Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TYEOirN9XOGnxR8fstJJH-7ykdw.roa
File: TYEOirN9XOGnxR8fstJJH-7ykdw.roa (raw, json)
Hash identifier: 4qIAAKcFxO8m8ZsU4rDkqjoZjchQZnXpkVrQDpqP1hc=
Subject key identifier: 4D:81:0E:8A:B3:7D:5C:E1:A7:C5:1F:1F:B2:D2:49:1F:EE:F2:91:DC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C1B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TYEOirN9XOGnxR8fstJJH-7ykdw.roa
Signing time: Wed 29 Sep 2021 02:47:22 +0000
ROA not before: Wed 29 Sep 2021 02:47:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7195 (0x1c1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4D810E8AB37D5CE1A7C51F1FB2D2491FEEF291DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:8f:ef:18:12:98:85:ee:80:46:d9:01:00:
b5:ff:d4:e3:60:aa:58:e8:ec:73:38:8b:56:4b:08:
81:59:83:15:22:5d:85:e3:3e:a2:99:9a:7e:3f:28:
80:83:f3:07:43:3f:2e:47:8e:34:d3:0d:c8:41:10:
50:27:c4:18:69:e1:2e:49:ea:76:11:c6:5d:a4:65:
d9:bf:9e:fc:b0:9f:49:b5:2e:d4:a5:07:11:a5:15:
62:4e:4b:8b:1d:9d:09:b4:95:4a:d8:4c:59:41:ab:
d4:47:72:43:7f:b8:49:0d:18:32:5b:e5:d8:06:59:
1c:25:a0:3a:00:2e:92:f4:89:4e:10:4e:2c:db:bd:
b6:cc:c6:17:68:18:24:05:5a:9b:39:59:2d:c4:35:
8e:c9:af:81:a6:fc:0a:bc:ab:9f:e6:63:f4:13:ed:
af:af:50:c9:d1:03:b7:0c:06:ae:1f:ee:fc:08:49:
94:d7:37:a4:ff:86:47:95:02:a6:54:ee:03:f8:41:
de:5f:f9:d5:95:a7:a2:57:f1:1d:52:27:c3:3d:3b:
53:40:a7:94:18:ac:ce:17:80:09:4a:8a:80:77:8c:
6d:ba:d9:c6:31:94:f5:6d:17:2e:78:f5:60:45:7a:
d4:9d:48:e4:33:0d:02:8b:35:0a:01:80:2d:ca:43:
c5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:81:0E:8A:B3:7D:5C:E1:A7:C5:1F:1F:B2:D2:49:1F:EE:F2:91:DC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TYEOirN9XOGnxR8fstJJH-7ykdw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.32.0/22
Signature Algorithm: sha256WithRSAEncryption
61:90:6a:19:a0:3b:25:df:68:62:e1:8e:c8:9e:ab:7c:b7:6d:
1b:43:cc:f9:48:2c:50:c2:cb:76:33:47:c2:e4:1f:0a:6c:53:
97:80:79:f7:32:26:bf:af:73:05:fb:df:e5:da:d9:3c:24:93:
ad:80:22:55:8a:2b:a8:b5:06:5b:54:01:e0:c7:17:3f:8b:28:
08:1c:8d:6a:de:a5:1a:46:61:3e:30:26:b6:64:f6:3e:a7:ef:
20:03:17:80:fc:76:1f:45:e6:8b:ab:ce:aa:2c:7a:e7:fb:9a:
fb:bb:37:d8:62:55:75:ad:cc:3d:07:07:04:eb:71:c2:38:d9:
43:9c:a8:ac:88:27:08:66:25:3e:3b:7c:6f:66:83:f4:c4:1a:
fd:3d:33:3e:d9:cd:ad:10:ff:03:a9:bc:c8:00:85:31:cc:5f:
a9:47:8f:48:72:50:fd:c9:6c:d7:54:fd:aa:1b:87:fc:ca:dd:
8b:4d:17:2d:3d:8c:9b:5d:fa:aa:8d:fb:8c:f4:ca:cb:b1:14:
b5:db:fd:34:3e:1a:e0:45:e6:fb:08:e6:5d:d4:56:fd:41:19:
4f:be:02:67:51:b2:41:67:57:2b:fa:d1:6a:97:9f:95:70:a9:
26:69:95:cb:e2:d2:b2:29:3e:c2:16:d9:f7:9d:f9:69:ec:b7:
fa:aa:31:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:20 2023 by rpki-client on console-ams.rpki-client.org