Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZZDXonn5rCQDnXWEVeEinA46oI.roa
File: hZZDXonn5rCQDnXWEVeEinA46oI.roa (raw, json)
Hash identifier: RZ3AdGMqzy2/xUIMP5SAZushxYo1xu6+eRiwwk/8P7Y=
Subject key identifier: 85:96:43:5E:89:E7:E6:B0:90:0E:75:D6:11:57:84:8A:70:38:EA:82
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C1C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZZDXonn5rCQDnXWEVeEinA46oI.roa
Signing time: Wed 29 Sep 2021 02:47:22 +0000
ROA not before: Wed 29 Sep 2021 02:47:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7196 (0x1c1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8596435E89E7E6B0900E75D61157848A7038EA82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:30:ba:0f:7d:7a:de:0a:a3:27:c2:cb:e3:2c:
79:cb:5f:a9:28:b8:4c:aa:18:7f:a1:03:74:5d:b0:
fe:cb:cc:77:6d:29:26:25:c8:be:22:ec:b1:18:1d:
29:bc:83:d8:41:cb:a2:bd:1b:80:87:16:ea:5e:eb:
b8:42:d2:54:1f:a8:bf:51:f3:12:78:64:fb:d3:ea:
97:7b:8e:69:33:c6:c3:cb:66:bb:a6:14:67:01:a1:
b0:9f:51:f2:49:0d:8a:6b:1d:03:91:8b:9a:2d:08:
c2:b2:a1:3a:40:c5:45:f9:5e:f6:a2:51:4c:5c:58:
5d:0e:12:90:0a:0b:54:9e:1d:64:13:6b:36:9c:f6:
9f:48:69:8b:9f:ec:4b:eb:aa:de:09:34:2e:a5:6a:
b8:6c:53:01:41:56:42:02:8a:a8:ec:53:97:7a:3e:
e9:c9:d9:69:c4:67:13:7e:c8:cf:d3:22:b1:f3:35:
b2:2f:3e:19:0f:6b:fb:ef:4e:49:8f:83:1e:e2:08:
21:68:03:8d:42:84:fd:cc:6a:70:51:68:75:48:e9:
5a:ef:63:83:0a:98:8e:02:ce:bd:43:3b:ae:c7:92:
ee:c6:0a:b4:dd:cc:5c:90:4f:a8:ed:16:89:59:23:
3e:3c:dd:0e:e9:82:81:67:e1:cc:39:28:37:a8:f3:
ea:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:96:43:5E:89:E7:E6:B0:90:0E:75:D6:11:57:84:8A:70:38:EA:82
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZZDXonn5rCQDnXWEVeEinA46oI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.36.0/22
Signature Algorithm: sha256WithRSAEncryption
18:c2:fb:8b:57:98:74:01:6e:18:c3:6e:ad:2d:44:74:6f:4a:
df:94:91:a0:c1:be:77:a9:de:dc:92:4c:1d:e0:2b:a0:a9:65:
ce:91:e6:d9:0f:a8:0f:5e:ed:79:65:64:09:03:7d:94:35:05:
56:ff:6d:53:64:45:a4:6b:82:95:42:91:1f:84:80:92:72:04:
74:5f:59:1e:db:8e:cb:cf:b9:f9:b8:6c:94:aa:ce:51:02:fc:
43:db:f0:e9:d2:19:c1:23:5b:b0:33:94:2e:40:f1:9b:f3:1d:
b2:68:ce:a0:7d:c6:1c:b7:85:f3:78:df:3b:2a:95:67:44:0b:
9d:35:ea:66:9e:0a:2c:6e:89:66:91:7f:7f:84:02:91:66:3e:
16:96:6d:1d:f5:16:68:40:d7:c5:11:a8:32:1f:d8:dc:48:a6:
b1:f2:37:72:a7:84:5d:0e:72:0c:84:be:ef:80:d2:98:6a:95:
8e:fa:25:e8:6d:48:2b:cd:12:02:1f:47:b7:db:ed:2f:19:37:
6c:0b:f6:d1:d6:78:45:f6:ed:60:86:2c:fb:06:d8:c4:5b:49:
55:6d:47:31:ff:9a:6e:76:0d:5f:80:d5:5d:30:0f:d4:25:81:
bd:33:82:dd:9f:6f:2c:14:5d:a9:62:04:d9:fe:7b:d0:26:9a:
46:4f:82:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:37 2023 by rpki-client on console-fra.rpki-client.org