Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T32CiZEH9hP3fxOMKNVzhg-24yo.roa
File: T32CiZEH9hP3fxOMKNVzhg-24yo.roa (raw, json)
Hash identifier: r6MS9LYEzUO0iFMDMfUaAE7M8+USjuc7SemwN2npUTQ=
Subject key identifier: 4F:7D:82:89:91:07:F6:13:F7:7F:13:8C:28:D5:73:86:0F:B6:E3:2A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 175F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T32CiZEH9hP3fxOMKNVzhg-24yo.roa
Signing time: Sun 07 Feb 2021 12:18:44 +0000
ROA not before: Sun 07 Feb 2021 12:18:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5983 (0x175f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:18:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4F7D82899107F613F77F138C28D573860FB6E32A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3e:38:3d:0a:77:32:75:a6:c0:b7:85:c5:53:
dc:63:74:f0:f6:64:12:0c:06:51:60:0c:a8:43:74:
af:1a:35:d8:a6:0a:15:9c:36:55:ef:d9:b8:aa:7b:
9e:3b:db:31:a5:37:cc:a2:e2:25:fd:21:0d:ec:c3:
4c:2a:7a:67:67:5c:52:9c:d0:ec:98:ba:ab:87:19:
18:b0:69:67:a8:ee:cd:fc:6a:14:00:f7:d4:33:fc:
45:a6:b4:aa:40:61:3b:90:5c:81:a9:bf:01:b4:b8:
24:27:cb:50:41:82:da:00:81:65:60:eb:f9:ef:6a:
62:98:59:45:d8:ea:17:b6:39:dd:ac:aa:8d:20:3c:
56:3a:c5:05:08:bc:d2:49:17:5b:73:dd:f2:bd:c6:
6d:fa:ac:24:de:fe:09:29:c3:f6:03:2e:3a:5e:93:
91:a2:ff:63:d5:5b:1f:1c:6f:cd:4a:80:6e:76:ed:
93:93:4c:d5:96:1c:bb:42:2d:23:ad:43:f8:59:ce:
09:89:f6:26:5b:79:bd:22:71:0d:96:7f:6c:23:5d:
0d:71:96:51:df:bc:74:e6:bc:d2:16:fd:dc:61:05:
a2:62:e0:d1:85:72:47:5c:1c:b6:53:f7:e8:11:ef:
7c:66:88:c9:18:16:e7:13:25:5e:67:7c:be:04:97:
60:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:7D:82:89:91:07:F6:13:F7:7F:13:8C:28:D5:73:86:0F:B6:E3:2A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T32CiZEH9hP3fxOMKNVzhg-24yo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.0.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:a3:97:b2:dd:58:4e:c3:30:88:1d:bd:ec:73:1b:6b:d7:f3:
09:eb:f5:b2:dd:c6:b4:19:14:76:71:43:5b:fe:58:7a:9b:1e:
71:93:45:9f:0f:7f:5e:54:c7:8b:dc:0f:53:be:22:92:7c:56:
36:d9:1a:c1:b4:c7:06:24:68:7c:58:92:1d:a9:f9:a5:b0:18:
31:63:3c:08:84:5a:19:34:f0:1c:19:8e:db:35:4f:8b:4f:05:
f4:e8:04:c8:5a:a5:af:4a:13:5e:54:00:88:43:e3:d5:e8:1c:
64:aa:94:4a:7b:64:a7:25:57:42:2e:a5:1b:83:14:df:a1:4f:
95:f7:ad:08:1e:a9:21:94:51:ed:e7:c0:ad:13:91:05:60:7c:
d5:d0:cd:6b:21:f3:88:67:e6:e7:c3:66:fa:9a:10:73:65:54:
8c:39:cb:d6:e3:6c:ca:5b:34:1a:b4:47:8c:a0:04:5a:f1:0c:
07:8c:f2:00:50:ee:a7:1d:a4:85:88:96:b7:b0:07:48:61:af:
c1:e1:ff:1b:1f:4a:45:74:a5:52:d3:98:b6:eb:db:25:30:ae:
65:54:b9:f2:52:8d:a2:26:e9:82:6b:72:09:73:e0:23:3c:64:
72:73:3d:fa:88:61:ae:01:f4:f1:a5:b7:0a:7d:d1:67:79:7d:
c2:1a:07:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org