Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PiXUv3hJar1NVfJLM6XsVHV6EdQ.roa
File: PiXUv3hJar1NVfJLM6XsVHV6EdQ.roa (raw, json)
Hash identifier: 4MaPCDuLeAbYxX85o4+SDZ/qCTuDVCeM19GFwM1rqM8=
Subject key identifier: 3E:25:D4:BF:78:49:6A:BD:4D:55:F2:4B:33:A5:EC:54:75:7A:11:D4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PiXUv3hJar1NVfJLM6XsVHV6EdQ.roa
Signing time: Thu 15 Sep 2022 02:45:47 +0000
ROA not before: Thu 15 Sep 2022 02:45:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.234.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3E25D4BF78496ABD4D55F24B33A5EC54757A11D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:18:6b:73:bb:fb:7a:73:02:df:bc:57:e8:7b:
67:b9:c6:78:34:53:f2:76:12:7c:90:d6:5e:2c:a7:
0f:8b:6a:2a:77:fd:b1:6d:d1:07:84:5a:c7:c1:36:
d5:1a:7c:24:a4:0f:ad:09:5e:ca:9d:08:c9:c0:02:
42:77:22:e3:76:ed:b3:5b:92:b2:f4:02:9d:db:14:
19:5f:7b:e5:e6:c6:56:92:88:74:8d:47:e9:1f:7a:
5d:ec:13:79:73:67:d3:58:b6:7d:1e:4f:b1:93:da:
dc:41:bb:ca:19:95:85:14:fc:17:ac:1b:d1:74:ee:
8a:c2:9f:a8:93:f6:5c:eb:27:89:ce:70:2d:db:67:
1a:a6:82:5f:e4:99:fc:a2:5f:e2:26:7b:82:50:81:
57:59:e3:48:ab:88:a4:7d:ba:b1:61:d9:72:19:b2:
10:76:f5:25:f9:9b:3e:45:46:62:f1:1a:ce:8d:a7:
77:5b:7d:a4:80:71:61:bf:58:76:a3:96:c3:39:11:
da:8a:62:5b:c7:2f:3b:65:f8:84:8b:6d:2a:e2:ce:
0c:f1:fa:a7:da:93:1c:2a:5f:f9:67:1f:14:bc:cc:
e4:df:20:6d:80:92:8c:42:50:ed:62:75:cb:46:bf:
55:f8:fc:ea:79:ca:c3:5c:d1:8b:0c:80:57:8b:d8:
12:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:25:D4:BF:78:49:6A:BD:4D:55:F2:4B:33:A5:EC:54:75:7A:11:D4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PiXUv3hJar1NVfJLM6XsVHV6EdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.234.0/23
Signature Algorithm: sha256WithRSAEncryption
47:5c:53:53:15:ca:ed:97:47:66:59:6c:e5:75:9e:3a:b4:fe:
75:84:2c:36:1d:f0:1a:6e:ba:67:dc:31:a2:d2:40:a6:e1:6e:
04:06:8f:ab:ba:6e:81:61:da:3f:d7:47:d4:31:2e:4e:31:fe:
42:71:61:a6:32:61:b1:dd:16:aa:82:ed:7b:53:d4:fc:46:77:
0a:bc:3e:40:9c:25:39:d6:26:3c:c4:99:22:bd:6d:a3:42:3f:
af:14:4f:31:0a:45:f3:1f:ce:26:74:e2:84:aa:aa:5b:f5:0a:
ad:3a:5c:0e:2e:00:d1:59:e6:9e:d7:7e:03:6b:d5:e3:30:ae:
f6:be:3e:c9:c5:f8:18:36:bd:ee:33:74:49:9f:95:11:e2:4c:
5d:18:67:13:7c:a7:fc:fa:22:6b:44:c4:4d:c7:1b:7c:18:35:
96:33:ab:1a:52:40:bc:7f:3e:da:88:9e:c1:04:4a:b0:e8:84:
03:33:b4:a4:2a:03:7f:8e:99:c5:32:45:51:9d:39:25:c9:5e:
d9:99:69:97:04:80:c4:14:bf:a1:b1:b3:4e:00:ca:55:fd:2e:
31:9a:47:ea:6e:3b:34:37:9f:81:3f:ac:81:cd:f9:47:9a:0c:
bb:fe:c4:40:7f:f7:3a:07:98:bb:b1:71:12:19:4a:75:ee:36:
ea:b4:b1:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org