Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rw4gH3RTM1FYy_DinZLbRi8Q2r4.roa
File: Rw4gH3RTM1FYy_DinZLbRi8Q2r4.roa (raw, json)
Hash identifier: c6SoVa7D+0tQkf5k6u8su1hoYqE3PJkNvh756QdezYA=
Subject key identifier: 47:0E:20:1F:74:53:33:51:58:CB:F0:E2:9D:92:DB:46:2F:10:DA:BE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1759
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rw4gH3RTM1FYy_DinZLbRi8Q2r4.roa
Signing time: Sun 07 Feb 2021 12:18:33 +0000
ROA not before: Sun 07 Feb 2021 12:18:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5977 (0x1759)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:18:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=470E201F7453335158CBF0E29D92DB462F10DABE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:56:e8:cb:8b:9a:11:01:2b:71:75:2f:c7:45:
09:9c:ff:2f:ff:0d:7f:a2:8e:8f:b0:10:05:de:83:
74:f7:12:af:be:89:c7:e5:bc:d2:71:4b:a9:ae:35:
98:6b:3c:12:d9:c1:51:72:1b:a4:fb:99:7c:79:0f:
ff:12:8f:b4:2d:5c:b1:44:67:a1:0a:b2:c0:d1:40:
41:1d:2c:43:1b:90:8b:6d:6d:53:27:ce:b0:ec:ad:
cd:ba:07:3a:81:73:a3:27:a7:e9:58:91:f0:c6:29:
0c:11:2e:dd:81:3d:e5:7b:52:39:ec:6c:b0:58:ac:
73:5d:4f:7a:b5:27:43:53:5a:bd:79:82:6e:2c:1d:
fe:e0:77:8a:75:d6:1d:b9:1d:13:df:89:34:54:b1:
b3:12:27:cd:cc:e8:ae:e7:e8:20:37:93:9d:b1:76:
7b:da:e5:65:81:28:7e:0f:a0:22:5c:1f:1e:d8:7a:
d0:cb:4f:81:23:be:97:e2:9b:92:0d:c8:fa:a1:b4:
82:78:77:c6:0e:19:f8:8b:79:78:ff:10:38:c1:f0:
40:26:d1:59:1b:e4:e0:cd:1a:c1:d3:73:1f:b0:85:
a2:e9:9d:e0:d5:4b:97:ee:0f:1e:0c:ff:7e:9a:ec:
ee:a1:78:7b:40:09:2f:d3:9f:1c:3d:d8:3d:f2:3b:
7b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0E:20:1F:74:53:33:51:58:CB:F0:E2:9D:92:DB:46:2F:10:DA:BE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rw4gH3RTM1FYy_DinZLbRi8Q2r4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.72.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:17:dd:d5:72:eb:8b:1f:53:21:f8:e7:ec:5c:b4:c7:5a:6f:
b1:3e:63:b9:d9:4a:31:19:62:c7:4d:f3:96:6b:b6:a0:e3:13:
c2:43:4b:ca:37:6d:28:4d:75:09:c2:92:06:bb:d8:d2:80:76:
72:38:61:89:3c:de:a5:76:53:7a:a4:03:47:f4:55:34:c7:83:
aa:d9:ce:a6:d3:f1:f6:26:54:9e:b2:09:a6:3e:91:b5:1a:5d:
28:4d:c5:ab:21:06:77:88:15:a2:cd:d6:6a:b6:b2:25:b4:65:
68:bb:7c:eb:81:97:b4:79:f0:87:72:b6:38:55:95:46:4c:5c:
18:af:8d:84:c7:84:75:17:43:d0:22:7b:a7:94:56:78:a0:1c:
9f:6f:de:09:42:26:b1:fa:d4:19:85:b3:55:2b:a6:36:2f:f7:
ea:a9:24:b4:c8:c5:ef:c0:1c:ad:f8:1e:1b:73:46:95:c0:d6:
d1:a1:45:66:c6:d6:97:ba:98:af:5a:59:53:a2:27:7b:28:53:
8c:d3:c8:36:ac:f3:64:4c:79:60:93:f7:78:d4:cd:78:6b:a0:
a6:2e:41:fc:46:7f:78:ed:4c:5b:23:7b:9c:eb:08:c7:cf:91:
84:15:d0:55:a4:38:19:cb:9e:4e:c5:3f:c5:f2:29:1e:01:32:
b3:d3:ac:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org