Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kcljrdVUtkxWlj9-Jihb-8BmrLY.roa
File: kcljrdVUtkxWlj9-Jihb-8BmrLY.roa (raw, json)
Hash identifier: qYTbqcyk00lGIsWWcUbWtFtSkT/QMZGFaoZULBrY3wU=
Subject key identifier: 91:C9:63:AD:D5:54:B6:4C:56:96:3F:7E:26:28:5B:FB:C0:66:AC:B6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2270
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kcljrdVUtkxWlj9-Jihb-8BmrLY.roa
Signing time: Fri 25 Nov 2022 04:41:10 +0000
ROA not before: Fri 25 Nov 2022 04:41:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8816 (0x2270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=91C963ADD554B64C56963F7E26285BFBC066ACB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3f:69:78:1a:a6:39:ed:db:1d:fe:42:e7:f8:
70:1d:07:e3:68:76:f4:53:a4:02:41:e8:ac:0b:42:
0b:58:0a:82:07:a4:c2:d4:c4:13:f0:dc:d0:38:98:
8c:6d:1f:e1:fa:26:4f:40:bd:07:c1:85:17:eb:82:
90:0b:9a:b6:4e:e0:a6:99:09:13:76:5c:ce:19:b2:
fd:5e:4c:41:56:85:3a:d3:d5:f1:bc:24:87:b4:8f:
46:2a:4f:d1:fd:ef:10:81:b1:54:a1:7f:a5:89:0a:
db:47:f7:f2:6d:c1:0c:bd:06:4a:b7:8c:5d:51:d0:
e9:33:f3:97:ef:d8:63:74:39:00:00:70:e7:2e:45:
98:49:13:04:42:b3:50:17:75:a3:69:f5:48:24:2f:
00:f1:fb:9c:f4:b4:df:bf:a5:c1:5c:9a:65:03:bd:
85:45:28:82:3d:de:ce:7c:ab:cf:ac:06:a5:67:d0:
d5:bf:e4:7e:ba:68:f3:b6:06:26:b6:a1:3d:fb:21:
37:18:96:df:77:5a:0a:e2:b1:fa:72:d6:d4:17:fa:
4b:e3:b3:df:98:91:3a:5d:95:26:00:94:cc:0a:53:
c0:b0:51:57:38:71:4d:28:0e:ef:75:6b:d7:cb:bb:
9c:de:24:e0:11:ef:ce:2b:f7:d7:72:b9:8c:b1:a7:
6a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C9:63:AD:D5:54:B6:4C:56:96:3F:7E:26:28:5B:FB:C0:66:AC:B6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kcljrdVUtkxWlj9-Jihb-8BmrLY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.12.0/24
Signature Algorithm: sha256WithRSAEncryption
65:75:86:f1:da:2d:db:c2:71:f9:9d:d3:f1:3f:5c:76:b8:ef:
42:b0:e0:79:b2:c4:4f:e7:8d:30:6d:a1:26:dd:55:06:45:94:
c4:e8:91:39:59:3c:5b:99:f3:c5:9c:77:a0:13:d7:81:38:0b:
ea:9e:67:bd:56:4e:ed:e1:26:29:12:d2:7a:67:ad:fc:fc:ae:
1f:c9:bf:dc:9f:5a:ad:55:78:35:76:af:0f:31:5d:7a:65:f1:
b9:92:34:69:ad:c1:06:b0:44:7b:1b:25:82:80:a8:76:72:d2:
6d:fb:e9:28:06:45:28:ee:b4:4a:f3:11:f2:78:ff:90:54:1b:
fb:dc:ba:ac:74:82:e5:f1:85:cd:fb:50:b5:3b:cd:7a:10:d7:
94:20:04:74:75:07:a6:bc:64:68:8e:3b:f5:f4:76:f2:46:e0:
34:c8:e5:3d:5d:0a:59:2c:df:c5:e1:89:f9:85:c1:b9:5a:19:
4b:3b:4a:a5:dc:fe:08:b1:70:74:5d:e5:8b:26:cf:4a:86:c3:
3a:a5:87:c7:e1:8a:70:d1:c3:07:2a:ce:6a:fa:19:3d:0c:85:
d5:a5:85:61:42:ee:ce:4c:e4:c0:a4:39:b0:19:2b:22:0d:b7:
06:39:8f:f6:12:7e:81:7f:96:18:54:93:d0:0c:60:2f:d7:c4:
f5:6f:db:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org