Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hSPTbiEeU8pikLFeWQ5WuYAaly8.roa
File: hSPTbiEeU8pikLFeWQ5WuYAaly8.roa (raw, json)
Hash identifier: qiKi/I+K+bjnWPQ4ODTO/Wv4wvkgO65bzDDKD4TR4bI=
Subject key identifier: 85:23:D3:6E:21:1E:53:CA:62:90:B1:5E:59:0E:56:B9:80:1A:97:2F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2106
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hSPTbiEeU8pikLFeWQ5WuYAaly8.roa
Signing time: Fri 25 Nov 2022 04:39:25 +0000
ROA not before: Fri 25 Nov 2022 04:39:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8454 (0x2106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8523D36E211E53CA6290B15E590E56B9801A972F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f9:3c:fd:03:d2:f9:65:d2:ed:c2:63:98:74:
6c:e4:94:b0:fe:f6:19:d5:d4:bf:8e:52:13:62:57:
de:d1:f5:3f:70:64:67:4b:19:a5:77:0e:f7:bf:fa:
38:19:83:2f:ad:98:3b:81:be:56:ff:93:20:ee:28:
07:7b:c0:31:d7:52:2c:a5:b9:c7:0b:47:8a:a6:45:
82:d5:cb:af:9c:e5:26:8b:25:1b:21:d8:b1:74:c9:
d0:c5:58:f3:74:25:b4:34:5b:19:ed:ea:aa:39:73:
dc:76:ee:01:a3:45:5c:7b:44:dd:76:f4:e2:cf:54:
b3:30:7b:aa:94:19:d7:c0:d0:c5:34:21:b5:6a:a4:
8d:56:4b:6f:ce:ca:62:ae:74:c2:cc:a3:54:77:76:
a5:98:2d:8d:66:d0:79:e5:1a:97:d0:a4:f3:c3:75:
a6:dc:bf:aa:2c:da:b9:1e:d5:32:20:69:5e:ef:fd:
9c:41:a7:59:ed:7a:f2:26:01:34:a0:a6:b1:e7:66:
f7:d3:07:5d:29:13:27:3f:33:25:52:d4:42:94:d0:
2a:dd:16:05:a8:70:47:a4:94:e2:69:db:99:ad:df:
e7:68:19:f1:17:de:2c:75:81:fa:0f:05:bc:42:1d:
7f:9d:49:02:4b:18:b8:52:1d:ec:fe:b9:0d:95:1b:
00:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:23:D3:6E:21:1E:53:CA:62:90:B1:5E:59:0E:56:B9:80:1A:97:2F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hSPTbiEeU8pikLFeWQ5WuYAaly8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.84.0/22
Signature Algorithm: sha256WithRSAEncryption
48:48:b1:05:3f:fd:15:86:e5:81:18:2e:a3:92:26:fb:85:c3:
98:09:85:36:6c:48:df:64:81:ac:86:51:ae:fd:e2:d1:39:c0:
aa:54:43:38:d0:78:9e:db:05:5d:21:56:ad:93:0b:fe:a5:d0:
d9:5b:dd:cc:77:99:b1:83:83:36:7f:73:e8:1a:33:ac:9d:db:
b9:f6:07:7d:cf:42:06:d2:c8:2f:2a:5a:83:bc:7f:c1:24:62:
7c:c7:e5:e9:b3:1d:3a:db:84:6a:9b:66:aa:99:92:ce:d6:5b:
a8:4b:e7:f4:2a:36:69:19:ff:69:e2:51:77:6e:1e:2b:65:6a:
6f:ec:53:ab:a0:4c:5a:80:f9:5f:8e:c1:8b:ec:2e:e5:4e:98:
af:9f:79:73:61:21:39:94:5d:6f:5e:a4:24:be:25:23:6d:a8:
f4:82:4b:86:03:41:1d:d6:73:72:1f:e5:be:e8:d2:86:1a:ad:
83:db:f3:44:92:4e:a8:ee:97:60:5e:cd:cc:1d:87:f5:a5:b9:
83:51:5c:29:ec:29:66:24:22:e7:9e:6c:6c:c1:8c:26:20:a5:
4c:c2:34:30:6b:02:4c:89:76:c7:28:04:ea:be:0f:5d:df:d1:
df:e8:72:2b:85:cb:01:ab:d8:7b:4d:9f:84:c8:dc:bb:67:08:
07:5b:97:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:37 2024 by rpki-client on console-ams.rpki-client.org