Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XcVotOh4sOdgcNEVEfsF9FZbgZQ.roa
File: XcVotOh4sOdgcNEVEfsF9FZbgZQ.roa (raw, json)
Hash identifier: y3g1x8CR6PpN347CnxctkuuJZGOMWo/U5w3D6kJfFro=
Subject key identifier: 5D:C5:68:B4:E8:78:B0:E7:60:70:D1:15:11:FB:05:F4:56:5B:81:94
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16E9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XcVotOh4sOdgcNEVEfsF9FZbgZQ.roa
Signing time: Sun 07 Feb 2021 12:15:16 +0000
ROA not before: Sun 07 Feb 2021 12:15:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5865 (0x16e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:15:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5DC568B4E878B0E76070D11511FB05F4565B8194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:96:bf:3a:43:0f:d5:d2:ee:b0:00:e4:60:8a:
36:2d:3e:78:2e:7a:31:36:ed:91:f9:d1:42:3f:7d:
c0:42:a8:39:4e:45:72:12:ea:8c:b5:35:c5:d4:06:
2f:42:04:42:c6:af:b4:a7:57:b8:29:77:90:d8:25:
19:82:eb:4e:40:5b:59:88:76:cf:69:a6:77:6d:cb:
83:07:14:cd:62:0d:8b:5d:a8:0c:eb:dd:97:1a:a0:
27:b8:30:d5:8b:79:b5:5f:8e:07:d6:2b:1d:5f:63:
0a:14:35:86:98:35:c0:72:32:46:eb:57:1d:d8:60:
1b:5c:38:f1:e3:65:57:81:f6:e0:29:68:7c:24:fc:
2c:d7:8c:6d:2e:df:85:4b:ad:c0:62:ac:11:55:98:
a7:4e:f9:64:8b:ab:75:80:e4:78:5e:ee:e5:9c:0d:
df:44:8c:18:82:45:9b:e7:e4:af:d9:1f:fa:34:bb:
7a:b5:1f:bb:61:4c:fb:21:25:3b:92:19:b9:b6:16:
73:78:17:d1:28:57:ce:d4:e3:a4:5d:3f:11:d8:56:
ae:a3:10:25:c2:10:0d:ae:15:55:e6:c0:67:60:c9:
c1:5d:5f:9f:d8:a6:b7:e9:0b:cd:b7:cf:58:63:3a:
9a:82:58:2d:c8:23:58:8a:e9:d3:4a:09:20:29:3a:
e9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C5:68:B4:E8:78:B0:E7:60:70:D1:15:11:FB:05:F4:56:5B:81:94
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XcVotOh4sOdgcNEVEfsF9FZbgZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.32.0/22
Signature Algorithm: sha256WithRSAEncryption
89:a7:59:44:31:49:43:af:28:99:b9:be:0d:45:71:03:42:b2:
81:17:d6:58:f0:aa:f5:3f:1a:e1:d3:ce:d0:bb:9b:04:5d:c7:
66:95:69:7e:aa:d9:43:b7:3f:7c:36:ba:e6:13:a5:0b:1e:c0:
2a:2e:88:01:9e:d5:fe:8c:ec:ff:47:26:9f:eb:26:99:89:ee:
88:da:1b:82:de:dc:eb:10:bf:2b:6e:ae:0f:86:0f:19:df:2f:
10:03:0a:78:ef:09:e2:76:ea:a2:84:ec:97:6f:63:a6:3b:9c:
b8:cf:9e:95:17:7f:a0:ec:5f:bc:7b:68:81:3c:56:ef:18:eb:
0e:a0:bf:36:31:95:19:51:62:fb:cd:a8:8b:3e:86:30:c9:b3:
b1:46:f4:46:4e:ed:db:75:f1:aa:4b:1c:67:6c:9f:2e:92:05:
47:12:5e:6a:0d:ed:95:33:03:a2:85:f1:8f:0d:36:08:8b:01:
1f:cd:ec:7c:0a:65:b9:ab:cd:89:71:91:9c:81:1f:19:c0:44:
7c:38:24:b2:1b:79:c1:d1:e2:dd:82:63:e6:c8:bb:61:42:ac:
96:7f:1f:53:86:2c:1b:40:6f:bc:a1:41:47:49:3e:a2:ff:ec:
44:9b:8f:65:3b:41:ce:c7:e8:96:b2:4d:5c:5f:6d:ce:48:6b:
0d:7b:d1:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org