Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ar5swtktdY9xWl0RVOJ_k0QUhWI.roa
File: ar5swtktdY9xWl0RVOJ_k0QUhWI.roa (raw, json)
Hash identifier: QJ13g+koOFylH3cnTItCHZEV9Iy/hkDmh7GJwRHvVt4=
Subject key identifier: 6A:BE:6C:C2:D9:2D:75:8F:71:5A:5D:11:54:E2:7F:93:44:14:85:62
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2149
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ar5swtktdY9xWl0RVOJ_k0QUhWI.roa
Signing time: Fri 25 Nov 2022 04:39:44 +0000
ROA not before: Fri 25 Nov 2022 04:39:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8521 (0x2149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6ABE6CC2D92D758F715A5D1154E27F9344148562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:b3:b0:eb:de:ce:4c:b0:bb:9d:ec:76:29:
76:39:9a:75:5e:d0:f1:6b:97:31:d8:0c:a1:f8:d6:
7d:bb:33:c8:3d:e3:6d:88:d9:f6:7b:32:04:9f:9d:
3a:c7:4d:d9:79:96:16:3a:03:9a:b0:ff:ce:22:6c:
45:f8:cf:f5:e3:f8:3a:71:10:2c:26:61:2a:50:7b:
30:26:5d:34:b1:a6:67:9b:fd:c7:f7:d6:10:9b:1b:
26:3b:98:f8:d3:0c:00:53:ca:b9:d7:0f:aa:63:76:
2f:1a:e0:79:a8:83:a4:d6:27:a3:a3:c5:8f:4c:cd:
65:02:94:59:26:59:07:3d:0a:f2:8a:6c:6b:90:b1:
cb:66:a2:0d:64:72:33:c6:6a:ff:7d:e9:71:dd:3f:
0b:46:a7:26:b0:af:b5:08:3b:75:1d:8a:48:5d:17:
6c:b6:35:66:0d:33:7b:18:fb:73:cf:bc:bd:a7:11:
e5:8c:7c:82:ff:64:0f:67:0d:a5:55:91:eb:91:60:
ef:9f:8f:70:4e:f1:fe:58:23:61:c7:ed:36:de:79:
81:88:f4:27:ac:6a:d9:1a:3c:31:c4:78:4c:e1:d6:
3f:dc:ef:f0:4a:34:0a:a1:23:aa:d2:80:28:cc:dc:
4d:8e:13:87:2e:4e:63:e9:75:5e:23:77:e9:ad:55:
41:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:BE:6C:C2:D9:2D:75:8F:71:5A:5D:11:54:E2:7F:93:44:14:85:62
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ar5swtktdY9xWl0RVOJ_k0QUhWI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.116.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:d7:e7:1a:b4:01:54:a0:6a:fa:fa:52:46:fb:ad:f8:1f:fe:
54:89:77:df:2e:77:11:bd:a9:ee:25:18:d0:a7:39:a5:f8:9f:
d2:95:98:77:89:e9:cb:43:55:ba:7c:17:99:5e:95:17:2d:e6:
0a:2e:77:46:6e:0f:d5:75:a2:85:ad:4a:25:67:7e:98:63:8a:
18:97:1f:6b:5e:d6:2c:7e:d4:ab:e3:a2:b7:0d:70:eb:e3:9a:
da:2f:c4:13:65:91:17:7f:62:9e:3b:a8:78:f4:d9:e9:9e:26:
01:9a:d4:e9:73:56:44:ff:3c:e9:8d:1e:f5:97:8e:bd:3c:a0:
af:bc:70:11:a3:3b:29:0e:f8:20:2f:90:27:73:bb:10:aa:8e:
9c:54:f2:57:d8:a5:d0:82:4f:07:3a:59:9b:02:c9:9b:5f:01:
db:0f:bd:db:75:ea:69:f2:49:28:94:cc:b7:c4:25:b7:46:6c:
d9:bf:86:7c:5a:9f:74:2a:7e:d9:21:c5:4e:f4:50:02:a5:9b:
aa:27:0f:4e:30:e2:46:00:2e:43:64:79:d2:0b:1b:3f:ee:a2:
4e:0b:0a:5b:46:71:f7:8d:0b:4b:d8:e4:2e:5c:1c:5c:6d:4e:
3a:d7:ee:45:c0:3c:ca:aa:ee:a3:e2:d5:8c:d5:d7:67:81:ac:
4f:52:55:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org