Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XaCytecQfcr9LnVdicwIKnkS3QY.roa
File: XaCytecQfcr9LnVdicwIKnkS3QY.roa (raw, json)
Hash identifier: NdP0NsbO8UnxPa2R+7jrhb18XDaF4VNOXnqL3UTehIY=
Subject key identifier: 5D:A0:B2:B5:E7:10:7D:CA:FD:2E:75:5D:89:CC:08:2A:79:12:DD:06
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CBB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XaCytecQfcr9LnVdicwIKnkS3QY.roa
Signing time: Wed 29 Sep 2021 02:48:08 +0000
ROA not before: Wed 29 Sep 2021 02:48:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7355 (0x1cbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5DA0B2B5E7107DCAFD2E755D89CC082A7912DD06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e2:5b:28:ab:ad:a9:96:28:10:24:52:fc:de:
b9:1f:fe:78:22:89:39:cb:d9:97:a1:86:18:d4:eb:
88:49:b9:83:98:1a:a8:dd:f2:1e:de:04:89:ba:2a:
c3:96:e0:73:cf:0a:7c:b7:ed:d9:29:27:ec:0b:23:
68:7e:66:2e:8d:86:8e:8c:11:e8:3a:9d:8a:1a:3e:
13:45:ee:d9:77:08:58:f2:69:93:b4:e6:03:ac:21:
dc:e0:d9:c7:b0:73:72:14:2c:19:b7:fc:73:02:74:
86:6d:50:ba:6e:d7:c8:44:eb:29:59:8f:eb:03:da:
ed:c6:c5:5f:19:70:49:7e:ed:08:fa:2f:6f:32:36:
5e:95:69:34:d6:4d:c8:85:16:ad:b6:0f:da:8a:64:
48:ac:87:09:d2:06:cc:36:8f:7b:d2:e5:62:20:10:
34:6b:cf:d4:c5:bc:88:a7:d5:a2:96:e1:2a:9e:19:
23:b4:cf:42:9b:f1:7c:81:e7:2a:e6:87:8c:00:bc:
5f:63:90:c7:52:8f:2c:c6:63:53:e3:e9:a9:c7:69:
f9:38:ea:32:fd:e3:55:bb:c2:3b:30:39:59:5e:94:
be:94:e8:3a:3c:aa:a5:5c:bf:6c:a6:bf:1b:17:82:
5b:0b:6d:a4:ab:fa:29:e2:7f:0b:bc:e7:f6:fb:27:
e1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A0:B2:B5:E7:10:7D:CA:FD:2E:75:5D:89:CC:08:2A:79:12:DD:06
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XaCytecQfcr9LnVdicwIKnkS3QY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.160.0/21
Signature Algorithm: sha256WithRSAEncryption
9b:e0:3a:bd:a1:00:4e:f8:3f:19:95:88:5a:9f:07:b6:4b:3d:
66:ca:86:70:05:5b:16:39:e9:67:e4:24:cb:dc:3e:21:72:ad:
8e:52:c1:61:fd:73:de:02:8d:73:94:73:16:4c:da:9d:6b:db:
26:2f:c9:9f:2a:d8:43:be:b3:6e:7a:5a:7a:53:d4:7a:f6:15:
19:29:33:6a:50:fb:2a:d8:d7:26:6c:23:29:65:13:a4:9c:4e:
d7:68:f1:40:50:bc:86:99:1f:a9:d5:c2:bc:1f:ba:14:07:1a:
23:9f:94:70:86:a4:f5:af:6d:92:2b:fa:9f:f8:01:13:93:88:
22:4e:aa:fa:32:1a:c1:47:6c:ce:34:5f:cc:03:cd:42:5d:51:
9e:47:13:16:aa:72:1b:6f:4b:aa:35:0d:9f:d7:bc:4e:21:d5:
7f:1e:d9:98:1e:3b:70:f4:17:bb:87:9b:5e:ea:7b:56:7c:fd:
f7:77:8c:fe:4b:ef:ec:ff:25:35:ed:23:41:d9:51:6c:3d:91:
40:e4:36:b5:53:6e:00:83:f1:80:ba:5a:9e:6e:52:e3:4f:ca:
f3:1d:f0:a3:f8:91:0b:e4:0e:06:de:ee:c0:35:a1:ac:1f:97:
fc:3e:b6:93:55:15:84:1f:9c:d7:5c:b2:f4:81:ae:8e:de:51:
8f:11:db:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:21 2023 by rpki-client on console-ams.rpki-client.org