Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OkyS6CwZYwnoXDydkfs-cudMt2U.roa
File: OkyS6CwZYwnoXDydkfs-cudMt2U.roa (raw, json)
Hash identifier: 7NbrZo/SCDOHIphXnkqkme4ZmUfQJzNeYfbR9jfkfmw=
Subject key identifier: 3A:4C:92:E8:2C:19:63:09:E8:5C:3C:9D:91:FB:3E:72:E7:4C:B7:65
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C51
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OkyS6CwZYwnoXDydkfs-cudMt2U.roa
Signing time: Wed 29 Sep 2021 02:47:36 +0000
ROA not before: Wed 29 Sep 2021 02:47:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7249 (0x1c51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3A4C92E82C196309E85C3C9D91FB3E72E74CB765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:94:7b:49:c9:67:7f:13:64:69:d0:2f:3a:7f:
56:43:d2:b1:00:ef:e0:d8:1e:f2:03:27:3f:99:83:
67:59:7b:25:71:24:d5:90:ec:0f:04:a7:a1:45:a6:
a5:d7:0d:6a:ee:15:68:e5:98:62:84:8c:46:b7:65:
1a:b9:ef:38:8c:71:a8:04:31:b1:79:b3:3f:b5:5c:
63:1b:13:55:88:73:e9:2b:36:fa:cb:b2:a7:46:06:
e7:76:84:4f:d7:ee:4d:bf:26:fe:1a:8b:3c:f2:b8:
10:b0:cc:7a:a5:4f:0f:e1:ea:05:6c:0f:c5:92:1d:
6b:4d:79:73:5e:7b:87:87:4b:2f:ce:2c:3b:a1:5d:
1a:bb:a0:8a:07:00:33:aa:75:94:bc:b2:5a:d8:ac:
fe:20:7a:05:79:df:51:02:9a:b2:79:f1:8a:b3:e1:
cf:1c:9f:4a:f7:3f:29:d1:dd:e6:04:47:07:e7:29:
c0:a6:f6:b2:21:3a:28:5b:e8:10:0c:67:75:de:63:
6b:55:a2:df:ad:79:b0:c7:39:ea:dc:d6:83:db:de:
f0:37:13:b9:4c:67:e3:d0:e8:44:ce:10:84:74:de:
26:38:4e:c7:f4:a9:b1:da:8e:18:70:22:0c:b4:eb:
e2:df:9d:d4:61:b3:75:d9:7b:cc:de:6d:83:6e:a9:
d9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4C:92:E8:2C:19:63:09:E8:5C:3C:9D:91:FB:3E:72:E7:4C:B7:65
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OkyS6CwZYwnoXDydkfs-cudMt2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:f0:11:20:a1:7e:db:54:5d:27:d3:98:12:da:10:fa:aa:b4:
19:a0:6e:2c:b7:df:39:7d:4a:10:85:e8:b1:3b:d2:e2:9d:02:
77:46:48:ae:62:5c:b1:1e:5e:2e:58:aa:6f:c4:82:ef:8b:5f:
0b:73:43:8b:fa:80:37:a3:09:c5:43:5a:9f:0b:e7:96:5f:7d:
b2:1b:8a:66:43:e0:85:2d:8c:93:bb:9c:bd:d8:b1:91:b9:db:
f6:1b:35:49:17:bd:a8:32:5e:92:48:72:ce:97:fd:47:e9:cd:
b3:21:2f:d3:01:7e:2d:d8:8e:34:a9:8a:c9:de:9e:02:bf:56:
bd:73:e6:b2:a7:59:3a:ba:6a:3f:78:f7:8b:d0:2b:09:d1:a3:
8e:e6:5f:56:d5:32:a2:17:5d:9e:db:2d:f2:39:69:3e:4e:30:
ec:2a:e7:fe:b6:1a:c5:90:fc:b2:f5:ba:a1:b6:c4:bf:1f:4c:
65:30:ac:98:bc:11:b3:1c:6c:68:13:d2:45:b3:48:e3:41:4a:
b1:65:a6:15:78:05:d4:9f:c8:06:8a:b5:1f:bc:c8:d1:6c:8d:
da:ab:58:8f:e2:48:fd:74:44:f1:c5:92:b3:bc:3c:aa:5e:73:
08:55:61:b1:7d:a1:d7:ab:de:a5:80:d8:5e:c0:65:e9:d2:b0:
54:13:13:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org