Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XFkIDAsjL1g_aXVTS--r6AEN8RY.roa
File: XFkIDAsjL1g_aXVTS--r6AEN8RY.roa (raw, json)
Hash identifier: v6Ga2hirXCwX2LVqMLFxC7eru7ACINineHSOx8Wi8cA=
Subject key identifier: 5C:59:08:0C:0B:23:2F:58:3F:69:75:53:4B:EF:AB:E8:01:0D:F1:16
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XFkIDAsjL1g_aXVTS--r6AEN8RY.roa
Signing time: Thu 15 Sep 2022 02:46:18 +0000
ROA not before: Thu 15 Sep 2022 02:46:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5C59080C0B232F583F6975534BEFABE8010DF116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c5:e7:08:94:9f:65:1e:1b:cf:63:0c:50:3d:
25:12:6f:e2:d8:c8:dc:43:06:02:c7:18:31:d6:40:
58:8c:3a:35:49:be:16:6c:82:98:3d:d8:4d:ee:a8:
1b:01:bd:35:5f:7f:e8:00:62:e4:3e:fd:04:e8:dd:
f6:f9:fa:e4:c3:18:71:c5:30:25:0c:31:23:d5:5d:
1f:fb:65:d4:f9:94:cf:d3:0b:9a:40:48:2b:47:61:
62:e5:89:68:a7:d9:0e:e6:92:a4:17:a0:69:bd:b0:
da:09:52:16:5c:2e:db:87:3e:71:eb:60:6f:1a:ca:
4b:9d:df:9c:45:28:ea:bb:89:a8:0b:a6:5a:1e:cf:
24:f0:49:77:cd:6e:d3:ae:2f:b6:79:a9:ca:10:1c:
a5:7f:1f:52:69:c9:36:68:db:ad:9c:f0:61:6f:a7:
5c:8d:1c:38:06:0b:72:fe:98:36:c9:a6:61:59:e5:
85:ec:55:11:d7:e5:b1:d1:f1:00:22:3f:22:a7:77:
f7:85:46:ea:17:2d:19:9e:49:6c:26:ac:0b:15:15:
f4:b2:30:bd:82:a4:04:98:29:d8:c5:21:f5:c2:e4:
10:26:2a:af:88:a1:1d:0c:e9:ea:46:ff:e2:40:4c:
c8:14:94:bf:64:4d:17:db:63:91:ac:e3:5c:62:51:
81:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:59:08:0C:0B:23:2F:58:3F:69:75:53:4B:EF:AB:E8:01:0D:F1:16
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XFkIDAsjL1g_aXVTS--r6AEN8RY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.220.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:c2:93:db:f4:6e:3d:98:7a:a0:89:cc:9e:ca:27:ba:3f:7b:
c7:eb:ed:b6:b5:64:e9:b1:1c:db:cd:71:85:f5:d8:d8:17:c2:
d4:69:16:72:37:2b:3f:e6:c3:36:99:38:97:db:d4:2a:ad:1e:
d1:80:70:e0:fa:2d:11:37:e5:fa:c6:85:62:65:ed:49:1b:c9:
3d:88:81:72:9b:87:0d:b3:0f:23:d6:e9:9c:4e:f8:c9:0e:31:
22:17:6c:62:ae:41:0b:f8:ba:07:b0:46:73:cb:b7:52:da:a2:
3e:b0:56:89:26:90:cc:17:36:1a:33:dd:5d:a5:74:dd:a4:f4:
0c:85:c2:be:44:f8:a8:08:7f:cb:78:b6:3f:8b:2b:43:d8:dd:
46:eb:b4:6b:9e:8d:35:4a:ad:31:d5:70:3d:9d:7e:94:89:ee:
06:f3:d3:3e:f3:aa:6b:4f:77:62:c8:06:8b:1b:4e:55:57:19:
33:26:f8:68:68:0b:a5:41:40:c5:33:29:36:5d:f9:58:e7:6b:
9a:66:16:cc:cb:10:47:a6:35:9f:97:30:b5:04:2f:a3:ea:17:
96:19:b3:7d:e4:50:d8:45:97:19:95:91:9b:1d:32:59:47:0b:
ba:ab:f1:7a:35:f1:ab:1b:47:8e:9f:84:21:b4:1b:ff:26:c0:
40:9d:61:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:33 2024 by rpki-client on console-ams.rpki-client.org