Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SjL0gln4LSqsvy9sEdFrBtCcnqE.roa
File: SjL0gln4LSqsvy9sEdFrBtCcnqE.roa (raw, json)
Hash identifier: v0UPj93LRpLW5rTYghNnQq4pGUu8sPvTlizChDKTM/U=
Subject key identifier: 4A:32:F4:82:59:F8:2D:2A:AC:BF:2F:6C:11:D1:6B:06:D0:9C:9E:A1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 207E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SjL0gln4LSqsvy9sEdFrBtCcnqE.roa
Signing time: Fri 25 Nov 2022 04:38:47 +0000
ROA not before: Fri 25 Nov 2022 04:38:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.118.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8318 (0x207e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4A32F48259F82D2AACBF2F6C11D16B06D09C9EA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:85:5e:75:18:26:91:ff:e7:03:4e:f8:cb:4d:
38:1d:fa:fc:5b:aa:f4:3d:4a:f4:ee:b8:ab:f1:39:
fc:48:ae:de:8d:d4:2b:4f:32:32:92:e4:de:29:41:
e5:c3:41:4b:e6:e1:fc:7f:87:43:5e:6b:56:fc:d4:
aa:dd:e0:ee:33:a0:6b:cc:4f:c8:59:b1:8b:7e:ae:
88:d7:72:9e:57:20:23:ca:ea:c6:5d:f8:07:da:58:
f7:a7:f8:f3:73:09:dd:e3:8e:8c:e1:c4:83:d4:bf:
95:fc:ee:d2:c1:6c:c0:0a:aa:47:69:0f:98:87:a4:
54:ba:82:7e:44:70:85:78:7e:f1:07:14:af:93:da:
e4:7d:f2:eb:1d:87:73:9a:16:01:8a:7d:47:3d:17:
3c:4a:64:e8:94:f2:29:07:57:61:1a:63:df:4c:b2:
3e:2c:59:38:94:28:ce:1d:7c:c8:e2:6b:19:9f:eb:
ad:ce:97:b9:4d:be:95:db:e9:f2:3a:a6:8c:6b:48:
cb:67:d3:76:ac:d5:20:65:82:ba:0d:fb:e4:80:b6:
e4:62:09:07:89:cc:01:bb:c5:e9:73:a9:bb:9d:d5:
1a:29:9f:a8:80:f3:57:5f:16:8f:7d:61:59:e1:88:
6a:91:36:d3:42:3d:ae:45:25:95:2f:e9:a1:38:71:
b4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:32:F4:82:59:F8:2D:2A:AC:BF:2F:6C:11:D1:6B:06:D0:9C:9E:A1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SjL0gln4LSqsvy9sEdFrBtCcnqE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.118.0/23
Signature Algorithm: sha256WithRSAEncryption
70:53:9e:3c:7c:0e:99:78:c8:3b:01:d2:1b:42:18:94:1e:3a:
01:0c:26:78:b7:a1:18:c0:94:74:c8:e0:63:4c:a0:41:14:7e:
f7:44:31:42:1f:1a:76:b5:99:46:ca:d6:3e:85:cc:fa:6e:81:
d6:5f:f7:25:8e:7b:a1:66:22:c7:82:d2:ac:5e:25:08:1a:ef:
fd:80:64:f7:6b:d7:a9:da:0c:72:df:ea:bc:be:8f:da:61:ef:
ed:30:21:3e:4a:44:a5:99:34:fc:cc:fc:a9:d8:68:a6:85:a9:
61:e7:fc:2b:6a:89:a4:4a:4c:28:a5:dd:28:52:d0:ec:dc:1a:
2f:83:f1:1d:cf:4b:46:6f:a6:6a:32:e2:7c:a8:a7:2e:28:f1:
d8:b6:b1:13:1c:d7:e6:6d:83:c3:f8:42:77:3f:99:87:8c:fc:
da:6c:04:12:c0:7a:c6:dd:72:38:87:b0:6f:a1:3b:17:a9:e5:
40:da:9a:9e:39:e9:5a:f4:ae:77:2d:29:54:19:ec:03:d7:48:
9c:9e:14:a8:c5:91:fb:ae:0e:48:f8:f2:b9:af:80:96:51:f2:
65:49:ea:7c:ba:28:f9:8d:05:87:a2:fc:c8:c4:b1:65:f9:6b:
34:56:38:f6:9c:a9:2f:34:e5:b7:19:d5:fe:bd:05:38:61:d3:
de:07:a9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org