Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oBeDdmubBlOhvirHyGqGTY9eNWs.roa
File: oBeDdmubBlOhvirHyGqGTY9eNWs.roa (raw, json)
Hash identifier: 1zT+sH2JtSzsEOendc/CwxN+gUQPULQGkXsL50m1g2s=
Subject key identifier: A0:17:83:76:6B:9B:06:53:A1:BE:2A:C7:C8:6A:86:4D:8F:5E:35:6B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22F4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oBeDdmubBlOhvirHyGqGTY9eNWs.roa
Signing time: Fri 25 Nov 2022 04:41:50 +0000
ROA not before: Fri 25 Nov 2022 04:41:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 118.232.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8948 (0x22f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A01783766B9B0653A1BE2AC7C86A864D8F5E356B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:28:70:2c:05:1a:1c:f8:d5:b9:d7:5b:ce:52:
08:18:fd:c2:6b:33:72:50:ea:ab:d9:b6:7d:26:3c:
2c:0f:dd:ee:f6:a8:36:fa:20:a3:15:d6:c2:ca:27:
be:94:2c:76:cd:f3:2c:1e:e8:35:77:8a:fe:f3:4b:
59:a4:38:ba:0a:6f:4a:79:e0:81:cb:cf:0a:a4:19:
07:ea:c3:a7:fc:a8:e1:34:05:a6:54:62:20:fe:41:
bd:cb:1b:de:ef:31:de:7f:cf:44:2b:57:4f:ee:b7:
9e:90:86:1c:77:db:49:f1:e7:c3:b7:12:e6:3b:18:
78:1b:01:9c:88:8a:66:58:52:84:35:53:6f:f8:24:
1a:0c:b3:83:1b:89:14:7c:4d:e9:a3:50:d0:c4:e9:
61:2e:cb:83:55:29:c0:40:fc:1b:2e:a8:c0:52:17:
ee:c0:5c:ac:4b:31:b0:1d:3f:02:4c:13:08:2f:45:
ef:47:2e:c1:e0:53:ea:4c:f3:c1:ab:ea:87:36:22:
16:f0:53:b9:32:9f:15:65:6b:98:ea:e3:4b:74:7e:
05:fa:65:84:f0:8c:39:e2:11:f2:e5:f7:95:0d:d2:
c9:83:36:2e:2b:3d:d3:e1:8a:6e:02:86:0c:47:c1:
2c:11:da:16:2c:23:cb:aa:4d:ce:be:7a:12:53:d3:
eb:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:17:83:76:6B:9B:06:53:A1:BE:2A:C7:C8:6A:86:4D:8F:5E:35:6B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oBeDdmubBlOhvirHyGqGTY9eNWs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.244.0/22
Signature Algorithm: sha256WithRSAEncryption
65:1f:26:a9:22:62:3b:d1:c7:73:15:6d:15:8a:8c:e8:a3:a6:
de:11:33:7c:7a:83:0d:4d:89:fe:7e:f8:c0:77:44:34:43:18:
39:1d:28:d4:1d:44:39:e1:02:24:dd:ea:20:52:68:d2:76:bb:
89:8c:38:21:b3:ce:8d:4a:67:cb:32:42:e0:3a:e9:49:61:4b:
cf:8b:79:61:74:21:d1:a8:ec:94:72:61:a0:61:1d:8e:fb:b1:
b5:cb:b0:f8:2d:9b:5a:39:95:e2:b7:2e:80:70:1c:11:52:12:
5e:ce:10:de:70:5e:b4:cc:b3:89:cb:b0:e3:fd:6c:50:f4:b0:
e9:3c:8f:45:38:fe:64:36:00:83:8a:68:89:32:ac:24:42:50:
21:e4:ce:d6:85:3e:fa:84:12:ea:59:43:b9:79:d1:76:52:67:
ce:ca:dc:cb:89:7b:cb:ed:89:bc:8b:70:84:ce:f5:8c:32:dd:
2c:fd:f0:fb:6c:56:c4:f9:b6:4f:bf:9f:13:08:7a:04:52:8c:
5c:24:19:87:0d:fc:3b:1b:f2:04:5c:28:68:a8:11:27:2e:7f:
1f:20:ab:35:26:3f:e3:05:74:fe:cd:ac:41:7e:6b:c3:3c:ff:
fe:91:88:d5:03:34:35:ce:5c:f3:7a:24:2d:de:be:b8:f5:1b:
79:ce:73:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org