Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ok3lbGNtG6KuVYi4EpuIRRBiIlo.roa
File: Ok3lbGNtG6KuVYi4EpuIRRBiIlo.roa (raw, json)
Hash identifier: wusE506JfXkf/krr4EEm/+WzptDzwFbyjpN2nzJx65A=
Subject key identifier: 3A:4D:E5:6C:63:6D:1B:A2:AE:55:88:B8:12:9B:88:45:10:62:22:5A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C23
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ok3lbGNtG6KuVYi4EpuIRRBiIlo.roa
Signing time: Wed 29 Sep 2021 02:47:24 +0000
ROA not before: Wed 29 Sep 2021 02:47:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7203 (0x1c23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3A4DE56C636D1BA2AE5588B8129B88451062225A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e4:27:fa:47:21:4a:5c:86:03:c5:f1:5f:02:
9b:d2:ae:18:a7:76:ba:91:cd:d5:00:be:62:13:ba:
e3:16:62:17:82:18:0d:d6:dc:57:4f:05:c0:05:cb:
3f:22:49:2a:89:39:b8:aa:ea:53:ac:0a:53:e8:be:
b6:4c:29:5c:9f:2d:d9:ec:92:99:44:38:0e:1b:30:
b9:45:33:d5:4b:1c:34:e1:98:62:ba:b4:af:37:63:
24:23:79:6f:a0:43:52:4c:1e:5a:c7:00:9c:b5:e5:
db:54:0a:61:2e:79:ee:59:21:1c:5d:c7:2d:e0:c2:
37:f1:3e:17:a2:e6:4f:55:38:f4:44:1a:ac:d4:1e:
d4:44:2b:06:91:01:15:52:3b:c2:be:4f:d0:ef:0c:
ce:f3:03:b7:f2:f8:2f:a0:39:cd:da:87:a9:ba:62:
ce:0b:37:72:22:c8:a6:2b:ff:20:90:15:a3:a4:94:
e5:a0:d9:40:0a:a4:d8:38:ad:58:83:84:e3:18:95:
e5:0d:fb:4c:18:b4:b5:20:cd:43:40:e6:54:34:0a:
f4:c6:d7:b2:07:2e:4f:07:14:27:3f:2d:b2:65:12:
ef:74:48:f9:5b:34:5e:7f:97:6c:81:2e:a1:9a:a4:
36:47:43:85:7f:2a:b5:b8:91:4c:41:43:9d:f6:57:
05:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4D:E5:6C:63:6D:1B:A2:AE:55:88:B8:12:9B:88:45:10:62:22:5A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ok3lbGNtG6KuVYi4EpuIRRBiIlo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.72.0/22
Signature Algorithm: sha256WithRSAEncryption
42:78:08:89:6b:d5:27:3c:13:73:0b:56:55:17:f2:57:6c:db:
c7:0e:e4:a3:28:b8:c0:14:97:9e:53:1f:4d:98:e5:bd:60:e7:
39:c3:c1:dc:d2:89:7f:16:0e:16:f1:58:d5:3a:72:31:b5:30:
f4:c5:2e:c6:e7:06:c0:f2:53:b3:47:c4:85:71:4a:34:33:09:
c5:bd:6e:25:cb:51:af:0c:8a:b9:71:72:35:8c:3a:27:e3:0b:
b6:6a:cd:f1:40:27:23:9f:2d:ae:2f:de:3d:d9:65:b5:d8:f1:
5c:16:8d:08:4f:b2:47:43:a4:96:32:98:76:dc:a0:d4:5a:38:
b8:e2:05:da:ba:11:23:e9:bc:bb:bd:05:62:cb:c6:29:f0:9f:
cb:08:2b:b7:0e:bc:67:0e:a2:6c:e3:7c:23:b9:11:5d:1d:6d:
f1:e3:39:0b:46:6e:52:59:59:60:5a:58:a5:a3:8d:50:6f:ce:
89:2d:2f:8e:76:50:2e:09:b1:ea:11:96:3c:3f:9a:c9:b8:ad:
88:87:63:33:1f:52:1c:62:90:81:7c:05:18:9e:ea:14:2c:48:
7d:0e:14:a4:09:4e:71:a1:0a:2b:23:ae:5e:e6:20:ab:73:9e:
5b:92:e8:5c:3f:57:96:00:c4:d2:32:1e:81:18:30:07:a9:c3:
aa:a0:34:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org