Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iAKhc64nhGUGMyVnzTGwuRXQ-FI.roa
File: iAKhc64nhGUGMyVnzTGwuRXQ-FI.roa (raw, json)
Hash identifier: 7F4JqaDajOuyAbYUAvAbfE4NbEZ5D3IKoWZl9qIDA4Y=
Subject key identifier: 88:02:A1:73:AE:27:84:65:06:33:25:67:CD:31:B0:B9:15:D0:F8:52
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 17A9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iAKhc64nhGUGMyVnzTGwuRXQ-FI.roa
Signing time: Sun 07 Feb 2021 12:22:32 +0000
ROA not before: Sun 07 Feb 2021 12:22:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6057 (0x17a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:22:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8802A173AE27846506332567CD31B0B915D0F852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:41:a1:c8:39:49:39:2a:2f:ce:71:00:a5:5e:
48:86:97:8b:b6:5a:7d:3f:3b:be:42:8f:42:44:c2:
a8:c7:ef:1d:90:ea:56:3b:43:ca:12:e2:e3:6a:1c:
b4:36:ab:50:8f:d3:db:c2:fd:7c:7b:b5:22:58:0e:
b6:26:8c:3e:90:f7:22:43:14:b1:de:90:04:16:27:
6f:2d:1e:19:af:24:31:8a:74:36:47:52:d2:45:4e:
4a:74:48:92:af:37:f4:3c:c1:8c:5a:0c:46:e0:8b:
3e:3e:28:61:19:ed:f3:2c:74:21:29:8b:a1:1c:66:
8c:26:fb:51:df:f6:42:8b:c2:b3:a3:98:f7:a9:d9:
9e:34:06:54:2f:2f:69:0b:26:76:84:23:e1:51:d7:
c4:b0:a7:69:d6:c0:bb:64:92:55:35:8b:03:3c:51:
ae:d2:cd:4c:a3:78:bf:2e:2b:92:e7:d9:67:11:09:
e2:35:ba:61:15:f2:1a:cb:37:2c:29:15:32:03:dc:
00:27:2e:56:2f:9e:b7:4a:58:20:d6:e0:b2:e5:77:
19:cd:6b:a0:1f:d7:79:82:f1:1c:59:48:6f:93:64:
08:a1:96:9e:47:9a:8b:35:68:4d:63:91:ba:08:e6:
db:6e:23:9a:b6:c4:3e:8f:38:c2:f7:ad:fa:49:5b:
17:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:02:A1:73:AE:27:84:65:06:33:25:67:CD:31:B0:B9:15:D0:F8:52
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iAKhc64nhGUGMyVnzTGwuRXQ-FI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.112.0/22
Signature Algorithm: sha256WithRSAEncryption
02:70:6a:b5:76:8e:19:73:5d:27:84:fd:06:24:d5:a5:51:db:
9f:c4:fd:cb:53:5e:ad:6b:09:20:02:50:98:5d:16:87:80:fd:
b5:5d:5f:19:37:2c:57:34:e7:00:53:fa:33:cc:89:e2:5e:7f:
28:79:21:d4:98:97:9b:c8:8c:12:a2:71:9e:21:34:b5:ec:0a:
02:00:dd:f0:35:a4:39:ef:04:94:b4:d4:a8:b3:b3:b9:87:5f:
22:35:c1:05:4e:5d:cd:ec:89:5c:b3:47:1a:3f:c8:7a:12:fe:
6d:d3:ae:e9:1f:15:a9:7e:fd:33:a0:d5:32:2f:c5:75:31:61:
b5:39:51:68:db:aa:d8:df:3a:6d:a9:7a:bb:56:6e:65:e9:cd:
ba:b6:56:27:68:94:fa:2b:5f:e8:40:5f:c0:26:4d:2e:70:a7:
11:50:09:e8:32:96:cd:60:37:19:a2:e9:0c:c9:f0:00:4c:ab:
85:57:09:d8:cb:f2:ee:e6:5d:ab:6c:38:7c:a1:59:d4:17:03:
0d:13:4b:05:da:5a:25:76:7c:7c:c9:67:42:2e:95:60:60:d2:
c3:5b:e9:4a:0e:e6:21:f7:bc:dc:ec:39:6c:b8:70:26:7d:02:
e1:ab:bb:93:d8:94:51:55:cb:cc:de:f5:e0:fb:c2:99:96:2d:
29:56:fd:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:37 2024 by rpki-client on console-ams.rpki-client.org