Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aYxoQ7PVFeP7rF5Bx6g_4aZqD_Q.roa
File: aYxoQ7PVFeP7rF5Bx6g_4aZqD_Q.roa (raw, json)
Hash identifier: OBe8zu15f66QjuBBFRYky/7GZ6S1jlbo0ek733bvB+8=
Subject key identifier: 69:8C:68:43:B3:D5:15:E3:FB:AC:5E:41:C7:A8:3F:E1:A6:6A:0F:F4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 226F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aYxoQ7PVFeP7rF5Bx6g_4aZqD_Q.roa
Signing time: Fri 25 Nov 2022 04:41:10 +0000
ROA not before: Fri 25 Nov 2022 04:41:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.116.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8815 (0x226f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=698C6843B3D515E3FBAC5E41C7A83FE1A66A0FF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9a:49:bf:ce:cb:f7:d1:69:9a:23:78:71:59:
b8:2f:3b:5f:71:3c:cf:02:8d:72:7b:81:e4:cf:58:
9c:11:44:f9:8f:76:42:60:41:4f:25:73:97:dd:4b:
a4:73:45:5f:50:7f:dc:8a:65:f6:5f:99:bf:99:20:
c0:d0:c8:cc:5f:47:22:11:10:32:0b:9b:0e:0f:51:
4d:c0:f7:84:1d:98:31:d8:2f:b2:8c:e2:1f:62:5d:
5e:53:6e:41:8a:d1:56:81:85:cf:24:29:95:1c:ed:
09:9e:da:4d:f6:bc:29:aa:94:e5:70:96:48:a2:2f:
f3:2f:6f:4a:b5:f8:07:c3:79:14:9e:e8:a7:d4:f1:
d4:b6:06:fe:d9:ec:00:c2:a2:39:cb:1a:be:e8:4d:
0c:cd:a6:a9:0a:9c:db:cc:0f:3a:6b:ad:0b:1c:3e:
03:a1:46:dc:ce:67:37:3a:ef:c0:fc:de:e2:48:a8:
d0:2f:a3:94:54:ac:c0:14:68:59:cd:0a:c3:97:a8:
0f:d5:74:b6:44:c8:1c:39:34:06:13:2f:31:32:cd:
80:ce:0c:69:ad:6d:f6:3f:79:0a:31:10:b9:24:25:
39:6d:f3:6d:29:7e:de:33:b0:98:5a:82:17:c4:50:
68:c9:02:db:3c:be:2f:94:2c:02:cd:da:bb:9b:95:
f1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:8C:68:43:B3:D5:15:E3:FB:AC:5E:41:C7:A8:3F:E1:A6:6A:0F:F4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aYxoQ7PVFeP7rF5Bx6g_4aZqD_Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.116.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:ab:29:06:38:01:3e:aa:73:31:39:97:af:70:7c:d6:6f:77:
55:d1:fd:60:a1:a0:87:e8:59:8d:ff:d7:b7:b7:b4:da:e1:a2:
ea:3f:54:9d:b6:4e:bf:f6:a2:b8:a3:66:f7:07:c4:71:9f:60:
5b:57:22:2c:41:51:57:29:83:99:fe:2d:66:fe:f9:c1:a4:9a:
dc:bb:b8:db:d8:1a:d5:ab:85:74:90:7b:91:ed:5a:64:24:ea:
ce:7c:78:77:cf:06:42:7e:aa:8f:cd:23:8a:fa:5b:11:f2:68:
d9:dc:70:0e:16:cc:e1:0e:3d:ad:a1:66:fd:38:82:bb:cd:d4:
9d:7e:c5:26:fa:94:43:73:b1:9f:b4:fa:da:f0:23:84:76:ca:
7d:6d:6e:f7:29:23:4f:95:45:e2:64:a5:e6:ee:27:87:ff:c5:
99:7a:07:0d:da:04:73:30:0f:d2:de:79:8e:5a:f9:57:db:6c:
23:2f:f9:1b:a7:9f:2d:4b:55:ee:03:d9:3b:8f:d7:c6:3e:36:
5a:f6:85:af:42:37:ed:e1:4c:6f:0c:dc:6e:6e:27:60:5e:e8:
ad:bd:4c:e8:84:6b:95:a3:03:6a:c4:52:e0:5f:87:51:34:c1:
c7:82:c4:25:b3:ad:1c:44:12:fe:42:46:0e:7e:ac:fa:85:53:
96:d7:4a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org