Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bcZtxJt7AS7ONZCUu_TiFUP1ldY.roa
File: bcZtxJt7AS7ONZCUu_TiFUP1ldY.roa (raw, json)
Hash identifier: 55rraO17N46UiQ4OkZeBfQy6O3CpkbshhYyVahEm1a8=
Subject key identifier: 6D:C6:6D:C4:9B:7B:01:2E:CE:35:90:94:BB:F4:E2:15:43:F5:95:D6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bcZtxJt7AS7ONZCUu_TiFUP1ldY.roa
Signing time: Thu 15 Sep 2022 02:45:50 +0000
ROA not before: Thu 15 Sep 2022 02:45:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 118.232.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6DC66DC49B7B012ECE359094BBF4E21543F595D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bf:cf:4b:b1:48:19:81:a6:f7:28:6e:ed:62:
d2:22:c0:51:32:4d:3d:a1:31:0c:2b:b1:60:56:5c:
ea:0c:f1:ee:85:d1:5f:b7:40:48:cd:d6:96:90:58:
48:ba:d6:81:de:82:0d:00:1e:78:8d:61:3d:07:64:
a8:eb:1e:6a:af:f1:c8:30:56:5f:de:f8:6a:b7:7a:
24:ce:ea:c1:89:49:cf:44:0a:01:8f:05:86:6a:ff:
97:1f:09:f4:16:e1:86:73:cf:98:a0:f9:d6:af:9f:
8c:b1:fa:57:54:07:65:9e:5e:43:8f:67:d7:2d:b4:
a3:ba:69:5a:ef:40:77:5e:15:06:21:13:a3:c0:df:
72:05:bb:2f:6b:43:41:fd:4d:c8:99:7f:9d:80:56:
f9:3e:2c:8b:67:22:2e:d8:5d:44:c2:6e:a5:bd:eb:
e2:16:a5:9d:18:72:56:d7:47:60:d1:45:ca:5f:4b:
bb:88:3e:aa:04:ca:52:e4:79:b7:1d:5b:37:f9:dc:
b6:7f:e9:9f:04:f6:88:01:06:df:de:3f:83:88:b0:
a1:92:14:f7:ff:3b:de:e1:e4:8e:b1:9b:98:fd:c6:
d4:90:aa:36:42:2d:fe:6b:41:5e:fa:8a:40:86:b5:
16:d9:9a:cd:fc:ff:ed:a7:eb:71:4c:5e:01:85:3c:
a0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C6:6D:C4:9B:7B:01:2E:CE:35:90:94:BB:F4:E2:15:43:F5:95:D6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bcZtxJt7AS7ONZCUu_TiFUP1ldY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.128.0/18
Signature Algorithm: sha256WithRSAEncryption
b3:b5:ca:7d:69:fb:40:8f:94:96:ec:6d:b9:8c:8c:68:56:e4:
c5:42:ad:c7:7c:9b:77:f6:62:56:19:8d:71:23:1d:ef:9c:ad:
fe:99:bc:73:ba:d0:0c:d7:15:54:1e:37:b0:e2:ff:d3:ad:4b:
64:98:da:b0:7c:26:b8:3a:cd:d4:f2:44:04:e8:57:02:dd:70:
07:9a:04:7c:d4:d9:9a:b6:32:ee:63:59:cf:48:7a:b0:31:a3:
a6:44:ac:32:c6:b2:4a:b3:fb:c0:de:e6:c3:ce:41:85:ac:b3:
80:36:64:56:9f:fc:c1:f2:ef:ca:f2:4b:52:24:4d:5f:e9:5f:
58:f8:87:e8:3d:fe:dd:be:44:6a:40:1c:29:22:7d:e5:11:48:
d1:98:cd:85:91:05:d4:41:dd:3b:e7:7f:8e:44:b0:a3:ad:74:
93:e1:c9:a0:d0:cb:3a:0f:52:97:1c:5f:13:d3:11:fb:a2:3e:
94:f4:b2:92:a3:d0:0d:2e:6f:8e:53:44:5e:8d:bd:ea:bf:2b:
b6:c0:8a:aa:91:e4:01:b5:d7:4c:c6:31:2c:35:cf:cb:a8:3e:
3a:52:8c:e7:1b:ab:6b:e6:a0:fe:62:a7:2a:10:1b:90:bf:99:
d2:78:72:88:29:29:01:1a:47:57:58:58:2d:57:07:83:67:8f:
ac:76:96:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org