Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PwvRo2SRGsaLnYrFOwMhEru0gQI.roa
File: PwvRo2SRGsaLnYrFOwMhEru0gQI.roa (raw, json)
Hash identifier: VTRVN4spOlcb8Ks0algRZ/vvDOsYhX+BZhjqfdqV8bE=
Subject key identifier: 3F:0B:D1:A3:64:91:1A:C6:8B:9D:8A:C5:3B:03:21:12:BB:B4:81:02
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C87
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PwvRo2SRGsaLnYrFOwMhEru0gQI.roa
Signing time: Wed 29 Sep 2021 02:47:53 +0000
ROA not before: Wed 29 Sep 2021 02:47:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7303 (0x1c87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3F0BD1A364911AC68B9D8AC53B032112BBB48102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:93:ce:50:a1:e6:48:6e:05:5c:a4:fa:ea:83:
6d:5f:53:60:7d:7a:a9:f5:b4:4b:ae:43:5c:61:36:
f8:8b:c4:12:40:e0:20:8e:bb:bf:75:a0:33:f0:45:
af:bf:86:86:73:4b:ac:47:9d:0f:0d:0d:58:2c:2c:
32:25:91:93:7f:22:d8:d8:98:e3:c2:97:eb:59:b9:
b3:36:3e:d9:91:af:be:e5:05:69:34:74:c1:ce:e4:
6c:55:f4:74:ee:51:4a:9d:1f:71:f2:73:45:57:09:
e4:8c:0d:92:50:2c:87:17:d9:02:32:6f:75:cb:cc:
7a:8a:c3:4c:aa:f3:79:17:50:42:39:12:ab:cc:e9:
08:78:49:24:e9:0d:11:65:12:46:17:b4:06:ca:e8:
c1:c7:20:9e:b5:dd:e0:c2:1f:2d:dc:f3:c1:de:30:
92:77:2b:50:1c:dc:d3:ce:ee:47:91:6d:74:8d:01:
84:76:da:60:ec:26:d2:ca:7b:a6:16:48:a6:fb:bb:
ef:7c:a6:d3:a2:1d:b1:35:af:40:08:ea:ef:a3:08:
a7:86:58:8c:bd:58:df:7d:f1:7c:f4:45:f0:dc:a8:
02:ed:4e:b2:78:bb:41:95:98:c3:a1:08:57:cf:d8:
28:ed:3a:18:b9:4c:28:c8:0c:7a:fb:c6:96:b9:d6:
27:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0B:D1:A3:64:91:1A:C6:8B:9D:8A:C5:3B:03:21:12:BB:B4:81:02
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PwvRo2SRGsaLnYrFOwMhEru0gQI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.168.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:16:ec:4d:14:de:df:c4:ef:6c:a8:e4:74:3d:2c:a5:fe:e0:
19:7e:5b:03:40:18:15:e7:da:e3:8f:42:f1:7b:55:59:ba:ab:
4b:47:06:8b:a9:d3:93:7a:ef:7b:d2:b1:46:f8:c4:9c:ea:93:
f3:06:85:6b:61:b4:67:03:8c:80:83:53:77:50:5f:95:86:30:
bb:91:ce:4b:1b:c8:20:2a:57:12:e7:c6:1f:89:4a:04:b3:c3:
f5:e5:e9:70:6b:cf:49:c8:78:f3:37:b4:92:50:af:5a:51:df:
3a:39:c1:26:3f:e2:98:55:f8:74:38:fd:71:33:ff:c0:10:a2:
67:42:e1:41:c6:c6:7f:60:3b:1d:9d:18:dd:fb:ae:fb:9b:24:
1d:ea:77:a5:96:13:3d:99:85:e0:41:82:ca:30:fe:c4:af:a8:
c7:12:f1:34:e4:15:26:30:3e:19:97:63:71:5d:17:6c:be:22:
ae:e0:aa:58:b9:b1:04:bb:ee:a3:84:db:56:9d:26:a9:09:85:
74:1a:0b:41:e9:09:88:a4:32:35:8b:ef:06:42:20:29:e5:6e:
dd:66:d7:21:da:ed:c6:e0:66:28:77:2f:ef:c6:cd:e5:41:4d:
6e:06:6a:13:89:50:f3:d3:c5:c6:27:d4:43:3d:4b:2d:5b:a0:
5a:cd:9e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org