Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lZBSZ2sv5oiTEBYGoyyWBMiXjBI.roa
File: lZBSZ2sv5oiTEBYGoyyWBMiXjBI.roa (raw, json)
Hash identifier: adbV8H8zBOeeC9CjLNA0UtWFfu2IzA3sk740pyCYY5o=
Subject key identifier: 95:90:52:67:6B:2F:E6:88:93:10:16:06:A3:2C:96:04:C8:97:8C:12
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E62
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lZBSZ2sv5oiTEBYGoyyWBMiXjBI.roa
Signing time: Tue 03 May 2022 03:37:47 +0000
ROA not before: Tue 03 May 2022 03:37:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7778 (0x1e62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 3 03:37:47 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=959052676B2FE68893101606A32C9604C8978C12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d4:16:ae:cd:ba:00:fa:bd:02:92:69:68:19:
e5:99:e4:f0:f7:6c:43:6c:ae:bf:5c:15:f7:33:88:
a9:e6:82:6d:c0:fd:ab:6b:3e:e4:ee:da:c7:8b:4d:
5d:e2:c5:31:7e:b2:4d:92:0e:8b:82:20:1e:20:8e:
fe:fe:6b:26:e3:3f:07:e5:23:5d:69:d0:64:90:b2:
07:85:cb:f6:4b:f7:79:2d:5a:08:18:74:65:df:91:
ad:a0:59:f0:3f:1e:7f:ab:e6:d5:73:f4:62:1b:f9:
78:3e:ac:07:f8:9c:dc:09:07:76:a4:ee:76:6b:69:
81:d3:5a:e5:47:d8:4d:65:b4:4c:2e:e0:8e:e1:76:
a1:14:84:71:27:6b:f3:b4:a8:b5:6b:0a:c0:8e:47:
2c:30:4b:81:7d:56:87:39:35:f9:70:eb:3b:a2:00:
ec:ce:75:89:e2:07:9b:cb:9a:5b:b9:75:c3:93:37:
53:77:34:89:73:85:c4:22:d8:75:e5:fe:8d:2b:a5:
10:25:fe:d8:43:24:d4:88:74:f7:3e:07:a9:d0:d4:
aa:b6:f4:c6:9f:cc:ba:8b:fb:29:ea:6f:fa:37:17:
6b:cc:22:3b:7a:1f:e1:e4:42:52:aa:48:cf:29:c7:
85:9a:c9:87:d0:5d:44:0e:7b:6b:22:51:d0:b0:75:
f1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:90:52:67:6B:2F:E6:88:93:10:16:06:A3:2C:96:04:C8:97:8C:12
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lZBSZ2sv5oiTEBYGoyyWBMiXjBI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.220.0/22
Signature Algorithm: sha256WithRSAEncryption
78:ed:f8:83:97:47:5c:92:e6:f2:e4:16:dd:16:f6:f3:00:cc:
ad:a4:94:97:f9:a6:43:56:ee:72:8c:c0:26:13:d9:e5:1d:d0:
72:76:1a:c2:61:84:1d:0a:0d:a2:92:c7:9a:d6:63:36:26:2d:
0d:e4:70:f3:b5:a0:32:34:c5:94:01:2a:4a:a9:59:05:7a:e9:
46:79:70:79:a5:9d:40:36:0b:aa:a3:5f:f3:17:a5:2d:df:51:
70:cc:bd:ea:8e:d5:9e:ab:4b:af:98:61:e4:c0:61:7a:6c:c9:
c8:46:95:5d:de:f8:6c:d8:a4:c5:ca:c6:38:1a:46:23:26:3c:
a2:c0:c1:00:cb:30:a3:e2:47:c1:6f:32:bc:94:10:bb:2a:88:
88:ea:8f:f4:5e:ea:00:72:27:40:5c:b2:ef:f4:67:3b:cb:ad:
08:6a:e2:93:06:5c:5b:c7:c8:c6:f1:5e:cc:64:e5:c7:48:5b:
da:ab:9d:c3:e0:f1:1e:dd:2b:74:ad:c9:87:e9:af:db:e0:ff:
fd:a3:d7:fc:9a:d8:38:9f:87:c6:cf:4c:e8:ee:e3:cc:2b:ae:
82:77:85:f8:87:31:3f:d3:5d:72:03:53:60:e8:a8:10:35:ba:
5c:2a:4f:29:af:28:f4:e9:e3:5e:b4:f7:e1:e4:ea:54:ac:df:
9b:1f:26:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:39 2024 by rpki-client on console-ams.rpki-client.org