20:f3:82:7f:9d:
00:40:16:17:d0:f1:19:b0:7a:0e:18:19:de:55:72:
53:40:ba:df:4f:ca:fa:97:ea:d4:c2:2a:ec:d1:2e:
85:12:62:c2:02:1b:99:e4:06:dc:d1:e8:82:93:95:
4f:4f:7f:1b:b0:5f:a4:d4:de:54:27:d5:32:82:dc:
d8:3c:22:4e:18:95:0c:9b:01:03:8e:6b:f9:e0:f8:
08:01:48:56:fb:7b:20:28:b8:48:f5:59:44:5c:68:
d4:8a:d8:99:34:37:c5:5e:b8:45:df:b3:4f:ef:0c:
bb:5a:f7:9e:46:60:9c:c5:f1:e7:0c:0e:42:34:33:
74:00:75:32:2b:06:64:2a:23:17:52:07:b8:b6:bf:
1f:44:5c:ca:b4:83:9a:89:46:15:51:41:25:ea:91:
c6:46:cb:40:30:ef:2a:ae:5f:f5:26:c0:b7:02:d3:
3e:37:21:66:2f:34:54:17:d1:29:bc:cd:04:b6:7f:
74:6f:8e:4d:00:a3:63:49:32:c8:f2:d3:df:44:c7:
7f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:DB:A7:D9:8F:60:17:E8:36:D0:C6:25:5B:21:4F:BE:B2:E8:B1:41
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ONun2Y9gF-g20MYlWyFPvrLosUE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.56.0/21
Signature Algorithm: sha256WithRSAEncryption
40:a0:22:2a:b3:3f:cb:1f:3a:b0:91:76:cb:b4:22:0f:bb:22:
d7:8a:7a:6c:a7:24:b0:40:fd:af:e9:64:c1:6e:79:e4:fe:00:
ff:7c:16:07:c4:97:01:cd:cf:fd:48:db:96:c5:5e:2a:7d:88:
de:4c:9b:48:12:d2:7e:6d:29:04:43:81:77:09:e1:53:39:b0:
73:50:60:76:24:d1:ce:ee:89:83:b7:60:82:80:b3:f8:18:f5:
f6:06:d2:34:21:de:5c:d9:aa:ac:3a:7c:0c:de:34:ae:68:44:
57:71:9d:a1:10:99:4a:15:7d:4d:39:da:bf:28:f2:bc:3e:7d:
fc:6d:9c:70:21:8f:96:44:c3:5e:c5:5c:7a:68:22:fd:81:3b:
81:a3:3f:bd:4a:20:a2:88:12:80:94:71:55:ca:81:7f:60:7f:
6d:70:d5:d9:5f:fd:16:90:b3:e0:81:5a:08:75:fc:78:ac:45:
0f:01:a9:78:b5:5f:71:a2:75:09:f9:de:43:95:68:27:43:1c:
8f:28:36:1b:36:a6:57:b3:54:29:49:5b:d7:e1:e5:27:c8:61:
39:a4:12:f4:b1:d4:9d:50:6f:5b:89:cf:80:07:7c:2d:0d:5a:
e5:70:e0:ef:ef:f2:f7:d6:0f:7f:a6:fd:8c:aa:da:07:3f:38:
ba:2e:57:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-fra.rpki-client.org