Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z5A2p1IrXYpVxHlJbs4xS9LAqh8.roa
File: Z5A2p1IrXYpVxHlJbs4xS9LAqh8.roa (raw, json)
Hash identifier: fY/xG68aMEVdHq/FPe2JAilqK68f8ytItLo05PZbHlU=
Subject key identifier: 67:90:36:A7:52:2B:5D:8A:55:C4:79:49:6E:CE:31:4B:D2:C0:AA:1F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 155D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z5A2p1IrXYpVxHlJbs4xS9LAqh8.roa
Signing time: Sun 07 Feb 2021 12:04:14 +0000
ROA not before: Sun 07 Feb 2021 12:04:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5469 (0x155d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:04:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=679036A7522B5D8A55C479496ECE314BD2C0AA1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d4:0e:c7:c8:47:f4:20:c1:29:6d:2f:7c:e0:
fe:97:7b:96:04:57:ec:51:6c:09:07:fa:c4:16:25:
c2:f4:bd:c0:38:d7:11:36:dd:56:0a:27:85:ff:cb:
42:0f:61:0d:0e:b7:39:cc:5e:69:cc:77:6b:0d:a7:
16:cc:c2:bd:75:36:46:7e:cf:55:3c:a9:c9:d8:c8:
1c:44:9e:eb:a2:ab:15:b3:02:f1:ae:78:c1:65:da:
5d:dc:67:5b:9a:d0:5f:7f:81:61:30:26:67:fb:77:
94:53:f7:e1:94:74:93:49:cb:b9:47:2d:d2:50:46:
0e:ab:4e:7a:aa:96:8b:b4:b7:cc:d9:7f:5f:2d:3e:
c0:14:7a:79:92:4f:c8:6b:9d:f5:0c:df:ac:7a:8a:
5e:19:1a:43:05:a2:0e:5f:83:8e:9c:dd:d7:24:31:
29:80:10:6e:52:2b:2c:0e:f4:ec:ce:a6:c9:89:7f:
2e:f5:f1:23:8c:d5:79:50:f3:16:fe:45:65:92:a9:
3f:c6:8e:c5:f4:cb:75:51:d7:8b:ba:30:f0:68:fa:
db:94:13:fb:a6:df:33:b2:d6:9f:a7:05:5a:38:92:
61:07:bd:55:70:d3:d5:e3:9e:22:48:f7:02:c8:c3:
ce:24:70:23:0a:d3:98:a5:bb:a8:4a:a8:33:dd:4d:
22:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:90:36:A7:52:2B:5D:8A:55:C4:79:49:6E:CE:31:4B:D2:C0:AA:1F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z5A2p1IrXYpVxHlJbs4xS9LAqh8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.68.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:a2:e1:11:93:e4:e1:fd:22:63:d4:fe:49:73:16:81:5e:80:
3f:8c:6e:ef:d3:8a:7d:c0:72:e9:80:3d:c3:fa:52:27:45:4d:
46:fe:c2:46:60:16:39:3a:46:a5:97:5d:83:ce:0f:24:4a:e7:
93:a4:b0:d9:1f:47:cb:3f:94:47:a3:1d:12:19:9b:0b:13:16:
b6:9f:ad:8a:6f:e5:a3:f1:b6:45:5e:0f:96:51:de:15:2a:b5:
ce:1e:23:77:00:bf:54:8c:a2:e3:ea:8d:30:9e:55:50:32:43:
4f:4f:5c:2a:aa:53:26:25:8a:51:04:5b:b6:68:ee:f4:d4:f6:
ed:ef:68:1d:de:f1:50:03:03:ae:50:83:c0:5f:84:3d:6c:b7:
4f:1e:22:0b:d2:c4:36:93:db:99:d1:0a:b2:1d:de:ba:db:a4:
ee:45:0a:fd:5a:a4:d0:55:c6:37:0e:7c:99:05:6a:83:7f:fb:
e8:1d:56:15:6f:cd:23:dc:09:99:5b:e7:16:e7:3c:af:cf:cf:
21:ac:af:0d:ff:f5:eb:c1:da:45:2c:10:c1:53:81:2e:bf:2d:
81:02:bd:f8:f8:26:09:1e:ed:89:41:8d:86:02:f0:06:c3:fc:
9f:fe:59:ff:84:e2:da:8a:34:c0:a9:24:e9:c8:3a:b1:a3:90:
96:63:f2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-fra.rpki-client.org