Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dS6B6kFBX1QGUDjZT0fkMLu1OLY.roa
File: dS6B6kFBX1QGUDjZT0fkMLu1OLY.roa (raw, json)
Hash identifier: XLPbyzDgCKgP/BYPAvplrRmf3XwOjdfyoTFOu4LFjUY=
Subject key identifier: 75:2E:81:EA:41:41:5F:54:06:50:38:D9:4F:47:E4:30:BB:B5:38:B6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C57
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dS6B6kFBX1QGUDjZT0fkMLu1OLY.roa
Signing time: Wed 29 Sep 2021 02:47:38 +0000
ROA not before: Wed 29 Sep 2021 02:47:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7255 (0x1c57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=752E81EA41415F54065038D94F47E430BBB538B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:eb:60:76:3a:fe:d9:21:4b:9b:ea:7d:47:78:
98:a5:0e:18:c3:b5:f5:27:10:94:69:41:9d:1a:6c:
dc:20:51:99:25:ee:24:ed:60:63:64:6b:2b:9e:91:
fa:d8:e3:73:36:32:64:68:ad:53:1f:e3:84:e9:d9:
0b:1c:d0:4f:39:8e:0f:c1:16:e9:00:f0:b9:d0:cd:
3e:38:1b:96:74:21:90:b6:54:ee:7a:a9:6d:00:fd:
05:ca:88:04:e2:b8:0c:97:01:f0:15:b0:4a:7b:98:
f2:84:21:63:58:3e:a0:f9:0c:80:da:54:57:0e:e0:
9e:ca:45:c5:98:50:ee:8e:b7:a3:4a:dc:d1:b0:ba:
63:7a:d1:a6:34:cf:ce:6f:35:50:55:76:87:12:6a:
c6:1e:7d:78:61:b4:c7:dd:64:82:ed:35:8c:70:43:
02:e1:9a:e2:0b:56:12:0c:e9:6b:e3:da:96:97:4f:
91:d8:3b:5c:8c:95:0e:41:b7:65:85:40:fb:1f:67:
f6:51:3a:1e:3f:be:18:da:a4:22:84:ff:f4:90:20:
f5:d2:85:c0:33:75:d2:30:30:f0:f5:8e:a8:4a:94:
0f:47:d4:39:1c:21:0e:26:f0:ca:86:9b:26:ba:75:
fe:85:73:3c:fd:ef:eb:4f:1d:d3:9e:e6:24:01:f3:
5f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2E:81:EA:41:41:5F:54:06:50:38:D9:4F:47:E4:30:BB:B5:38:B6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dS6B6kFBX1QGUDjZT0fkMLu1OLY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.124.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:a3:9e:de:80:67:3c:cb:e7:4a:d9:8c:fa:57:90:fe:7c:f7:
46:71:6f:b7:ca:49:02:89:2a:4a:45:14:60:5f:dc:d8:c2:d3:
b3:b6:48:e1:0b:03:95:57:67:1a:a0:ba:e2:27:ae:a3:20:a2:
71:1d:77:ed:75:b0:74:f8:75:ea:26:1d:74:e3:37:2e:13:17:
ed:d1:8b:de:c4:88:74:89:32:3f:9a:7c:bf:a3:be:43:9d:74:
8d:45:f3:04:cd:31:ca:7b:2d:5a:75:a2:66:73:bf:20:6e:80:
f6:e2:e5:14:57:00:46:a7:c1:83:bc:71:7f:a4:28:c0:4b:19:
59:b4:d5:d5:2a:d8:91:92:70:05:d3:f8:79:e2:f1:1c:c0:c6:
dd:6f:99:a0:a8:86:0b:28:df:29:9c:14:8c:02:27:7e:60:bd:
f7:0d:d5:d6:b9:ae:34:3c:10:9a:c1:96:6c:3d:c6:f7:40:fd:
ab:c8:86:f0:4d:42:42:e2:e1:89:59:f7:70:57:4f:ea:18:5b:
e5:ef:96:00:cf:90:c2:d0:39:ce:53:bf:92:7c:67:80:40:1c:
b5:7f:f7:d6:6c:18:d6:a6:05:c8:ff:e5:82:a2:b4:c3:27:b5:
a5:8e:71:cd:32:7e:a0:c8:b5:ab:34:9e:25:6c:43:bd:42:fa:
22:6f:a1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org