Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SRV2D-paC73UT9kMJE0BMQSiV6o.roa
File: SRV2D-paC73UT9kMJE0BMQSiV6o.roa (raw, json)
Hash identifier: 3C6MGK7eR6UugbC5OGgfd6jHLFXQYIXgAG+E8X3k5MA=
Subject key identifier: 49:15:76:0F:EA:5A:0B:BD:D4:4F:D9:0C:24:4D:01:31:04:A2:57:AA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SRV2D-paC73UT9kMJE0BMQSiV6o.roa
Signing time: Thu 15 Sep 2022 02:45:08 +0000
ROA not before: Thu 15 Sep 2022 02:45:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4915760FEA5A0BBDD44FD90C244D013104A257AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:87:fc:5b:cc:f5:43:5e:fc:4c:cd:57:97:a3:
b1:6c:bf:fb:96:f2:ae:ef:a3:2d:22:4b:c3:07:e9:
88:a8:67:08:67:12:cd:a1:ea:27:96:49:2e:97:95:
8d:8b:6a:b7:21:51:4a:de:82:98:ec:2b:9b:82:b7:
d0:44:3f:27:2c:1c:fd:26:15:ae:35:7a:2f:1f:27:
15:ab:79:ac:7c:88:f8:cd:54:ab:b3:b2:d0:83:27:
03:03:50:8f:7f:04:44:12:fb:44:51:70:8c:cd:13:
8c:08:f5:0a:21:e3:0e:fe:5b:1a:7f:b5:10:9d:4f:
4c:6c:2d:3c:3c:af:b4:b0:49:c1:b1:7e:4f:93:1f:
12:21:96:fa:bd:50:f4:84:d5:3a:62:5a:fd:e2:9e:
ed:54:95:8a:62:31:db:4a:b6:cc:78:c1:eb:23:dc:
c7:6c:4f:9b:35:ea:fa:e2:1d:a3:b9:03:f0:0d:10:
69:9e:27:07:b5:5e:ba:a2:b6:a0:46:bd:35:23:3e:
a9:5b:a0:f0:4a:4d:60:fc:24:8e:94:77:eb:51:90:
46:79:11:2d:67:a9:c3:e1:00:12:e3:5c:1d:51:ed:
42:b0:fe:5a:8c:8d:6e:91:c3:55:26:07:21:68:98:
05:40:1d:aa:cf:63:5e:a6:0d:3d:b4:2d:58:18:cf:
a4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:15:76:0F:EA:5A:0B:BD:D4:4F:D9:0C:24:4D:01:31:04:A2:57:AA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SRV2D-paC73UT9kMJE0BMQSiV6o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.24.0/21
Signature Algorithm: sha256WithRSAEncryption
88:7a:65:42:a7:2f:55:db:06:a5:35:8f:58:c7:f8:59:d5:91:
33:26:1a:f8:10:1e:85:8a:4d:07:d3:f2:5d:80:15:8a:f2:82:
4c:35:19:1a:ba:e5:62:27:70:57:83:20:a0:1a:9e:85:d6:06:
63:68:96:5f:45:a5:dc:97:00:f7:78:2f:6a:56:d7:04:98:ef:
59:fd:81:fe:3d:13:3a:e3:2a:cf:f8:69:e8:a2:32:ce:1f:57:
a6:52:8a:75:1f:00:af:ca:e2:12:59:c4:d1:6b:05:e3:2f:ed:
7c:97:91:41:bb:a2:77:e5:49:22:c3:5e:c1:f3:28:be:87:ea:
40:17:26:5c:33:8a:28:b1:88:f6:58:1e:3b:e6:d9:b4:2d:82:
d5:fb:85:c6:86:ee:c7:80:cf:73:8c:c6:2f:5e:c6:28:3e:91:
a2:c8:e0:2c:f3:7c:7d:61:c6:8c:7d:57:ad:ae:95:da:50:97:
e2:f5:0d:88:a0:06:61:e7:d1:7e:53:ce:b1:67:ee:89:39:f1:
0b:78:9a:54:58:68:de:32:09:04:6c:f2:bd:3e:15:73:7b:80:
92:51:37:1f:ed:d8:52:49:64:bc:ea:02:e3:36:21:b3:2e:37:
1d:f2:57:b8:10:59:db:72:22:49:37:27:af:a8:d4:f4:56:99:
55:d7:b1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org