Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YzytyoOrDbMJju5CmFenERUGzdk.roa
File: YzytyoOrDbMJju5CmFenERUGzdk.roa (raw, json)
Hash identifier: ZBANVrWZ5vVCCY2/a2EyPE454D9iYf1vRe0bs+5PVeI=
Subject key identifier: 63:3C:AD:CA:83:AB:0D:B3:09:8E:EE:42:98:57:A7:11:15:06:CD:D9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F3A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YzytyoOrDbMJju5CmFenERUGzdk.roa
Signing time: Wed 27 Jul 2022 02:13:27 +0000
ROA not before: Wed 27 Jul 2022 02:13:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.40.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7994 (0x1f3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jul 27 02:13:27 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=633CADCA83AB0DB3098EEE429857A7111506CDD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:88:9a:25:e3:e6:ba:e6:71:bf:5e:84:76:1f:
fe:b3:cd:a8:cf:e4:a7:49:6b:ae:69:20:3f:a0:d3:
49:0e:0e:d7:b9:38:04:dd:74:e5:d4:c6:50:52:df:
89:f5:52:28:db:c6:d6:4b:fd:b3:c8:1b:23:b8:9f:
01:7c:80:af:da:2f:97:de:03:97:86:bc:35:16:a1:
60:9d:10:0d:62:3d:14:00:0f:55:8e:de:0f:44:b3:
61:31:68:d4:ae:44:a9:71:32:9b:b1:04:cb:35:76:
92:34:8f:82:6e:be:dd:01:ec:8b:89:1a:61:fb:7f:
49:bc:3c:85:c4:e0:9f:76:23:db:84:ae:32:1e:cc:
fe:91:36:c8:7d:20:9e:ab:60:40:5d:41:e2:b4:2e:
a9:92:24:94:a2:22:33:7b:b8:4d:84:78:47:6e:4f:
d2:26:7a:b4:b3:d4:77:56:49:c3:ae:28:77:d3:a8:
9b:f6:d6:40:8f:06:eb:2b:ff:60:ff:b7:5b:c0:4c:
d4:23:6f:17:a6:ef:1b:05:05:e8:cc:2c:2a:bf:7a:
60:69:0d:1f:86:3d:49:47:cf:c0:82:f8:e6:ef:f9:
cb:4f:9b:17:8d:23:00:94:03:15:9b:99:f6:e0:6b:
22:d0:f6:cf:e9:c2:bc:80:ac:31:75:b3:06:2f:7b:
34:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3C:AD:CA:83:AB:0D:B3:09:8E:EE:42:98:57:A7:11:15:06:CD:D9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YzytyoOrDbMJju5CmFenERUGzdk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.40.0/21
Signature Algorithm: sha256WithRSAEncryption
44:74:79:30:01:62:69:24:99:fd:7e:b9:31:f0:81:f0:a0:7a:
3e:9c:b7:d0:e2:07:3a:43:b7:b9:2e:81:8c:3c:1e:d9:31:fd:
7c:d8:24:81:62:eb:6d:fe:9e:c9:c1:4e:18:a5:72:88:da:05:
7e:34:3d:e4:a7:1a:8d:80:28:8f:3d:d7:53:ed:b8:a3:64:26:
b8:ac:e3:40:27:b5:ce:84:9d:95:bf:3a:54:88:fd:cf:3b:f1:
86:ce:f8:21:f4:9c:dc:3e:71:d3:78:89:ff:2a:b1:2d:9e:64:
a7:27:47:5d:f9:d3:59:9a:1f:48:5d:bc:a3:1c:ce:a5:3f:be:
56:ad:7d:99:1f:14:79:98:49:7e:ea:e1:9d:8b:71:32:00:d7:
d6:0b:04:18:2c:50:fb:fc:48:7c:ff:3a:3a:49:63:09:51:2f:
94:1d:b2:b6:55:15:2d:1e:26:5e:60:2e:15:4c:7e:a7:24:43:
26:60:bc:85:e6:ab:a3:d1:6f:bd:8f:8d:7e:64:41:06:ba:f1:
0c:3f:fb:01:17:ad:9a:8b:f3:bb:85:19:64:9e:d5:21:73:b0:
37:31:31:1d:eb:78:17:79:fb:84:4c:a8:58:5f:88:94:34:b0:
d7:55:6d:a4:d4:fe:4f:35:c5:43:0f:f2:8a:60:0c:c8:79:64:
78:10:1f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:34 2024 by rpki-client on console-ams.rpki-client.org