Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/amSiZfKFl0MzrsYqp3xkGYRy0wU.roa
File: amSiZfKFl0MzrsYqp3xkGYRy0wU.roa (raw, json)
Hash identifier: y4ldDyaHyRCIQkLwv+en4/UwTAW+8fo/LrdGvQR50xc=
Subject key identifier: 6A:64:A2:65:F2:85:97:43:33:AE:C6:2A:A7:7C:64:19:84:72:D3:05
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E8F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/amSiZfKFl0MzrsYqp3xkGYRy0wU.roa
Signing time: Tue 29 Sep 2020 09:55:53 +0000
ROA not before: Tue 29 Sep 2020 09:55:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3727 (0xe8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6A64A265F285974333AEC62AA77C64198472D305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:74:eb:a2:ae:58:95:3f:58:2d:10:aa:f8:11:
ff:b1:cc:5b:15:4c:ca:62:ec:5d:7e:c7:fe:1a:ef:
a9:9a:fe:7a:1b:35:57:5a:dd:1a:8b:d2:d2:14:a0:
92:a8:94:5b:1b:c6:28:7c:30:5f:e8:e2:32:7a:56:
06:8c:7e:86:1c:82:1a:05:b3:80:48:f2:2d:59:3e:
04:33:10:ff:42:92:9b:5c:35:0b:c2:6f:84:af:9b:
35:bc:f8:06:03:d4:09:3c:3f:ae:bb:87:f9:a1:ff:
a7:71:16:62:88:3b:61:74:59:f4:a8:60:df:5d:31:
cb:73:fd:06:c4:a0:31:9c:9d:26:d6:19:4a:6d:c9:
a7:ce:ff:48:e5:bd:4f:31:93:fd:c0:ae:59:db:f1:
a8:7c:ef:4a:aa:a3:59:7a:3d:90:dc:b2:c1:d0:0b:
de:60:40:7c:bb:1c:45:7f:10:66:cf:11:e0:12:8a:
29:d6:f6:13:ab:54:bc:0e:a9:59:74:46:e4:88:30:
b6:46:de:d7:b8:81:c6:27:8a:46:90:54:79:2d:5c:
db:3e:34:47:7b:55:23:3f:b7:ec:87:66:d5:6b:b3:
37:78:75:d6:4c:ef:2d:04:da:77:95:b9:50:01:c2:
f8:30:85:b1:0f:90:17:72:97:68:5e:52:b0:5e:3e:
72:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:64:A2:65:F2:85:97:43:33:AE:C6:2A:A7:7C:64:19:84:72:D3:05
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/amSiZfKFl0MzrsYqp3xkGYRy0wU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.72.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:38:93:e3:fb:45:f6:8d:aa:d2:f3:51:8a:3f:fc:c0:a6:ae:
dc:1d:5b:36:48:3f:64:cb:28:a5:00:27:40:9c:de:46:12:a3:
92:7e:77:e0:c7:55:67:b3:c0:3e:65:1d:b4:a9:6b:21:ec:37:
70:be:69:d0:44:de:98:74:ac:bc:69:69:fe:36:9f:81:58:c5:
7e:2d:a9:23:a0:a2:e6:40:79:58:c9:0c:50:f6:b0:e4:f3:71:
bc:a3:c9:1a:6e:92:52:9d:08:55:84:da:b2:3d:1a:f4:b0:14:
06:ca:9f:45:c7:63:ff:96:5b:a0:41:98:4b:71:66:24:c1:d2:
18:7a:4d:5c:87:1a:41:5e:a7:7a:42:2a:6e:e7:b6:b7:96:4f:
7d:f9:92:bf:5a:f9:13:f3:a1:8c:1c:84:22:8e:e2:43:48:9a:
d4:a3:71:fd:cb:88:44:68:9d:2f:34:0a:ad:bd:16:71:f6:f0:
50:5e:7f:a2:64:13:f4:ec:58:9b:00:0f:b0:06:75:70:36:c3:
5d:e4:52:f5:bb:f1:e7:e5:47:ab:e7:92:8a:3b:80:ab:7c:3e:
3a:c4:55:d2:a8:fe:39:63:ef:8f:33:bb:8e:cd:22:ad:e8:65:
e4:9c:ba:07:32:6e:58:ed:bc:4e:bd:9f:bd:9b:04:5e:90:42:
97:83:9f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:23 2023 by rpki-client on console-ams.rpki-client.org