Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RHYo5zW70jB_oFxZynxB7D8Lu6k.roa
File: RHYo5zW70jB_oFxZynxB7D8Lu6k.roa (raw, json)
Hash identifier: Eyk2ryXNX9nFyFvGp/571P1eV+Gg7ACJ6Sx6CTfJV48=
Subject key identifier: 44:76:28:E7:35:BB:D2:30:7F:A0:5C:59:CA:7C:41:EC:3F:0B:BB:A9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RHYo5zW70jB_oFxZynxB7D8Lu6k.roa
Signing time: Thu 15 Sep 2022 02:53:18 +0000
ROA not before: Thu 15 Sep 2022 02:53:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=447628E735BBD2307FA05C59CA7C41EC3F0BBBA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7d:41:35:55:a2:75:76:1b:68:cb:eb:db:15:
7c:6e:c1:cb:d0:2d:1b:a1:2e:c1:f8:24:be:1f:6f:
74:6c:ed:91:c8:c4:25:e2:c3:d8:92:dd:8d:08:e1:
ed:b1:7b:53:47:71:92:6b:cc:99:80:90:07:c5:ba:
5f:f3:8b:63:fe:15:00:a5:24:32:fc:30:d4:11:ab:
27:57:b4:4d:67:10:94:eb:5a:67:be:c6:60:fb:ea:
3c:e6:6e:74:9d:7e:be:28:94:95:b5:21:79:50:13:
02:38:c7:2c:4a:5f:2e:69:ec:d6:53:cc:96:e7:61:
62:dc:f8:d0:9b:c3:77:5d:a3:36:c4:af:de:b9:8a:
e1:62:a0:9d:60:7c:3a:2a:ad:2b:5e:e8:c1:28:27:
49:cd:68:24:f4:1e:90:a6:11:e2:69:01:27:8b:be:
6f:a0:18:61:77:23:87:6f:cf:10:8a:c8:20:b1:7d:
d3:c9:2a:3d:17:c2:d8:9c:8f:97:a5:ee:50:52:e2:
72:75:5b:e2:f9:62:95:4c:e8:9e:99:7e:99:2e:7b:
8a:23:bd:e5:2d:9c:ed:33:57:f2:da:72:6f:d5:06:
2a:92:27:ea:54:93:6a:d1:00:19:ff:41:ee:5b:3e:
21:1c:c1:6e:55:91:3c:07:fe:40:ce:6e:dd:e2:07:
8b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:76:28:E7:35:BB:D2:30:7F:A0:5C:59:CA:7C:41:EC:3F:0B:BB:A9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RHYo5zW70jB_oFxZynxB7D8Lu6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.170.0/24
Signature Algorithm: sha256WithRSAEncryption
91:fb:83:82:b3:c4:16:63:bf:ca:52:84:de:01:0b:04:d7:f8:
a5:f3:0e:59:88:0e:63:ae:28:36:c7:2d:ea:58:b3:af:1a:08:
db:c8:de:e7:cc:4d:3d:fc:03:4c:1c:6b:58:f9:cc:35:51:d5:
94:ac:e8:05:f4:d4:4d:92:b8:50:99:82:2e:ec:d9:58:22:5b:
c1:04:53:ae:38:a9:f4:25:0d:21:20:ca:9d:85:68:ec:31:82:
49:74:f2:27:84:e2:d3:bc:6f:c9:62:21:bc:3c:2e:7d:0f:88:
d0:dc:e9:a6:01:d7:ed:ca:18:f7:ab:87:45:9a:73:71:06:b4:
52:e0:4b:de:81:41:99:33:25:90:fa:89:fb:09:af:7e:fb:72:
ae:09:d3:c2:a0:80:69:ff:03:85:61:66:f6:2f:11:a1:46:3f:
30:a1:85:16:6a:20:2e:05:0d:7a:f5:ed:3c:09:5c:bf:48:c7:
e4:f5:d7:89:a1:d9:19:8e:e1:07:d7:0f:4d:2a:0e:2f:a0:39:
28:c4:2b:ea:a5:dc:39:16:06:53:26:4b:c2:b3:86:4c:4f:ae:
3c:07:2b:6a:5b:65:74:0b:31:6c:48:28:e2:dc:bf:9a:5b:55:
21:19:06:b6:be:e2:29:c9:03:d4:d0:1b:a0:23:94:31:49:b5:
a4:e3:fa:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org