Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_-3bkac8i6S7el1bYhY_WttbN64.roa
File: _-3bkac8i6S7el1bYhY_WttbN64.roa (raw, json)
Hash identifier: ecAe0vJLXkn1SWW43OjPNf+cyYM++8LylNqW2AJVcwE=
Subject key identifier: FF:ED:DB:91:A7:3C:8B:A4:BB:7A:5D:5B:62:16:3F:5A:DB:5B:37:AE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_-3bkac8i6S7el1bYhY_WttbN64.roa
Signing time: Thu 15 Sep 2022 02:45:02 +0000
ROA not before: Thu 15 Sep 2022 02:45:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.228.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FFEDDB91A73C8BA4BB7A5D5B62163F5ADB5B37AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:71:ad:df:7e:0f:b6:11:dc:16:4b:82:00:12:
5e:82:47:55:a0:6c:b1:47:43:b6:5f:be:19:08:cd:
78:04:cc:ba:63:21:58:d6:0b:c0:b5:68:a1:52:89:
42:cb:82:27:3f:b2:5f:2b:a9:1e:2a:d6:08:97:ea:
22:b3:a0:5a:09:33:17:2d:03:87:c6:df:b8:be:40:
1b:f1:08:4c:1a:38:9a:ed:10:1b:f9:f6:26:56:f6:
44:3a:d5:58:02:dc:6a:f3:57:2c:98:76:7a:5c:cf:
15:df:e3:2c:c0:ea:a3:ab:52:10:99:b3:7f:31:e7:
d8:fa:47:b8:df:15:91:80:1b:53:42:4f:53:09:74:
ea:02:e5:93:ae:d6:48:8e:28:17:e2:88:e3:d7:88:
37:e8:04:2b:53:11:af:74:76:d6:4f:41:e1:0e:6e:
3d:e0:88:fa:a6:c7:60:fe:5c:5c:c3:48:50:60:fe:
5b:f9:1d:e3:62:39:f4:e7:ff:d3:8b:c1:2f:31:cd:
87:d2:a1:66:71:b7:b9:4e:8f:fd:e5:4d:36:1a:a6:
4d:c1:19:3d:43:30:df:6a:e6:1f:b2:49:3b:9f:14:
2b:a2:1c:69:50:20:49:4a:71:ea:12:eb:28:56:b9:
77:6b:4a:2c:86:76:34:ab:83:85:b0:58:9c:25:f0:
17:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:ED:DB:91:A7:3C:8B:A4:BB:7A:5D:5B:62:16:3F:5A:DB:5B:37:AE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_-3bkac8i6S7el1bYhY_WttbN64.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.228.0/23
Signature Algorithm: sha256WithRSAEncryption
91:ba:58:4a:42:9e:8e:bc:8d:a3:74:dd:34:ba:cd:0a:a7:63:
d1:56:c1:34:ed:91:b0:2d:c0:1b:49:f6:31:80:41:6c:7b:aa:
0e:2a:b0:0c:49:ee:13:9c:1b:a1:ba:d9:bc:23:87:63:cc:07:
8d:20:26:7a:11:23:c3:37:4f:43:d1:0b:05:57:22:42:f0:26:
bb:2c:32:17:b6:19:25:50:d5:d1:05:56:4b:21:50:25:4e:22:
c2:77:05:9f:77:2a:06:c7:40:d8:9a:a5:e8:54:b9:e1:5d:d7:
d9:8c:84:76:43:ed:98:75:94:17:5a:2b:73:79:c3:83:2a:b4:
f2:ac:83:bd:ec:1f:a5:e9:ff:a0:83:a2:87:1f:92:a3:8d:6a:
66:83:0c:51:98:47:0a:10:31:0f:ab:30:63:b1:23:c4:cd:47:
39:d0:94:2f:d9:62:0d:85:d3:9b:8a:be:1c:de:a3:9f:6b:31:
d9:e6:8f:7d:44:92:53:d1:3c:19:f0:9c:3c:c5:06:0b:fe:0a:
03:d2:14:56:0f:b6:ab:3a:b3:11:20:cc:27:52:fc:9c:25:ca:
13:c5:27:17:69:eb:17:9f:b0:54:fe:3c:ab:e9:0e:ae:95:3a:
9f:44:42:16:86:59:4b:37:e9:3c:c3:ca:9a:8e:65:65:d5:5a:
6c:63:ac:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org