Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o7MA0CwYuLDdjP2eqgvCw9u-Lro.roa
File: o7MA0CwYuLDdjP2eqgvCw9u-Lro.roa (raw, json)
Hash identifier: aznwxyK+zOpLmPAY/o/ta8mbkJ45WQaGd0C6d1fJJCw=
Subject key identifier: A3:B3:00:D0:2C:18:B8:B0:DD:8C:FD:9E:AA:0B:C2:C3:DB:BE:2E:BA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 17E3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o7MA0CwYuLDdjP2eqgvCw9u-Lro.roa
Signing time: Sun 07 Feb 2021 12:24:27 +0000
ROA not before: Sun 07 Feb 2021 12:24:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6115 (0x17e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:24:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A3B300D02C18B8B0DD8CFD9EAA0BC2C3DBBE2EBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4b:3d:98:a2:de:79:c0:ee:47:64:df:74:49:
a8:87:e2:b0:e8:07:33:a8:eb:ac:90:96:28:2e:64:
9e:68:2a:fe:19:f4:45:2a:3c:38:77:2a:c3:fe:78:
d0:ea:6b:06:11:63:0b:f4:d1:16:e8:ab:fe:25:86:
c0:8f:00:00:ba:cf:62:de:38:5d:6f:63:3c:7a:6e:
29:42:ed:c5:80:e3:b5:eb:83:31:32:c4:c2:56:92:
81:65:80:46:ee:7a:e2:32:23:21:d5:01:6d:f0:43:
b1:52:6a:11:4b:0a:89:8e:20:a6:8f:1e:43:aa:c6:
97:5f:d0:d0:7a:93:18:99:a4:d2:46:1d:19:fc:77:
ee:3e:ba:ff:35:c4:30:e5:e2:c3:97:08:54:1e:9f:
9f:12:ac:28:95:08:67:96:78:dc:16:b0:c5:e2:e5:
8f:c5:d0:d8:47:33:30:59:8f:38:49:ad:99:66:31:
ca:ad:cc:ab:1c:44:84:13:16:d1:6b:d1:1a:0f:e0:
00:da:0c:9b:31:c8:61:9e:d1:7f:f0:e1:d2:d7:ed:
85:62:03:02:34:74:ea:e6:9e:e3:bf:cc:1a:b3:03:
54:e6:38:34:73:86:95:fb:6f:e9:4b:48:e3:bb:a6:
b9:cb:14:ee:c2:85:9b:af:dd:25:78:a5:ad:64:25:
91:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B3:00:D0:2C:18:B8:B0:DD:8C:FD:9E:AA:0B:C2:C3:DB:BE:2E:BA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o7MA0CwYuLDdjP2eqgvCw9u-Lro.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.112.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:82:7f:19:fc:59:0a:be:ba:80:88:5d:58:5f:50:ed:37:4e:
4c:df:4c:74:d5:b8:5f:b3:34:d9:00:41:bb:b8:af:11:a4:19:
fe:63:be:e3:c8:da:03:79:16:9e:51:be:aa:21:30:16:ec:5b:
f0:40:2d:8f:07:3c:0d:cb:55:33:af:91:85:14:ec:f7:a7:f1:
79:9c:53:95:9c:6f:0d:ad:4d:4f:a9:b0:62:92:c0:3f:d6:ef:
17:01:b2:bc:a3:f1:fe:97:19:e8:91:a0:ba:e9:ae:2e:d1:a1:
91:85:2c:33:9e:94:aa:72:9b:f3:b5:79:ca:86:64:31:95:23:
77:a5:18:0d:a1:94:54:e2:69:df:48:3a:dc:36:5d:f8:cc:ff:
d0:be:08:a2:c1:f8:da:05:98:64:30:3d:4a:48:98:17:12:fb:
72:af:6b:d7:67:2d:24:40:85:e5:05:a0:56:c5:54:ce:bf:28:
be:84:12:90:c4:62:f5:84:47:7b:9e:a0:66:16:17:89:03:e6:
11:f0:58:98:96:12:84:98:74:1a:11:f5:63:67:8d:48:cc:54:
52:8b:20:2d:ef:72:2d:6b:ca:47:eb:93:a9:65:43:f3:7e:58:
df:fa:6a:15:78:74:72:4d:22:df:0b:2b:7a:ec:ce:b8:cb:29:
a6:1a:fc:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org