Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cuo2fmBWCdqleXSIGT1W9_YZzv8.roa
File: cuo2fmBWCdqleXSIGT1W9_YZzv8.roa (raw, json)
Hash identifier: 46w/2bWEVs5oMTTwjbiGeKf6NU5UAIi7QCRFB9MOkoY=
Subject key identifier: 72:EA:36:7E:60:56:09:DA:A5:79:74:88:19:3D:56:F7:F6:19:CE:FF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cuo2fmBWCdqleXSIGT1W9_YZzv8.roa
Signing time: Thu 15 Sep 2022 02:52:54 +0000
ROA not before: Thu 15 Sep 2022 02:52:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=72EA367E605609DAA5797488193D56F7F619CEFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:03:4b:72:06:01:35:3c:75:c8:a0:8c:b4:fb:
58:68:f3:26:5e:17:78:95:06:b1:53:c3:31:77:5b:
a6:fc:fa:ab:60:d7:4c:71:3b:31:ed:39:70:06:53:
1f:b5:67:a0:b6:ff:6a:c0:7d:1a:cc:36:19:68:12:
ed:c7:ed:d1:4b:ad:1d:36:f9:45:be:25:da:4e:98:
4a:64:58:a1:75:3c:0d:80:03:0a:7b:5c:da:97:ae:
d8:49:e3:29:b3:5f:ad:e3:38:08:86:ec:13:f2:e0:
1d:c9:09:15:7b:a9:51:d3:52:12:54:5b:04:54:b2:
1e:b1:fb:9e:88:c2:82:6b:b8:48:48:c3:a5:f6:91:
a0:2e:eb:1f:5a:b1:8c:eb:7c:ca:50:6f:1f:10:72:
a7:cd:a7:c1:fd:46:2b:78:95:09:37:d5:33:19:91:
c6:ff:86:26:8c:0f:d5:d4:78:6e:7f:9d:59:e4:24:
5c:44:df:51:65:dd:fe:87:b3:e6:b2:21:bb:f6:1e:
90:e2:c0:cf:af:76:01:9b:27:68:14:e2:dc:d4:a0:
c4:74:d0:e7:fb:65:c1:53:54:1f:f0:ab:bc:7f:ca:
f7:bf:6e:fb:48:bd:5c:5f:40:9c:f7:89:ce:92:97:
b7:d2:a7:74:44:f7:aa:04:7b:cd:4d:5f:cf:aa:8c:
30:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EA:36:7E:60:56:09:DA:A5:79:74:88:19:3D:56:F7:F6:19:CE:FF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cuo2fmBWCdqleXSIGT1W9_YZzv8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.216.0/22
Signature Algorithm: sha256WithRSAEncryption
32:b5:61:b7:35:0f:f7:00:13:f1:ca:16:43:38:94:44:76:da:
a9:33:0c:b2:0a:e0:38:40:36:31:a4:58:c0:70:79:e5:4a:bf:
ab:25:c6:76:40:2d:8d:1c:19:c7:09:fe:81:02:96:56:86:82:
17:62:0d:51:1f:b7:68:08:6e:53:6f:b8:ef:d9:1f:1f:31:fb:
48:fc:24:fd:1b:1d:79:99:da:1a:5c:f8:57:c1:96:6a:51:f8:
9b:2e:42:a8:6e:9c:11:e6:8d:dc:01:c9:c8:9b:da:78:5b:1f:
0a:76:3b:f3:ec:46:ab:e6:de:e2:9b:b5:8d:73:9c:e3:fd:1b:
ca:c4:0f:fd:dc:4d:66:7d:07:95:84:5d:dc:de:0f:63:ff:a9:
d2:16:14:f6:0d:3c:3a:87:4c:54:99:3d:c7:12:06:92:01:30:
b4:19:80:21:cb:d5:ff:8c:0a:94:a1:40:65:b4:c5:ca:22:7a:
3b:16:48:f1:92:d4:7a:7f:b6:19:79:d6:0e:fb:ff:d0:e9:38:
34:16:1d:2c:84:66:11:90:4a:6c:b8:19:df:b8:cb:53:47:92:
65:62:11:41:e7:64:16:ba:1e:91:f9:b6:e8:0e:a4:49:73:32:
74:a1:98:1f:0a:37:7b:58:59:53:6b:a4:71:f8:88:be:f1:05:
25:0a:8b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org