Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hcoThtAsMnmKjB88LB5zgZY4U3c.roa
File: hcoThtAsMnmKjB88LB5zgZY4U3c.roa (raw, json)
Hash identifier: kJt66qSEZ123u6uRm74hqWspFCXv/xN1EnsH7o3EMao=
Subject key identifier: 85:CA:13:86:D0:2C:32:79:8A:8C:1F:3C:2C:1E:73:81:96:38:53:77
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16F7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hcoThtAsMnmKjB88LB5zgZY4U3c.roa
Signing time: Sun 07 Feb 2021 12:15:40 +0000
ROA not before: Sun 07 Feb 2021 12:15:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5879 (0x16f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:15:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=85CA1386D02C32798A8C1F3C2C1E738196385377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f7:a7:f7:19:97:a5:8b:ff:8e:32:e5:65:6c:
d9:e7:a6:57:78:1a:99:db:2c:5f:11:4c:7c:22:90:
7d:71:a5:b2:4e:32:48:72:b3:73:28:98:31:f5:32:
11:29:5e:e8:57:1b:82:0a:ff:20:77:fd:0e:7f:32:
ea:9b:27:ad:d6:ab:f0:29:6c:38:b6:ad:fc:7a:d7:
f5:e9:b6:93:85:62:1a:b0:d1:c1:a8:1b:6c:a8:0e:
78:3e:6b:91:71:8c:63:ce:2d:9a:74:c3:62:cc:b5:
bb:00:63:02:86:55:9b:38:c0:a5:b2:41:c4:08:d9:
c6:a6:8e:60:28:a0:f2:5a:29:e8:82:6a:7d:82:7a:
0c:c5:f2:45:16:30:5a:3c:fb:44:1f:f6:6c:a9:f9:
42:32:f4:a1:92:17:f8:36:d1:d8:ef:da:99:d9:f1:
1b:44:d1:5b:08:d4:2a:1f:34:0e:dc:b1:79:05:63:
1e:f0:e8:b1:d9:e0:5f:bc:bf:b4:03:9b:15:21:e6:
bf:25:11:38:05:23:92:0b:57:2a:6f:91:b5:a2:ba:
15:0e:85:a7:c2:41:1f:7c:62:0a:bb:8a:59:fe:a5:
c9:71:69:ea:e9:d2:c0:01:2f:14:a4:43:ac:3b:50:
1d:03:e9:4c:a4:fd:ec:e0:26:fa:e8:2f:2d:e3:af:
dc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CA:13:86:D0:2C:32:79:8A:8C:1F:3C:2C:1E:73:81:96:38:53:77
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hcoThtAsMnmKjB88LB5zgZY4U3c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.64.0/21
Signature Algorithm: sha256WithRSAEncryption
09:83:fa:1d:04:5d:b1:3b:0e:33:4e:56:e1:60:b5:bd:23:b0:
e4:32:b3:41:3b:d3:97:c2:fb:f0:57:14:57:d2:53:8f:da:55:
8d:b6:39:18:91:87:93:aa:d2:7a:b7:06:5d:ad:4e:22:76:37:
00:e1:db:b7:3a:a1:be:79:b0:f0:08:12:4a:49:a1:93:cb:61:
c1:27:f7:c0:8b:d1:60:ef:99:e8:fc:fc:b8:ab:33:4e:41:6b:
ff:1b:2b:51:98:fd:dd:65:20:20:77:25:03:db:e6:c2:00:55:
21:03:c1:ba:7e:d1:63:68:13:29:e4:63:93:94:1d:0e:86:90:
8a:db:85:2c:f8:da:d1:00:2d:6c:cc:7f:c3:ab:20:c8:a5:1d:
2d:63:4a:01:78:36:bc:d5:eb:96:3a:a2:6b:0c:70:9b:ef:13:
ce:08:bd:2c:7d:35:c0:98:08:7d:4b:fb:82:5e:6f:ae:cf:a8:
23:f5:ef:95:e4:9e:f9:34:ab:a8:e8:47:e2:2f:68:77:0a:4c:
84:58:bd:d5:e5:31:89:81:6f:50:70:96:22:86:05:ea:53:71:
fc:59:e4:93:fa:dc:15:a2:27:5d:3a:fb:b2:a9:c6:04:f0:59:
3c:06:36:30:b3:d0:91:81:28:42:3d:5a:84:31:82:16:35:65:
19:b5:f4:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org