Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bHytrid2EVKHxOjfKGuo7SI3Oj4.roa
File: bHytrid2EVKHxOjfKGuo7SI3Oj4.roa (raw, json)
Hash identifier: QVN+rl1/VYBBAwdCMehAr0Q+l+fJxkL/QLAIC9VQJMU=
Subject key identifier: 6C:7C:AD:AE:27:76:11:52:87:C4:E8:DF:28:6B:A8:ED:22:37:3A:3E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2295
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bHytrid2EVKHxOjfKGuo7SI3Oj4.roa
Signing time: Fri 25 Nov 2022 04:41:22 +0000
ROA not before: Fri 25 Nov 2022 04:41:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8853 (0x2295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6C7CADAE2776115287C4E8DF286BA8ED22373A3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:83:c2:04:b8:89:0c:33:c5:ca:6c:d9:f6:
cc:5f:aa:3c:52:2a:dc:58:a3:93:06:88:1b:aa:cd:
08:ba:ff:d0:a9:44:3e:46:ad:a7:9e:dc:45:cd:fc:
3a:44:79:d1:e5:6a:da:90:72:48:f0:d9:a8:30:4a:
2d:91:86:7f:a1:0d:31:93:d9:69:a3:13:61:6f:80:
0a:af:d5:34:dd:62:29:63:6b:fe:08:49:fe:4b:af:
a0:b3:52:8f:15:f9:9e:85:1f:2a:cf:74:14:e8:c6:
96:57:33:20:f1:a0:12:29:0b:21:5a:8e:ff:6d:72:
c3:8c:da:ce:74:72:31:1a:bd:86:51:67:bc:5f:9b:
c8:7d:f5:dd:22:b7:b5:6d:96:3f:15:99:43:dc:57:
cc:38:86:f2:42:63:71:34:23:d1:39:58:e6:d0:a7:
38:20:d1:81:c9:9b:1b:1d:42:fe:d8:b1:33:95:04:
9e:c1:ad:33:3d:32:f5:40:c0:a5:e7:c3:f5:4d:17:
f3:d9:ed:8d:4d:da:48:0a:4e:0f:ee:ab:ce:c7:ea:
19:b3:a2:f1:1f:0f:23:16:3b:17:6d:ef:bf:c2:e3:
94:fc:5c:60:bd:57:be:40:a1:fa:94:97:4a:bb:6c:
c3:65:11:39:c8:c0:63:60:23:60:f0:80:58:a9:8e:
2e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7C:AD:AE:27:76:11:52:87:C4:E8:DF:28:6B:A8:ED:22:37:3A:3E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bHytrid2EVKHxOjfKGuo7SI3Oj4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.52.0/22
Signature Algorithm: sha256WithRSAEncryption
64:b4:49:f8:1b:60:14:d6:06:db:69:76:9a:8d:20:7d:25:bd:
1b:93:74:bd:e2:b3:d2:87:bb:94:e0:25:24:06:b7:c1:9a:20:
16:3d:4e:2a:6b:69:b4:74:b5:41:02:64:32:51:54:6c:c0:73:
e2:bb:1d:74:80:cc:a6:30:d6:cf:c7:a0:59:c3:58:6a:87:83:
8a:51:89:b4:5c:61:22:ca:ce:13:06:33:89:c7:89:9a:19:95:
c1:80:d0:ce:42:02:f2:87:5d:86:8b:78:8a:39:94:3a:6c:90:
b8:b4:0d:e8:5c:f2:76:e8:1a:74:d5:d2:1d:e9:99:78:e3:09:
4f:a7:05:7d:f6:a6:b9:15:87:19:5c:3a:bb:0a:44:22:ad:05:
af:ab:7e:5b:6a:9a:3b:a4:45:28:6b:a3:10:07:65:3b:87:e0:
17:fe:14:ee:de:f2:63:3e:bb:6b:3c:03:8b:17:14:65:0d:e2:
13:86:50:de:ba:04:d3:ed:b2:78:7f:b8:09:59:69:b1:46:7c:
2a:26:15:88:4c:2a:7d:43:b7:14:f1:5d:e9:27:b8:b5:a3:f3:
4f:67:db:24:e2:0b:66:a4:9d:45:7e:d4:d4:50:de:15:f5:a4:
11:c0:87:a6:24:ff:cb:c6:b7:34:b6:e9:8e:15:10:69:46:60:
1b:e5:9f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org