Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OwVatnwile7NrXujygrQoQW3dug.roa
File: OwVatnwile7NrXujygrQoQW3dug.roa (raw, json)
Hash identifier: 3ResPPZ3Eyspn11JX5beikPt+T2OG/V+rITUSek1hxo=
Subject key identifier: 3B:05:5A:B6:7C:22:95:EE:CD:AD:7B:A3:CA:0A:D0:A1:05:B7:76:E8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A8B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OwVatnwile7NrXujygrQoQW3dug.roa
Signing time: Wed 29 Sep 2021 02:45:28 +0000
ROA not before: Wed 29 Sep 2021 02:45:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6795 (0x1a8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3B055AB67C2295EECDAD7BA3CA0AD0A105B776E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:22:20:fc:ed:79:b9:f0:64:d5:9e:06:a8:94:
f0:38:a0:2e:e6:70:97:2e:6c:4e:db:1e:72:ae:b3:
ef:a2:66:49:3f:55:3e:e7:e0:0f:35:45:b5:a3:66:
d7:74:c2:03:6d:1c:05:43:b2:d2:ee:ac:b4:1b:ff:
ba:c9:a7:47:8c:82:78:59:d3:2d:f2:05:6f:89:75:
34:a1:d2:0a:f5:a1:46:61:4b:02:ae:28:54:91:0d:
9e:6f:bd:0f:ec:a0:22:77:e4:d4:d7:86:e5:00:97:
51:df:ef:e7:c0:78:98:a2:a9:7d:b5:c2:9d:96:ff:
9f:2e:dc:b0:07:56:9d:17:f7:42:28:21:9c:ab:bf:
1b:6d:76:e6:a2:08:fc:a0:dc:7b:e2:99:e4:38:99:
a9:40:f1:7a:4d:d9:88:24:da:61:46:1a:79:8a:62:
d1:b6:4b:b9:a4:7c:9a:64:fe:a7:6b:64:b7:54:f1:
20:4d:a8:94:6a:7d:f0:7a:41:8d:eb:64:79:3a:ea:
65:1a:2e:d3:14:49:19:3b:07:95:a2:ba:55:d6:0f:
fc:46:e0:5c:e4:9a:23:d8:dd:99:e8:53:5e:75:75:
89:89:74:e2:f0:9f:3c:c0:52:3b:6b:b4:1a:2c:a8:
77:b8:9c:ba:3b:15:48:99:ce:c5:f9:cf:49:d8:3a:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:05:5A:B6:7C:22:95:EE:CD:AD:7B:A3:CA:0A:D0:A1:05:B7:76:E8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OwVatnwile7NrXujygrQoQW3dug.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.72.0/21
Signature Algorithm: sha256WithRSAEncryption
68:7b:8d:c7:66:85:00:ba:31:23:93:5a:07:4d:d3:a9:aa:2d:
b2:73:2b:03:4d:bc:bb:71:3d:c7:89:b8:f0:f0:a1:a7:9e:1a:
cd:32:65:16:59:5b:7a:b3:1d:7a:0a:6e:27:33:ec:15:87:53:
44:e5:68:9c:24:b3:87:c2:2f:39:17:3b:95:0f:d2:4a:8c:76:
4e:8f:6f:0b:d7:bd:37:a1:bf:8e:fb:36:80:dc:d5:3f:03:39:
fc:40:15:d4:0e:da:83:7d:84:8c:89:29:0f:77:b2:cc:2b:ef:
35:18:45:f5:3b:09:4c:b1:5e:41:5e:95:93:ee:d2:74:cf:80:
ef:39:cd:ff:5d:22:03:4d:92:42:14:01:43:eb:3b:6b:89:53:
b4:af:a5:66:78:0c:a8:1c:31:64:95:83:ea:d3:a2:4e:cf:b2:
43:60:c5:e0:19:5a:ff:30:30:a2:51:d5:3f:ee:1b:8d:94:6e:
77:0f:7c:22:ed:9e:b2:fd:fd:8c:70:55:82:2d:7e:e6:80:d1:
02:a0:ca:73:2b:3c:ad:8e:51:38:49:50:a4:04:37:9f:80:30:
d2:e9:15:a0:88:19:09:8c:66:84:94:01:1f:12:9a:9c:3d:b0:
1e:f8:51:a3:c6:6d:41:a6:06:d9:34:4a:22:92:17:57:6a:b7:
40:74:fc:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org