Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QUa_TspUoYK5GWOraC02qMQSSUc.roa
File: QUa_TspUoYK5GWOraC02qMQSSUc.roa (raw, json)
Hash identifier: Ee9l6xpoJUVXYIliW394oK8NWsauipLnGIC6wNtE0+c=
Subject key identifier: 41:46:BF:4E:CA:54:A1:82:B9:19:63:AB:68:2D:36:A8:C4:12:49:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1811
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QUa_TspUoYK5GWOraC02qMQSSUc.roa
Signing time: Sun 07 Feb 2021 12:25:59 +0000
ROA not before: Sun 07 Feb 2021 12:25:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6161 (0x1811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:25:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4146BF4ECA54A182B91963AB682D36A8C4124947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:63:f9:5f:18:76:50:9f:01:3e:64:7c:bc:b8:
ab:80:aa:71:ed:cf:5b:49:4c:80:e2:48:5c:fa:f7:
b3:64:40:9a:b8:60:95:7f:1d:e4:8f:f7:37:1c:bf:
01:57:20:d5:f3:28:fa:ef:4b:2b:be:2d:1a:4d:b4:
1f:f5:27:73:fd:e4:f4:37:32:e7:9d:eb:ff:79:68:
08:80:3b:24:90:be:60:f9:b5:f1:80:17:94:49:db:
01:6d:35:f9:b0:0a:81:49:0f:6e:fc:55:8e:f2:23:
75:d3:19:d1:e5:51:e6:f2:2b:2a:6e:4c:c0:58:5e:
52:48:ac:fe:43:f7:42:c6:aa:ab:8c:c6:04:b6:bf:
74:3f:d5:24:a5:3e:41:af:01:5f:a3:f5:8e:3c:25:
14:2d:f4:45:20:b2:3e:f1:54:f8:45:8a:2b:6d:a7:
af:b4:8f:e7:5b:cf:a0:f8:2a:2e:bf:10:c5:c6:e2:
11:ec:b8:c6:a5:c6:6d:27:bb:43:8b:e0:08:db:80:
d1:ec:61:6e:11:8d:c7:a0:9f:23:f1:92:57:b3:31:
dc:b3:4a:7c:f3:bc:76:ac:94:19:a2:79:19:c6:8f:
08:bb:34:67:d0:1c:5e:ed:e4:63:e4:44:71:64:58:
25:70:06:e8:fb:3e:66:0d:0c:fc:67:b5:22:02:56:
8a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:46:BF:4E:CA:54:A1:82:B9:19:63:AB:68:2D:36:A8:C4:12:49:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QUa_TspUoYK5GWOraC02qMQSSUc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.152.0/22
Signature Algorithm: sha256WithRSAEncryption
91:13:4d:6c:a1:74:52:57:ce:de:74:55:06:6a:2e:03:47:30:
1d:46:62:aa:d9:c2:c0:8f:b1:6c:d0:a5:a1:e2:a5:89:47:7c:
df:c5:1e:ba:e2:6d:80:74:db:1b:56:5a:9c:46:d1:02:6b:5f:
59:7f:ce:49:d6:6d:9a:bf:33:ea:10:0a:5e:45:e9:8c:48:7d:
90:02:0b:b8:be:bf:33:6a:db:c3:34:db:a9:6d:3e:66:36:cb:
23:8c:b1:4e:54:a5:c6:ce:d3:9d:f8:be:11:be:56:ad:9a:f2:
29:c2:0c:1b:40:4b:f6:97:8f:2a:e7:7b:6c:42:16:61:ae:5b:
fd:d7:6a:05:ed:9c:69:31:9c:26:64:ae:40:5a:ca:39:e2:0b:
ec:cb:8e:cb:41:1b:8e:8b:78:47:06:7c:34:c3:79:b7:c6:32:
6d:ba:c7:58:b8:9b:17:d4:68:57:a6:2b:05:5d:45:74:e6:83:
05:bb:c1:13:e8:ca:a1:bb:7e:09:5e:90:0c:ac:c9:da:77:df:
f2:d5:ba:09:6c:5e:cb:fc:49:55:9d:01:4c:7a:92:c4:12:0f:
58:1d:b9:0e:b7:b6:0d:bf:32:90:1c:af:fb:a8:02:b8:a4:cc:
2d:a5:dd:80:db:19:2e:a4:b2:b6:f8:74:d4:d8:17:36:11:05:
50:43:a6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:31 2024 by rpki-client on console-ams.rpki-client.org