Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bJGSCtXIkzBRd3swUPaZQmrFKEY.roa
File: bJGSCtXIkzBRd3swUPaZQmrFKEY.roa (raw, json)
Hash identifier: 85KNGTfoHXFL49ov8Uf0WwVL0Vw1EWPVNs0jhNScLco=
Subject key identifier: 6C:91:92:0A:D5:C8:93:30:51:77:7B:30:50:F6:99:42:6A:C5:28:46
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2280
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bJGSCtXIkzBRd3swUPaZQmrFKEY.roa
Signing time: Fri 25 Nov 2022 04:41:16 +0000
ROA not before: Fri 25 Nov 2022 04:41:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8832 (0x2280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6C91920AD5C8933051777B3050F699426AC52846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:75:06:ad:4d:c0:4c:0f:e0:1d:56:59:f4:ab:
ea:5e:1e:f9:4c:6a:a6:38:f2:3f:1d:0a:02:2a:57:
60:e9:dc:a9:a6:70:84:e7:0e:83:59:2c:4f:d2:de:
20:c3:24:db:11:9a:a3:78:05:46:80:74:5d:38:dd:
38:4e:64:d5:dc:00:89:23:13:99:f8:3a:b1:2a:fb:
ed:b1:9d:33:fc:f0:ea:22:45:56:37:be:cb:a2:3e:
d9:26:79:ea:cb:59:5d:e0:ac:f4:48:56:63:a1:68:
25:68:b4:ac:00:30:96:55:67:cf:ab:52:78:4d:32:
18:b5:f0:9d:d0:48:00:c0:9f:7d:52:b9:ff:da:45:
6d:ad:eb:27:ed:eb:29:1c:37:df:ca:97:bf:5d:c8:
27:44:72:69:89:8f:5b:6e:65:63:15:2e:c0:40:57:
91:78:6e:5d:d6:71:81:a5:07:60:e9:3e:fc:0a:69:
f4:83:a9:67:00:ba:2a:ba:9d:59:f7:6d:be:71:2c:
1f:6a:55:4c:9a:04:0d:0c:55:44:a9:00:df:fa:6f:
88:8b:7d:b3:e5:02:7d:ae:5e:3a:c3:b3:20:1e:0c:
76:a5:d3:ad:cb:68:4b:b2:70:71:a0:d3:13:89:60:
81:57:f9:22:3f:4f:19:04:a4:9f:f3:0f:c9:80:bf:
e0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:91:92:0A:D5:C8:93:30:51:77:7B:30:50:F6:99:42:6A:C5:28:46
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bJGSCtXIkzBRd3swUPaZQmrFKEY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.216.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:ce:d7:66:d4:db:b0:8c:c8:a3:59:eb:82:df:31:ce:66:b9:
9a:2b:32:0a:50:e8:83:60:d8:11:8c:e6:50:ee:b5:4e:bc:67:
88:d6:c4:57:a6:b9:7a:f3:1c:19:af:95:fe:1e:00:73:62:22:
0d:17:ac:eb:78:ac:b0:28:e2:ba:bb:8f:91:63:1d:0c:c3:bf:
5b:48:9f:b1:69:42:5f:84:6e:93:d7:dd:92:1a:bc:49:5b:c8:
84:41:9d:7f:7e:05:4a:84:03:f4:27:28:a2:ad:6f:e4:0d:ef:
b3:80:34:22:28:21:d0:80:62:7e:47:a4:15:2a:91:96:47:9e:
a2:a9:e4:b0:2b:13:06:d3:f1:40:00:0a:a6:53:cc:29:7f:a0:
2a:ad:0b:b6:81:a0:84:77:93:94:db:8d:25:6d:83:38:d0:e7:
11:70:fc:9e:a8:7e:3e:e6:d5:27:fe:22:2c:2e:56:58:15:6f:
f9:cf:86:b3:8e:ba:74:db:3b:d1:eb:78:a3:58:28:ff:7d:b6:
e9:9a:21:08:e9:1b:05:a5:12:5b:3e:45:c8:f0:74:f4:0d:ea:
af:96:ba:ac:d9:48:52:18:b6:02:0d:0c:ac:53:45:b3:5e:95:
7b:46:1a:8a:46:31:3d:f1:79:5c:65:a6:c9:b6:23:e4:6f:b0:
06:7c:de:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org