Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XYdOPAuqEUxEOuHiDu4TAqiroYE.roa
File: XYdOPAuqEUxEOuHiDu4TAqiroYE.roa (raw, json)
Hash identifier: i4R+ZRhB7cBkhQrvToWnjydmMNY5lVSwcJP0t/plAp8=
Subject key identifier: 5D:87:4E:3C:0B:AA:11:4C:44:3A:E1:E2:0E:EE:13:02:A8:AB:A1:81
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XYdOPAuqEUxEOuHiDu4TAqiroYE.roa
Signing time: Thu 15 Sep 2022 02:46:00 +0000
ROA not before: Thu 15 Sep 2022 02:46:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5D874E3C0BAA114C443AE1E20EEE1302A8ABA181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fc:d3:2b:56:32:2c:7f:65:58:47:2e:7e:dd:
55:f2:32:5c:a3:78:2b:09:77:80:bf:f8:b2:05:6f:
a2:de:83:23:9e:82:57:f0:ae:6c:05:4c:89:15:4c:
42:11:02:57:d3:21:ef:63:94:1a:1e:c9:33:4c:5d:
51:37:3b:a2:da:e9:16:bf:38:ac:32:2c:55:20:17:
8b:ee:46:5d:0e:f4:70:85:1d:f6:4c:be:48:8b:a2:
d8:b4:42:89:03:ff:0e:71:51:6e:17:5b:31:25:da:
21:69:cf:a0:0c:1a:83:12:b7:c4:d4:e6:a4:a9:bf:
9e:9d:92:37:46:02:d7:8f:f0:04:01:70:82:c1:69:
71:75:48:ea:7e:0c:cb:2f:ed:19:a4:6a:2b:9f:dd:
fd:c5:4b:3c:2b:d7:8f:54:c2:00:7f:b3:5e:d5:8f:
3a:9e:68:8b:38:4c:c0:0a:1e:53:87:e7:86:51:59:
f0:19:95:e3:0a:2e:72:c4:a6:83:22:83:a8:70:5b:
e7:af:64:21:f7:f8:64:05:d3:b2:d7:84:24:96:e4:
6d:45:bc:eb:8f:fd:40:7a:de:31:19:07:ed:d0:e2:
1f:55:fe:44:cc:77:52:b3:4c:e8:43:6e:ce:da:c5:
72:54:77:e0:64:73:61:30:13:98:b4:46:7f:c6:52:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:87:4E:3C:0B:AA:11:4C:44:3A:E1:E2:0E:EE:13:02:A8:AB:A1:81
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XYdOPAuqEUxEOuHiDu4TAqiroYE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.228.0/22
Signature Algorithm: sha256WithRSAEncryption
30:81:b0:d1:5b:c5:92:0a:f4:26:f5:3c:a1:26:59:96:01:e5:
53:1d:bd:99:c3:25:d2:33:8d:e7:ba:42:5a:96:f1:cd:4b:d0:
98:f2:b7:0f:7f:1f:7f:c4:6c:2b:00:22:f2:cb:e4:77:97:cd:
70:e7:91:cd:f9:39:e0:ed:7e:89:cf:88:43:00:34:c1:98:3d:
4e:4a:6f:eb:ba:6f:aa:fb:4a:24:92:75:16:29:89:55:76:46:
b6:51:d4:af:fb:94:00:94:6e:85:b5:f8:9b:3e:a9:f3:11:e2:
f3:ee:26:13:b9:bd:a6:8c:f3:26:51:db:c0:97:46:95:25:9b:
c4:fb:83:ea:20:93:2e:29:eb:ef:8d:ff:0f:e5:bc:70:c7:0f:
35:10:af:03:12:03:a8:16:13:14:ad:75:c9:cf:27:5b:82:b8:
80:87:de:34:70:7c:18:40:07:ab:50:e4:f8:a9:6b:79:7f:a1:
de:38:05:c1:c5:b0:77:9f:5d:09:cd:40:b4:27:36:7a:5a:c1:
b1:46:33:e7:20:4f:f4:05:a2:b8:7f:14:f9:26:91:c1:44:0a:
7c:88:eb:94:d6:d8:47:7a:29:66:cf:15:48:a5:7c:d2:e3:26:
6c:f4:f4:41:95:9b:b9:b4:cd:19:b4:74:2a:98:99:d0:41:02:
32:09:89:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org