Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/e4sRbv3RCx0wchz3Wofwd9mTSGo.roa
File: e4sRbv3RCx0wchz3Wofwd9mTSGo.roa (raw, json)
Hash identifier: xzkjlLrvk7EFuLSDz+LkTfz/RWKDiHlWQ62h8uBCZCI=
Subject key identifier: 7B:8B:11:6E:FD:D1:0B:1D:30:72:1C:F7:5A:87:F0:77:D9:93:48:6A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 13CF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/e4sRbv3RCx0wchz3Wofwd9mTSGo.roa
Signing time: Sun 07 Feb 2021 11:56:19 +0000
ROA not before: Sun 07 Feb 2021 11:56:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5071 (0x13cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:56:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7B8B116EFDD10B1D30721CF75A87F077D993486A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:64:02:27:3d:3c:d4:9e:3b:81:d6:45:34:2a:
36:58:69:7f:8c:f1:cc:37:32:21:86:bf:de:b6:bd:
06:34:fb:1c:69:08:06:dc:0a:49:06:4f:c6:8e:9c:
b5:00:84:7c:00:4b:ff:c0:83:2c:8f:d8:02:7c:49:
59:5d:aa:7d:10:2f:35:60:b2:a2:b1:e9:ea:83:3a:
ec:8c:34:3a:ec:70:c7:58:96:82:2a:7e:4b:cb:70:
3b:df:54:53:fb:2c:6f:54:f6:60:7b:36:cd:8a:a1:
66:78:67:f4:78:d0:d7:2e:d9:d8:ed:c5:ed:76:e3:
f3:86:ad:02:ad:26:9b:bd:0d:d4:45:3c:f9:8a:c6:
2f:4f:ae:2b:80:9e:c6:be:0a:09:97:d2:cd:e5:66:
e5:92:90:0e:a4:25:34:be:a7:3c:3e:5f:8b:73:2d:
94:45:30:c9:0f:0a:cf:bb:df:5e:a7:7d:6e:8f:6c:
e6:1e:ba:c0:a2:f0:4e:b9:1a:3f:96:ca:a5:23:d3:
f6:d1:32:ed:9e:6b:d9:2a:93:29:90:51:0d:78:88:
a8:28:e7:17:03:6c:68:09:36:ac:05:da:d6:39:0a:
ef:ff:8f:fa:99:4a:0c:90:66:d4:62:d8:2e:c4:92:
7c:11:bf:01:94:84:0d:99:5e:e5:6c:e8:85:5f:b5:
58:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8B:11:6E:FD:D1:0B:1D:30:72:1C:F7:5A:87:F0:77:D9:93:48:6A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/e4sRbv3RCx0wchz3Wofwd9mTSGo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.72.0/21
Signature Algorithm: sha256WithRSAEncryption
97:17:fe:15:5c:48:85:d6:29:6e:c5:79:37:42:69:07:55:3b:
20:32:e7:a0:49:99:76:74:79:0e:76:25:38:6f:a2:86:a9:9c:
d0:89:c6:f7:32:e5:50:a0:e0:07:03:e0:96:0c:8e:5b:02:7c:
30:f3:ae:4d:24:dc:d0:41:9e:f2:8f:d3:1b:f8:2e:88:69:41:
bc:2b:bf:a9:dd:38:67:4f:42:fe:6e:9c:a8:17:53:71:69:12:
97:a2:a4:b7:ee:32:50:82:4d:ea:cf:41:d8:01:c5:cc:3c:72:
63:49:eb:cd:46:20:4e:ee:0f:9a:52:14:4d:d2:82:ea:c3:da:
09:13:ef:0b:30:99:f2:0f:64:aa:e3:1a:5e:bc:dc:bb:ff:8a:
a9:b2:d6:39:b6:64:03:29:db:bb:86:f9:6c:89:aa:68:8c:ce:
1d:39:e1:60:a4:22:44:06:c0:c8:53:2d:b2:9c:20:b9:4d:f5:
3a:28:35:1a:11:d7:c6:4c:00:46:28:5d:d0:ea:e3:c6:c7:ae:
09:ea:59:22:25:f9:b4:1f:52:ef:2e:6e:75:93:ae:df:98:33:
8a:5e:99:95:01:15:05:62:20:c9:ae:ed:b3:10:50:08:81:16:
ba:40:a1:13:cb:eb:36:09:02:08:bc:e9:51:3c:b8:9f:70:d4:
46:05:14:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:24 2023 by rpki-client on console-ams.rpki-client.org