Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dCP8SQV0dFgZxJwEGRLOBr6jUgk.roa
File: dCP8SQV0dFgZxJwEGRLOBr6jUgk.roa (raw, json)
Hash identifier: jtuLJQoML5C4nSfUCzat9nzxcY/5fV6yinPJ1neeaRM=
Subject key identifier: 74:23:FC:49:05:74:74:58:19:C4:9C:04:19:12:CE:06:BE:A3:52:09
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CC2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dCP8SQV0dFgZxJwEGRLOBr6jUgk.roa
Signing time: Wed 29 Sep 2021 02:48:10 +0000
ROA not before: Wed 29 Sep 2021 02:48:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7362 (0x1cc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7423FC490574745819C49C041912CE06BEA35209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d3:bb:ee:ff:d2:75:30:97:0d:b1:f3:a7:9a:
4f:05:bd:54:ea:f2:0c:33:ad:65:c2:6b:40:71:1f:
8a:a9:f7:14:9a:f8:02:c6:c8:ee:80:41:f4:14:e8:
2e:ec:5c:15:ed:18:d9:51:fa:e5:94:a8:df:3c:ff:
ec:ad:f8:da:c4:92:b7:0f:9b:63:1b:75:6e:9d:45:
e0:63:b8:86:e4:2a:b4:62:fa:bf:8f:f4:23:69:b1:
53:3f:dc:23:2b:7b:95:8c:e0:63:b3:df:1a:bf:82:
fc:0c:b7:1d:2c:83:5b:ce:a2:5a:9c:1c:64:e9:27:
6b:94:62:9b:3f:ad:9b:71:6a:09:62:fc:4e:b9:0b:
db:2e:dd:f5:d1:a7:9a:bb:1e:28:7a:aa:df:06:2d:
1b:07:4e:7c:50:50:fe:00:65:09:70:d4:a2:5e:69:
36:06:46:22:ad:ef:a2:cb:29:dc:71:79:fa:91:f8:
92:3b:53:e0:0e:cd:f8:5c:ba:7c:6d:11:1b:ad:d6:
93:32:99:9b:03:c0:9e:5d:5c:62:71:56:f8:fe:97:
88:c3:07:c4:41:76:42:ba:08:a3:90:f1:b6:62:84:
aa:50:d7:96:33:e4:af:54:3f:21:a1:84:b1:5b:e1:
40:6d:05:19:02:e6:11:29:91:2d:20:0a:d5:f5:df:
b8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:23:FC:49:05:74:74:58:19:C4:9C:04:19:12:CE:06:BE:A3:52:09
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dCP8SQV0dFgZxJwEGRLOBr6jUgk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.216.0/21
Signature Algorithm: sha256WithRSAEncryption
05:ce:ab:06:3f:be:c1:59:4c:0b:ad:5f:42:7f:72:27:ce:8f:
8e:c9:5a:a7:dc:a4:3a:9f:be:b5:00:60:3c:35:4f:e8:f2:2c:
4c:23:25:b2:dc:6e:6d:e4:39:f3:c5:bd:db:d1:04:1c:0b:da:
8a:11:fb:9a:db:86:de:16:c3:b8:aa:a5:4c:f2:b0:b7:2d:8a:
38:e0:5a:67:56:5a:6f:dd:96:e3:85:00:16:e6:3b:41:32:39:
57:05:5f:aa:fc:e4:84:06:4f:8a:0f:1c:48:23:e8:f2:ef:c5:
64:56:99:2d:d7:ca:e9:36:d2:7e:05:e8:d2:0f:0a:66:11:85:
ae:70:19:3b:55:9b:a8:15:0a:3b:64:83:09:e6:53:94:80:fe:
ac:56:6a:f4:f4:3a:aa:b2:56:97:be:9a:48:0c:85:5e:9e:75:
82:9d:17:6e:7a:eb:eb:ef:d3:ba:ed:2d:af:25:70:6b:94:ac:
ce:30:6b:02:2d:0b:4b:14:ac:d3:ae:d6:23:ae:d4:a4:43:19:
7e:a0:2c:47:55:c1:e4:57:47:31:fc:0e:68:a9:08:5d:9f:ac:
be:de:28:bf:da:4d:0e:ee:7b:a5:65:d8:6c:b3:64:c1:02:7e:
17:09:1a:94:04:8f:86:07:18:7e:94:69:23:eb:6f:02:06:8d:
0b:e9:cd:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:24 2023 by rpki-client on console-ams.rpki-client.org