Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aY7fiXneG478iSUAfoXDkleQvG8.roa
File: aY7fiXneG478iSUAfoXDkleQvG8.roa (raw, json)
Hash identifier: qDH6zlVDU7d7tzGx9zvIWhV+3g01wzTZ1n7fT7t+1H0=
Subject key identifier: 69:8E:DF:89:79:DE:1B:8E:FC:89:25:00:7E:85:C3:92:57:90:BC:6F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A72
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aY7fiXneG478iSUAfoXDkleQvG8.roa
Signing time: Wed 29 Sep 2021 02:45:21 +0000
ROA not before: Wed 29 Sep 2021 02:45:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6770 (0x1a72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=698EDF8979DE1B8EFC8925007E85C3925790BC6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:49:9e:f4:2b:99:b4:ed:86:c1:ac:a4:31:6a:
fd:fc:11:32:22:fe:f7:a0:21:ee:c6:a5:07:21:66:
e6:be:85:a5:0d:f9:5b:1e:f6:64:b3:2f:3d:a0:5b:
59:fb:1e:4e:ee:d1:9d:48:3a:79:7c:24:72:d0:65:
2d:32:61:86:89:70:85:fc:80:ab:67:76:cc:3f:9b:
7c:ae:8e:68:96:a1:88:75:72:aa:8c:b0:3d:bb:8f:
c7:aa:85:9c:79:7b:c5:53:b2:7d:89:18:c8:a0:a0:
29:39:e7:47:b5:12:69:d1:c4:5a:29:be:5f:a9:b4:
42:1f:ef:44:13:c2:62:e2:42:81:45:45:45:b8:dc:
70:9b:02:65:9b:bd:4f:66:ea:12:03:84:c2:b4:2d:
20:71:41:8a:54:e8:a6:68:ff:fc:ef:a6:91:06:fa:
fd:65:26:56:01:0c:32:24:78:cf:1e:d0:ae:29:ab:
79:bc:a4:a6:8e:17:a5:6f:be:68:5b:34:3a:a6:93:
cd:a7:0c:a1:50:28:b3:22:b1:f5:cd:68:36:53:59:
96:be:bc:03:ff:b8:a1:69:cd:5e:47:c3:49:f4:60:
10:ac:86:57:70:f5:15:e2:85:e9:c0:4d:8c:8b:15:
6f:df:bd:ce:01:22:8a:93:5c:03:4b:0a:79:0f:1c:
d1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:8E:DF:89:79:DE:1B:8E:FC:89:25:00:7E:85:C3:92:57:90:BC:6F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aY7fiXneG478iSUAfoXDkleQvG8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.46.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:eb:c5:6e:08:d7:95:68:50:f2:42:27:52:08:42:18:bc:65:
07:4e:a5:06:63:be:58:20:c3:78:c5:e1:19:f0:08:4e:f0:77:
4f:42:2b:b0:8b:7b:5d:0a:09:fb:c9:b2:f5:5e:d6:22:4c:b8:
0d:c4:dc:c8:22:f0:08:84:60:8d:a6:18:3b:0f:7d:0a:fa:4c:
f2:34:fd:27:82:4d:a5:bb:02:2d:6a:7f:88:fd:03:15:0f:58:
d8:c9:0e:8b:c0:3a:9e:10:b4:1b:24:dc:01:68:db:d9:ec:80:
b3:cf:b3:48:08:24:8c:68:38:f8:c1:9b:0e:d2:eb:47:90:64:
bd:90:75:f2:33:d4:9c:4d:27:7f:cb:b4:72:ca:83:84:fb:14:
44:b3:2f:aa:be:04:09:ab:5f:28:a8:a3:5d:ca:09:e6:79:88:
eb:d0:2b:96:cc:10:d8:35:06:0c:55:9a:18:36:d7:4d:ba:2e:
cc:4c:23:9f:fc:62:e7:4a:0e:54:7b:16:68:f8:c8:16:53:f6:
9b:33:ea:21:c4:e1:62:58:73:ea:c6:20:5e:cc:5f:5c:da:26:
b4:4a:46:29:e6:aa:17:50:dc:b5:c0:0f:97:7b:76:10:08:78:
4d:23:c1:cf:4b:5c:fa:ca:fa:a8:2c:0b:c0:9c:5a:a9:a6:14:
fe:9b:67:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org