Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bVZ4wJvhI68NEb1quVJwz4cTveI.roa
File: bVZ4wJvhI68NEb1quVJwz4cTveI.roa (raw, json)
Hash identifier: 3nrJs9+kjTKD6RllO8V7dDlDnpDIiLKSusaVwdfzkGI=
Subject key identifier: 6D:56:78:C0:9B:E1:23:AF:0D:11:BD:6A:B9:52:70:CF:87:13:BD:E2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E86
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bVZ4wJvhI68NEb1quVJwz4cTveI.roa
Signing time: Wed 04 May 2022 06:35:06 +0000
ROA not before: Wed 04 May 2022 06:35:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.240.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7814 (0x1e86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 4 06:35:06 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6D5678C09BE123AF0D11BD6AB95270CF8713BDE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4d:3d:ae:98:a5:9f:49:4f:00:65:b0:e0:12:
56:6e:90:78:b8:68:3f:57:0b:a8:9c:82:a6:b0:d4:
4a:d1:bd:02:d6:0e:48:68:54:95:20:6a:03:36:0f:
a6:66:80:24:8f:9e:b1:b1:1c:10:15:22:4f:60:a6:
be:df:db:d5:4d:11:64:5e:a7:c0:fa:41:12:28:db:
de:ec:d8:f4:e0:36:26:7a:fa:24:f9:ab:c2:4e:ec:
b5:8e:13:4d:a9:9b:e6:43:cb:53:c6:af:03:fa:9d:
a9:bd:87:fb:f8:98:30:dc:32:1f:d2:df:7d:24:4c:
08:26:a5:44:76:e8:63:ad:d4:ef:22:95:58:d8:71:
6d:4b:d4:9a:da:f8:ab:91:dd:6c:0b:3b:23:22:a3:
a2:70:3d:94:d2:9f:db:2d:ca:65:1e:ac:98:4f:68:
ea:ee:d8:6d:f6:50:9a:1b:f4:45:29:b2:be:cc:d3:
b9:43:86:22:67:e7:a1:59:d4:f7:59:18:f5:00:68:
19:af:6f:e8:f2:28:65:75:91:57:b8:51:0a:16:6d:
d7:48:92:66:fe:21:32:0b:ba:0f:44:cd:74:78:84:
a1:6d:18:f6:3f:89:55:96:35:b8:60:80:83:4d:bb:
b5:10:07:32:e4:ea:6a:83:89:eb:f1:0f:b9:c3:9a:
ae:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:56:78:C0:9B:E1:23:AF:0D:11:BD:6A:B9:52:70:CF:87:13:BD:E2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bVZ4wJvhI68NEb1quVJwz4cTveI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.240.0/21
Signature Algorithm: sha256WithRSAEncryption
20:df:ac:24:ab:ed:2b:03:97:6a:15:98:a1:7a:ec:7f:b1:3a:
1d:8c:41:1c:d2:2f:5c:c6:37:43:b9:b9:0c:d3:5e:a3:3b:2e:
6b:0f:f8:76:00:76:62:3d:d4:68:3b:ec:9e:e6:b2:70:e1:39:
7c:bd:1a:1b:45:39:dc:7e:ec:35:27:11:29:71:48:22:6f:b4:
5d:98:6e:77:9b:d9:61:5b:81:5a:8b:5e:a2:64:c9:8e:5e:f5:
2e:14:9f:2a:04:ac:ab:a5:bf:0c:88:2d:9e:bb:82:3f:6a:4d:
37:92:a6:5b:23:6e:6f:83:25:a9:ec:72:20:c3:9f:28:81:da:
73:2f:1e:5b:53:82:c6:91:a2:48:e4:15:d6:a8:47:db:53:f4:
7e:c2:5e:19:cf:e0:7c:ee:e6:7a:e8:bd:f4:77:5b:bc:af:9c:
af:23:f3:de:18:87:d6:6a:b7:f6:25:e8:b6:4e:df:b7:19:fb:
2a:6c:41:a4:58:b0:2e:0e:ef:8b:19:d3:31:c6:cc:0f:75:78:
07:ea:6c:f6:65:4e:0b:8b:34:ce:92:7a:68:37:cd:c7:12:6c:
eb:cc:ff:f2:a5:40:6e:cd:6b:ff:99:8e:4f:50:63:66:38:0d:
d9:4d:22:79:69:46:58:c1:8a:80:18:21:88:4e:a9:c6:32:77:
3f:85:fd:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org