Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YosqxbGUT6zm76y-ZhfXRoSlNCc.roa
File: YosqxbGUT6zm76y-ZhfXRoSlNCc.roa (raw, json)
Hash identifier: 9h4ftJ33Os9qmvPkuPZ4wQ4Cd1Szm8Tj2pOphPLwBBw=
Subject key identifier: 62:8B:2A:C5:B1:94:4F:AC:E6:EF:AC:BE:66:17:D7:46:84:A5:34:27
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C1F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YosqxbGUT6zm76y-ZhfXRoSlNCc.roa
Signing time: Wed 29 Sep 2021 02:47:22 +0000
ROA not before: Wed 29 Sep 2021 02:47:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7199 (0x1c1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=628B2AC5B1944FACE6EFACBE6617D74684A53427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:87:9a:c2:15:13:a4:df:3a:58:d8:78:c0:55:
fb:ce:4e:4d:15:58:82:df:8a:e1:0e:e7:3e:fb:e8:
38:43:e0:29:63:12:ef:d9:f7:36:eb:79:e5:39:f2:
f0:f4:c5:45:62:bd:bd:86:5c:26:6a:45:b2:be:85:
02:74:15:bd:3c:2d:5c:a7:4a:ab:6c:f6:91:d8:48:
69:d8:14:8e:e5:b3:cf:fa:7e:42:f8:20:09:31:f1:
89:11:1b:18:bc:7a:dc:c2:fc:bf:ae:92:35:60:05:
d4:a8:d8:4a:04:8e:51:96:ff:22:ab:43:08:84:9c:
3b:47:b2:d3:88:1e:6c:74:66:64:e6:4d:ed:0f:4a:
94:01:a4:bd:fc:1e:9c:51:17:46:66:45:4e:bf:3c:
02:37:c8:0b:9e:82:f0:e9:69:6d:5f:3b:c8:7e:79:
f1:f2:e3:1c:a5:e5:5a:7c:26:08:13:07:9e:5f:54:
d2:de:5d:a9:69:e2:9f:0a:14:cf:b2:73:94:f7:6d:
9c:b7:05:fa:71:d5:45:bd:de:35:bb:fe:fa:11:50:
06:26:f0:e4:3c:50:f8:f3:7a:b7:af:76:9e:48:e3:
4e:ac:14:83:8b:57:67:c7:f6:95:97:53:0f:9a:b0:
fb:18:44:de:b5:c3:cc:cc:4c:67:c5:3e:a2:ed:36:
e5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8B:2A:C5:B1:94:4F:AC:E6:EF:AC:BE:66:17:D7:46:84:A5:34:27
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YosqxbGUT6zm76y-ZhfXRoSlNCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.48.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:7d:02:1b:fd:10:66:05:35:10:11:3d:3e:dc:f2:a8:7b:16:
e5:3e:b6:d4:09:ff:d7:64:5b:d2:8f:a3:7b:44:cc:2f:44:f7:
69:52:f5:29:2d:b2:4f:9a:12:9b:89:36:b2:57:3b:29:fa:8d:
a6:a2:72:b5:8a:6d:9a:d4:d7:53:c4:0c:7e:bc:e3:e7:3d:d2:
3a:98:8d:f2:ed:8b:76:4b:26:d4:4e:8e:9d:0e:6b:10:0e:c3:
ae:3f:d5:87:41:14:83:a1:1d:64:a8:88:d4:3c:7d:a5:c0:cd:
54:78:2f:01:2f:b3:37:84:2d:4e:8f:53:51:7c:19:c3:69:f2:
50:dd:8a:4c:2c:9d:ae:68:56:df:77:07:85:b8:14:08:cb:88:
56:83:74:ef:fa:7a:5f:a5:d7:e7:cd:8e:95:48:a9:90:bf:7f:
05:47:f4:14:11:32:d7:89:f9:92:a6:a1:bc:fb:e1:90:94:f4:
4b:2a:ee:98:ae:e8:1d:93:f1:93:bd:20:86:ac:02:37:c0:0b:
76:74:48:20:28:2c:1f:5a:7e:13:34:73:fb:82:34:61:00:1a:
3c:5b:69:14:99:50:99:de:46:48:13:e2:8c:e2:e4:0b:30:c8:
ec:30:8f:ae:95:de:bb:0f:91:d9:85:80:16:ff:be:31:78:8c:
0c:ef:81:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org