Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOYIHhUYhiPDWAv29bYJsXRMLdA.roa
File: iOYIHhUYhiPDWAv29bYJsXRMLdA.roa (raw, json)
Hash identifier: uObBBl/HjiU5Nb/dekHm41Zy4dk6+lURA4ggY704Roc=
Subject key identifier: 88:E6:08:1E:15:18:86:23:C3:58:0B:F6:F5:B6:09:B1:74:4C:2D:D0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21CC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOYIHhUYhiPDWAv29bYJsXRMLdA.roa
Signing time: Fri 25 Nov 2022 04:40:25 +0000
ROA not before: Fri 25 Nov 2022 04:40:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8652 (0x21cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=88E6081E15188623C3580BF6F5B609B1744C2DD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b3:96:a5:02:f9:9d:c7:de:bf:57:d1:8f:6d:
71:c3:26:ea:73:fc:80:d6:c5:b7:7e:53:8d:59:3c:
4a:76:8f:88:5b:90:3b:c7:2a:28:8b:0b:da:ff:c5:
a6:fe:9f:4b:c4:38:63:8c:cf:87:f9:af:16:20:83:
fb:28:e6:92:d5:27:75:93:8f:44:0b:84:a7:da:ae:
2c:7f:26:c4:50:34:88:be:c4:ba:47:4a:fc:a3:d4:
a9:7c:9b:b2:7e:21:f1:2e:b4:d9:80:16:02:60:82:
ad:4c:e6:70:7f:d8:1c:54:43:52:e1:86:89:d3:1c:
5b:79:c2:e3:70:a5:86:35:fe:f1:59:46:39:b0:4d:
bc:4b:89:ec:b1:16:cb:78:9a:c1:40:23:39:28:55:
24:c5:7b:6f:20:01:2e:b4:93:34:da:48:b7:86:27:
8f:8d:dd:52:8c:39:d0:b1:4b:c9:08:41:59:da:81:
d1:bc:d6:92:58:6c:97:0b:f7:a9:cd:d7:d5:0b:06:
e4:da:1a:f5:9c:a5:cb:80:2f:d1:7a:a1:82:7e:31:
83:32:ac:a7:18:f9:55:38:63:fc:b8:02:3f:81:ac:
51:54:87:f2:65:2c:0e:92:a3:0e:83:fe:b9:75:fa:
12:7a:e0:ab:c4:fa:cf:81:92:71:21:da:e5:c8:b3:
75:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:E6:08:1E:15:18:86:23:C3:58:0B:F6:F5:B6:09:B1:74:4C:2D:D0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOYIHhUYhiPDWAv29bYJsXRMLdA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.78.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:f2:99:64:a1:6b:fc:da:05:78:f1:b9:55:92:72:c0:ab:79:
7f:23:8a:d0:9f:e0:e5:97:15:4b:02:34:6f:b2:5a:a8:1a:ac:
df:11:66:3b:77:93:77:e5:73:fe:d3:9b:d1:01:4d:cc:ca:9b:
4b:00:40:3a:dd:ab:f8:c7:a7:a8:18:38:e3:30:da:af:61:d0:
30:3b:e0:2a:52:aa:56:9a:35:62:73:be:b7:aa:d0:cd:06:4d:
6e:fd:cd:c3:f1:71:37:b0:44:ab:fa:f0:b5:6c:3e:6e:24:dc:
54:75:aa:1d:9e:db:92:cf:8e:9d:13:5b:49:ee:74:bf:37:3d:
ae:77:72:ea:d9:7f:93:47:06:2c:aa:9d:26:89:2c:c1:10:c1:
e9:01:66:57:02:44:fd:12:3f:cd:55:d8:b6:69:4a:5f:7b:18:
e9:7c:95:5e:ae:a7:26:45:c8:59:c5:da:07:4c:24:70:1e:b0:
cb:15:27:68:c0:31:70:1b:15:b4:d1:c3:73:9b:92:45:13:ee:
8c:09:1b:4a:48:70:57:fd:dd:f0:ab:28:e3:f2:26:c3:e6:1a:
38:10:40:d6:c2:24:63:03:85:4b:6d:e1:95:2b:6c:3c:4a:9d:
88:58:aa:e2:d9:0e:45:20:9d:97:28:5d:6f:d6:00:4c:d0:f2:
29:63:83:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org