Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PFCGBYjjB6T2uXjUOQlKfh6QqXc.roa
File: PFCGBYjjB6T2uXjUOQlKfh6QqXc.roa (raw, json)
Hash identifier: 2aToIC6o0wnR8FQ6nG1RQc9FQLmBY/IbNSf2GfHLGb0=
Subject key identifier: 3C:50:86:05:88:E3:07:A4:F6:B9:78:D4:39:09:4A:7E:1E:90:A9:77
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 202F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PFCGBYjjB6T2uXjUOQlKfh6QqXc.roa
Signing time: Fri 25 Nov 2022 04:38:25 +0000
ROA not before: Fri 25 Nov 2022 04:38:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8239 (0x202f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3C50860588E307A4F6B978D439094A7E1E90A977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ed:91:88:5f:c2:eb:27:76:48:b6:7b:50:f3:
34:1a:c3:79:b6:72:60:82:79:be:7b:a8:53:30:ae:
6b:69:85:7c:05:9c:2d:06:53:06:a4:8c:bf:2b:9f:
52:d4:0d:64:62:b7:b8:56:8e:43:41:6e:71:a3:77:
cd:af:ed:cb:35:26:5d:a2:bc:ad:c2:e1:6a:b3:4e:
d8:f5:4d:1e:54:a5:c5:e4:31:fd:bc:1c:39:cb:38:
d5:12:10:5f:ed:d7:74:08:fb:2e:81:6e:bf:0f:ca:
fb:3a:0a:dd:34:fd:63:ec:69:f2:f1:52:47:8b:80:
a5:61:22:8a:1a:3b:64:c5:fd:d8:62:51:e6:3a:54:
f3:fc:9a:ae:9c:37:a4:1f:6c:8f:40:c9:cd:c3:2b:
a2:0a:d9:c1:71:00:a9:60:49:4e:7e:34:40:00:e7:
51:1c:d2:07:dd:42:aa:3f:23:87:6a:aa:f2:e7:e4:
c0:27:a2:c3:1b:3b:9d:c6:4e:da:d1:fb:92:19:ad:
81:a5:ad:ef:17:8e:6c:1f:dd:89:d2:c8:3c:93:83:
2e:c9:7a:85:b1:f5:26:b2:b7:6e:91:31:3a:cf:cd:
c1:89:10:b9:3a:e7:af:2c:48:a5:c3:54:b8:90:57:
37:35:9d:1d:4f:72:a9:e8:15:ff:e2:56:9d:eb:18:
94:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:50:86:05:88:E3:07:A4:F6:B9:78:D4:39:09:4A:7E:1E:90:A9:77
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PFCGBYjjB6T2uXjUOQlKfh6QqXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.28.0/22
Signature Algorithm: sha256WithRSAEncryption
97:cb:6e:3e:e7:13:8b:26:e0:53:fa:13:9b:46:18:16:02:82:
34:4d:9b:05:d6:1b:cd:f1:df:a5:9b:a6:d2:86:d9:cc:2a:99:
1f:fb:9d:bd:da:fb:f1:89:44:b9:59:a4:26:0f:68:2d:e7:e0:
9d:84:45:6b:45:75:9b:e0:5c:99:40:74:c1:24:ef:26:33:5b:
93:ff:5d:4d:63:cb:88:f1:7d:d7:79:17:70:0a:a5:e0:b6:b2:
00:88:7a:a0:6f:55:49:80:71:12:ff:30:f7:bb:b4:68:7e:59:
c3:ac:3f:bc:e3:61:79:a8:25:24:4c:73:e6:9b:94:4f:16:f1:
0e:78:84:35:80:86:d6:2c:e3:43:2c:2e:25:c2:21:36:06:ea:
34:24:10:ec:b9:3b:9c:dc:c0:9f:96:91:1c:e2:26:20:73:eb:
81:42:14:aa:9b:c6:28:75:6f:31:c4:cc:4f:a1:73:3d:d1:03:
a4:28:03:c7:67:2e:fc:05:2f:fd:3e:28:fc:43:a7:d5:03:21:
b7:b9:37:bd:c9:5c:c5:f9:21:2d:9b:39:20:e3:8c:ed:de:75:
1a:61:bd:af:d6:6e:e7:af:29:38:2c:9a:9c:42:57:2b:f6:21:
c2:0b:cc:97:0e:fe:03:4a:97:b4:f5:e7:37:58:24:6b:64:dd:
cd:c3:23:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org