Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iYpCHR8lee-oKG_PguyZMAQiRVE.roa
File: iYpCHR8lee-oKG_PguyZMAQiRVE.roa (raw, json)
Hash identifier: VxyroXG3CwlUkS5ZKRlDD0rzJ1GZjNsScpHZKtxd/ls=
Subject key identifier: 89:8A:42:1D:1F:25:79:EF:A8:28:6F:CF:82:EC:99:30:04:22:45:51
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1817
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iYpCHR8lee-oKG_PguyZMAQiRVE.roa
Signing time: Sun 07 Feb 2021 12:26:12 +0000
ROA not before: Sun 07 Feb 2021 12:26:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6167 (0x1817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:26:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=898A421D1F2579EFA8286FCF82EC993004224551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:67:e0:72:e6:cb:d7:64:3c:60:a3:e6:fc:b0:
ad:3a:ea:1f:f0:be:94:64:96:4f:68:4d:ef:f9:4e:
4a:4d:52:f2:84:9a:62:65:0f:ff:a5:31:0c:08:79:
17:ef:db:07:0e:e9:60:b8:c9:20:c1:4f:98:1a:92:
11:30:22:69:a2:d0:87:41:63:a5:eb:3e:c5:ba:ab:
88:e4:7e:b9:ed:c4:99:98:28:8b:71:c2:73:ef:17:
b5:d4:09:e1:0e:08:0a:26:5a:3b:7c:6c:28:35:23:
a5:85:d5:59:94:34:dc:46:93:92:00:76:21:ec:c7:
76:35:5d:e7:d9:0b:a9:58:24:6b:45:34:82:d8:f6:
8d:d8:2a:4a:e5:fd:ad:6d:15:73:5b:1c:86:65:98:
f0:1a:d2:51:62:b0:18:6a:ca:ce:9a:e6:18:b6:59:
52:38:47:c4:f0:af:c8:70:1c:d6:3c:52:0a:7c:da:
81:9b:6c:70:4f:66:32:4c:ee:f2:43:aa:1c:63:0f:
f2:59:8d:61:42:9c:a7:17:34:3e:15:af:e4:3a:5d:
71:c2:b1:c1:67:4f:d6:38:05:f8:7f:01:a2:a7:ed:
36:0b:fb:81:04:4f:9b:81:c3:76:36:d6:00:c5:5a:
b9:8a:ac:bb:b9:36:e5:2e:e8:46:e7:ec:47:dd:18:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8A:42:1D:1F:25:79:EF:A8:28:6F:CF:82:EC:99:30:04:22:45:51
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iYpCHR8lee-oKG_PguyZMAQiRVE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.164.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:ca:5a:fc:46:e6:0f:60:48:1c:48:c2:56:8a:da:7a:27:78:
a3:08:0a:24:10:45:cb:e4:17:51:4d:bc:49:46:c0:df:a8:21:
8e:e5:0c:c0:99:eb:83:72:22:88:5d:b6:16:3b:2b:d5:f0:a2:
86:58:66:bc:c4:98:ce:14:3b:d6:3b:47:9f:22:a9:3d:cb:f1:
a7:35:b5:32:e0:75:f5:72:1f:7a:d7:a8:6e:e2:3c:76:4a:34:
f9:00:09:9a:0f:48:d0:e6:47:9f:e8:3a:64:71:1a:f5:12:34:
75:96:f8:42:da:ba:1a:ef:f2:b6:8a:0c:aa:18:c1:ff:da:42:
b4:6f:c9:ee:fc:5a:06:70:4c:04:4b:dc:0a:ba:f1:a0:ad:18:
11:0f:27:80:1e:44:c2:c1:4a:b8:b2:db:96:c5:c6:e4:77:07:
66:56:a8:9c:95:e0:2b:73:ad:a8:91:2f:7d:5a:bc:3c:9d:c0:
00:39:4d:9c:43:34:ec:57:d2:22:e7:a2:e8:44:79:21:5b:95:
69:b0:33:c1:bc:44:c3:18:92:7d:be:1f:46:51:79:6b:91:39:
03:33:2f:c8:52:7c:8b:77:01:18:7e:dc:e2:54:ae:f5:8d:4c:
a3:09:75:c1:5c:f7:b4:83:22:7f:71:77:76:c7:91:4b:64:98:
ba:9a:c2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:26 2023 by rpki-client on console-ams.rpki-client.org