Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gUwU2XITq-Spkq-nWaYWeo5u1Pc.roa
File: gUwU2XITq-Spkq-nWaYWeo5u1Pc.roa (raw, json)
Hash identifier: uPVLxc5I8RmllEUbzSVa+8MD5FkUkjh8Fv5CsVUIYm8=
Subject key identifier: 81:4C:14:D9:72:13:AB:E4:A9:92:AF:A7:59:A6:16:7A:8E:6E:D4:F7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 17B1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gUwU2XITq-Spkq-nWaYWeo5u1Pc.roa
Signing time: Sun 07 Feb 2021 12:22:47 +0000
ROA not before: Sun 07 Feb 2021 12:22:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6065 (0x17b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:22:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=814C14D97213ABE4A992AFA759A6167A8E6ED4F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:08:a6:9f:f7:95:cc:90:89:24:bb:52:64:3b:
40:6a:13:33:c8:21:0c:9b:43:ae:d5:21:61:a6:1d:
ae:52:54:ec:11:75:64:5d:7e:59:6b:02:a3:80:e5:
2d:40:7a:a4:98:af:92:73:7a:c4:5c:ac:f7:48:c0:
a1:5d:44:f8:4c:75:79:cb:ca:87:cd:3a:d6:a7:61:
1e:04:1b:c9:4f:98:da:6b:df:79:ed:c4:28:48:ad:
dd:6b:63:b9:12:d0:30:cb:d1:1d:1f:bb:c5:9f:a8:
a0:ed:54:26:f9:94:07:7d:ec:c7:47:6d:f5:c7:34:
63:6e:0d:6a:35:0b:18:4e:72:2a:e5:51:cf:e0:13:
f1:3d:cc:17:20:b6:e5:ef:1d:59:17:dd:84:fa:d5:
48:a7:e6:9e:ae:d6:74:6d:60:19:af:2b:4d:42:7b:
56:e4:39:56:53:c8:90:97:32:27:e4:73:34:de:e1:
e3:51:fa:1a:ee:c4:df:9a:f0:e1:95:46:3d:df:ce:
59:bf:79:37:af:5d:6c:d0:43:72:12:86:ab:e1:a2:
3d:87:d9:95:75:96:ca:4f:29:2d:99:29:86:5b:a8:
e0:95:b9:02:6d:5f:9d:50:b6:a1:64:0c:94:9c:a7:
7f:bc:75:32:60:e9:e3:9c:f1:95:ce:c4:ce:6a:43:
7f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4C:14:D9:72:13:AB:E4:A9:92:AF:A7:59:A6:16:7A:8E:6E:D4:F7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gUwU2XITq-Spkq-nWaYWeo5u1Pc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.128.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:4f:8d:dc:8a:86:be:50:00:13:e0:c2:ad:80:23:15:68:65:
b1:3b:98:f0:f3:c3:f1:80:de:c1:6e:3d:b1:84:86:74:c5:89:
7e:8d:58:ed:dd:fd:26:fc:cd:a4:20:ff:31:12:6d:45:1d:51:
a9:94:af:77:fb:68:b9:4d:f8:83:a3:ae:26:86:4e:51:9c:7a:
4d:d5:c4:d2:59:4c:9d:53:6e:89:2f:a4:ee:15:97:90:f7:d3:
78:dc:e6:66:18:8b:b2:a2:63:65:97:40:16:af:8c:54:0a:50:
de:69:25:43:1e:70:62:f7:21:1e:95:89:72:f5:e0:67:9c:ff:
47:07:5a:54:b5:e2:63:9d:6f:63:17:64:a5:cd:be:25:07:f0:
f3:05:73:b7:58:df:e0:44:46:a2:d3:88:4d:45:56:45:c7:d0:
d1:e3:1d:8e:e8:6e:ed:aa:e3:59:a3:e9:a7:08:49:14:d4:37:
a0:d6:fc:ab:68:6d:be:6c:ef:e2:4b:38:91:79:02:94:ee:ab:
42:47:5c:90:be:a5:fd:87:90:2b:05:24:53:38:52:93:a0:3e:
13:cd:dc:94:2b:ad:2d:c7:e8:4d:39:2d:ff:e0:97:47:e0:d6:
3c:8b:91:3f:7b:00:35:53:4e:be:d5:1e:49:a9:71:ab:51:17:
01:84:a5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org