Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/diqsBKtqWZMj-bCxJAydPAmN6c8.roa
File: diqsBKtqWZMj-bCxJAydPAmN6c8.roa (raw, json)
Hash identifier: EDK5eVTHwo/GITnnBgF2/iZIi69A32+avD8dhT5XIHU=
Subject key identifier: 76:2A:AC:04:AB:6A:59:93:23:F9:B0:B1:24:0C:9D:3C:09:8D:E9:CF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A8D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/diqsBKtqWZMj-bCxJAydPAmN6c8.roa
Signing time: Wed 29 Sep 2021 02:45:28 +0000
ROA not before: Wed 29 Sep 2021 02:45:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6797 (0x1a8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=762AAC04AB6A599323F9B0B1240C9D3C098DE9CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:29:e7:20:5f:f0:e0:56:84:15:e0:d7:67:97:
7e:7a:68:89:bc:49:15:33:34:87:7b:40:ea:51:d7:
04:86:b7:f8:42:00:11:4d:34:6e:77:7a:51:b2:bf:
c6:a3:e5:20:de:dc:97:e9:8a:51:60:2c:c1:73:cc:
fd:ad:10:04:39:c4:f6:ae:51:97:fd:3f:d1:af:3e:
c2:16:90:f3:d8:8f:58:f0:7d:25:21:c0:ea:93:58:
54:4e:cb:2a:b9:a3:fa:66:1f:69:c9:49:36:ef:c7:
b6:cf:41:4d:cf:7e:5d:a2:ba:23:b7:85:ff:86:a6:
66:e4:a9:d8:14:4e:15:cd:cd:08:f9:92:83:a1:96:
18:49:c1:08:48:5e:d7:85:42:a7:ce:2e:7c:22:4a:
b4:70:dc:ae:4b:1e:ad:e8:17:af:a5:0f:47:67:23:
fa:35:06:b1:c6:5d:57:da:45:30:4d:0a:5e:3a:a5:
c7:39:c9:4f:aa:ad:8b:56:43:15:7e:fe:60:cb:0a:
8e:03:c5:8f:a3:3f:1a:3c:32:dd:a6:81:05:36:85:
d4:e4:fe:6d:2d:31:1e:73:53:9b:34:34:37:c8:6c:
41:9d:6f:c0:45:81:78:9f:63:61:36:e9:75:17:1a:
86:bf:00:d2:12:55:12:81:0c:0e:62:5d:ed:b6:85:
65:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2A:AC:04:AB:6A:59:93:23:F9:B0:B1:24:0C:9D:3C:09:8D:E9:CF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/diqsBKtqWZMj-bCxJAydPAmN6c8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.84.0/22
Signature Algorithm: sha256WithRSAEncryption
88:3f:75:c1:98:bb:80:f4:54:8d:08:7e:9a:d6:e6:8a:e9:b0:
e9:db:f7:ac:0b:7d:cf:fd:01:1f:44:57:be:e4:da:12:7a:3d:
5e:5b:38:84:09:a6:d2:19:b8:10:62:48:6c:71:e2:0d:ba:71:
b2:23:4f:9e:30:71:7e:8f:64:18:ee:05:ab:c0:6d:b2:05:51:
69:93:ce:c8:3f:fc:a7:03:84:86:83:76:69:64:58:42:26:1a:
44:6c:e3:e6:04:29:e2:00:c5:74:08:53:4a:84:36:88:26:56:
43:ae:41:ff:12:1e:33:a6:8b:48:1d:a5:9f:72:16:7e:a6:27:
80:de:af:bf:ca:64:8b:d5:be:e0:ea:42:68:38:cd:15:80:a5:
79:b3:e8:57:2f:10:b9:06:3d:7d:f1:e7:75:18:f1:0f:ab:f2:
26:9c:f3:e0:57:bd:1b:75:64:3a:61:08:6f:2d:23:9f:29:88:
b2:1c:8b:67:74:dd:a2:55:a8:80:84:4d:25:25:f9:df:9e:36:
8b:f7:8c:d1:88:86:3f:a8:ed:11:49:5b:cc:e2:1d:9a:ba:79:
31:02:5f:6e:3c:f1:fb:a6:e4:13:29:1a:d6:74:07:b7:f1:d6:
17:e2:56:9e:93:8f:49:68:36:2b:41:bb:83:b3:b3:9e:b9:5d:
26:bd:0f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org