Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hdoXBR9QsuAaYYPehYn6WE1Jcoo.roa
File: hdoXBR9QsuAaYYPehYn6WE1Jcoo.roa (raw, json)
Hash identifier: s9OWHk6TNGJ3vHahoQB3FtVJhmXTE7WFcTTpJ0eR3Hc=
Subject key identifier: 85:DA:17:05:1F:50:B2:E0:1A:61:83:DE:85:89:FA:58:4D:49:72:8A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hdoXBR9QsuAaYYPehYn6WE1Jcoo.roa
Signing time: Thu 15 Sep 2022 02:45:02 +0000
ROA not before: Thu 15 Sep 2022 02:45:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=85DA17051F50B2E01A6183DE8589FA584D49728A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:50:0a:7a:7a:88:f8:21:a7:ba:89:5a:92:23:
cf:7e:5e:c2:58:97:d4:86:7b:b9:e8:a1:cc:0b:da:
2c:cc:e2:19:80:e5:58:5f:a8:ad:ff:49:2e:4f:08:
8e:29:42:ac:4f:f8:31:a5:ef:89:ca:7d:f3:9b:4e:
6b:5d:cf:8c:1a:c9:08:e6:03:59:93:14:c1:c2:a8:
56:0a:b9:1c:47:e9:ac:cb:76:c4:af:b2:28:d0:10:
cf:1c:19:85:da:cb:fa:1a:39:89:cb:cf:6a:ea:d6:
11:0b:f4:ae:14:e6:5d:d5:41:db:27:d3:15:32:c5:
ea:51:85:12:0d:3a:f9:ec:00:b8:97:0d:6b:31:3f:
c1:0a:e7:f3:7c:dd:4f:d9:90:0c:fa:86:0d:38:40:
2d:f0:c4:54:33:1d:eb:2f:cb:b0:6f:d8:14:78:0f:
33:86:5c:3e:ab:7d:dc:f9:ef:bc:53:a4:7b:68:7e:
2d:7b:96:97:30:4c:79:4f:ac:31:28:61:1b:a0:72:
0d:b0:5c:c9:62:26:7b:d4:0b:09:8e:35:24:3a:9f:
c6:f0:59:78:67:35:13:57:c6:e3:02:be:ab:44:1c:
b1:ef:df:74:49:a6:a3:ea:ac:e3:22:67:e0:a7:e4:
3d:9a:ce:57:d2:b4:86:95:a5:4f:35:fd:77:60:87:
19:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DA:17:05:1F:50:B2:E0:1A:61:83:DE:85:89:FA:58:4D:49:72:8A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hdoXBR9QsuAaYYPehYn6WE1Jcoo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.101.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:16:db:e5:b1:f9:43:02:85:ef:9f:98:15:f3:ab:e6:aa:27:
3a:db:ff:0d:34:bf:ce:7a:3f:86:0b:83:5a:ac:2d:ca:23:a9:
72:d6:58:da:c9:4b:e0:35:28:bf:7a:38:99:6b:de:56:12:12:
84:4b:2d:ee:54:e8:aa:18:34:84:8b:94:28:d8:2d:5b:78:a4:
81:3f:82:db:55:c2:58:46:dd:1f:9f:cf:44:e4:6e:8c:11:62:
bc:c7:49:82:11:b2:e7:28:66:1e:23:3d:a7:91:c1:f1:d1:1d:
da:c7:39:a3:8e:e5:7b:af:b5:d4:54:43:5a:ff:0f:1d:57:08:
b6:d8:04:ef:0f:3a:49:b0:b1:ec:26:a5:5e:6f:30:e0:6b:4a:
23:80:c8:c5:73:83:09:37:4e:5b:e9:c3:c7:e0:ec:06:ef:5e:
4a:97:53:16:8b:ee:5c:28:63:61:d4:c3:e1:fe:ab:10:8d:57:
8f:3c:dd:c8:29:78:3e:50:03:50:dc:a9:ec:d0:d0:8b:78:20:
0c:6e:ba:4a:d8:3d:eb:1c:8a:23:c7:16:59:75:83:95:7a:32:
e0:8c:e6:03:9b:f2:12:5b:d6:0f:53:14:55:f8:86:91:47:26:
f6:f9:fc:b1:05:91:5f:57:1f:69:95:f3:58:47:84:69:18:ab:
b9:4c:de:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org