Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dNyfPzsHbW2bEsBGjkiqNAcotdg.roa
File: dNyfPzsHbW2bEsBGjkiqNAcotdg.roa (raw, json)
Hash identifier: 53cKDk8YBgvGMPc1nqxiyIheTpgi7IKKbQmgKeB3Jb4=
Subject key identifier: 74:DC:9F:3F:3B:07:6D:6D:9B:12:C0:46:8E:48:AA:34:07:28:B5:D8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2232
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dNyfPzsHbW2bEsBGjkiqNAcotdg.roa
Signing time: Fri 25 Nov 2022 04:40:53 +0000
ROA not before: Fri 25 Nov 2022 04:40:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8754 (0x2232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=74DC9F3F3B076D6D9B12C0468E48AA340728B5D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a0:ec:e4:6d:e9:f8:b6:03:33:90:6d:d1:2e:
58:dc:98:e1:21:a5:e7:f6:e4:68:16:95:c8:47:7a:
7c:f8:cd:01:46:2d:bb:fa:42:0c:b9:83:ec:b3:46:
10:e5:39:28:64:47:6f:fd:9a:b9:9c:6b:d9:dd:e0:
3e:fc:77:72:e9:d0:4a:09:1f:8c:1f:96:a3:b0:16:
b4:2b:d7:a7:aa:9a:a6:93:8c:cf:7c:7f:f8:c3:98:
de:db:4f:5f:b1:b2:b4:21:9d:9c:49:2a:e4:d2:d2:
7a:5f:50:d6:af:5b:03:d8:d2:31:5e:d7:3d:e6:6a:
bc:19:8a:0d:95:6f:97:da:ac:b1:18:49:a6:95:26:
11:c5:9a:9d:39:9c:1b:c6:41:31:f3:d2:25:b6:e0:
eb:1c:bf:b2:42:43:3a:94:07:e9:d5:09:4c:97:71:
f4:07:f1:b1:e4:96:8b:2f:1a:f7:ef:71:d0:ab:86:
c5:2b:6d:82:4c:11:4d:75:cc:7b:a0:a1:57:b1:a7:
20:6a:a2:6f:c3:63:64:8e:51:2b:bb:e4:30:ba:02:
a3:fb:3e:fc:0f:03:78:1a:6d:07:2e:73:99:d2:2d:
a7:b7:38:9f:7b:a2:8c:a6:1d:4b:47:4e:ab:24:ed:
ff:89:e5:1f:d2:80:83:d6:c8:41:a6:4a:b5:db:d8:
97:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DC:9F:3F:3B:07:6D:6D:9B:12:C0:46:8E:48:AA:34:07:28:B5:D8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dNyfPzsHbW2bEsBGjkiqNAcotdg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.100.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:6b:dd:4d:ce:0d:8b:fb:6b:0a:cf:37:e3:98:8f:63:e3:a6:
d3:89:5a:85:79:1e:4c:f0:4b:30:03:7d:73:f1:35:75:0b:0b:
b9:65:71:89:f0:73:9f:b7:81:3d:94:8f:48:bf:31:df:5e:5b:
55:10:f6:98:c2:ea:18:fa:be:52:92:76:63:35:4b:80:58:63:
f0:8c:18:65:0f:91:aa:57:9d:73:80:b0:7f:da:4c:c9:74:70:
9f:09:0a:ab:a9:4a:55:5d:43:cf:e8:4f:e8:66:b9:f1:d2:2c:
b0:3e:c7:96:7c:22:01:65:4f:bf:bb:52:a2:15:51:14:8f:fb:
06:1a:db:24:78:c7:e5:ef:71:49:f7:cc:62:11:eb:b9:14:97:
45:56:33:6f:57:69:82:ef:88:3c:3d:c3:ad:c3:09:60:9c:2c:
78:6b:dc:0d:75:85:3e:39:21:22:c5:88:08:67:b9:e3:08:20:
c5:e6:31:db:81:f7:31:1c:90:53:32:46:a0:67:fd:05:fe:d8:
58:c9:45:9e:d1:05:48:40:8e:16:81:ea:55:ae:83:41:5a:b4:
b2:04:32:ac:a1:ad:42:ca:6c:25:3a:5c:d2:aa:bc:6c:6b:bd:
02:77:9b:bf:74:fc:23:16:63:39:9d:56:d1:cd:32:39:15:51:
5c:04:3d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org