Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCqbvxnZlWaCiVfSTZ3HetfqEm4.roa
File: oCqbvxnZlWaCiVfSTZ3HetfqEm4.roa (raw, json)
Hash identifier: MhKp/Umvn/MY7yTEmNkpg8xRZx0ktG5Lp3qBaZa/Zq0=
Subject key identifier: A0:2A:9B:BF:19:D9:95:66:82:89:57:D2:4D:9D:C7:7A:D7:EA:12:6E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CB6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCqbvxnZlWaCiVfSTZ3HetfqEm4.roa
Signing time: Wed 29 Sep 2021 02:48:05 +0000
ROA not before: Wed 29 Sep 2021 02:48:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.54.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7350 (0x1cb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A02A9BBF19D99566828957D24D9DC77AD7EA126E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d2:ed:18:bf:11:4e:81:ab:e4:0d:2a:d7:7f:
99:c4:c3:55:88:64:9f:30:a1:77:f8:ca:00:e3:54:
f5:55:5f:25:7d:2e:f4:e3:35:96:37:30:4e:7c:0e:
0c:49:9b:36:01:ab:fb:34:3a:d9:74:ba:b4:71:bb:
ec:2e:4c:d1:8c:c4:43:2d:da:2b:49:6e:37:e1:bc:
33:cb:94:2f:fd:78:e3:b4:cb:4d:38:61:af:d5:06:
8c:bf:be:2a:f8:0e:68:1d:eb:9e:6b:fc:e1:a1:95:
d5:5b:88:30:f4:3d:2d:27:8f:77:2c:26:13:83:9d:
e0:90:57:d2:a9:ec:8c:43:e5:9b:4f:c6:62:c0:86:
65:c9:e5:f6:81:be:9a:24:c8:fe:6c:cd:a7:f6:b9:
95:52:51:f5:ef:9d:f4:bd:ed:00:c8:a5:cb:6a:f7:
06:f1:1c:6b:61:a2:60:c6:d6:dc:7b:bc:3e:b9:04:
cb:3c:17:82:b2:1a:06:26:2d:58:8c:9d:24:73:39:
08:34:1e:08:6a:4a:4b:66:fb:5d:13:98:b7:58:9a:
43:63:a0:ea:23:56:2e:32:49:34:d3:52:55:4f:0f:
a0:05:3f:99:9c:1a:18:f6:56:da:08:6d:fb:87:49:
ed:cb:eb:2a:70:47:68:75:2f:c4:3a:1c:be:33:9e:
c1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2A:9B:BF:19:D9:95:66:82:89:57:D2:4D:9D:C7:7A:D7:EA:12:6E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCqbvxnZlWaCiVfSTZ3HetfqEm4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.54.0/23
Signature Algorithm: sha256WithRSAEncryption
27:2e:1e:de:16:0e:d5:37:e7:88:84:52:67:73:8e:3d:03:9c:
a5:cf:d1:2f:e8:27:48:0d:4f:e1:10:66:f7:fd:0b:d0:d5:a0:
4e:51:dd:be:d9:2c:21:1b:b2:58:d8:ef:db:66:39:41:f4:c2:
77:e1:58:ec:2b:3e:c9:a0:df:67:d2:f1:5a:8f:d3:34:fe:cc:
48:54:75:2b:ee:bb:fe:a5:33:b6:8f:26:fc:9e:bd:b9:48:ae:
8f:38:20:12:fa:b6:70:d0:1f:0b:05:3a:1d:c1:b9:30:4f:4a:
0d:02:e9:41:de:47:78:26:92:89:1f:cf:b8:ef:61:61:f8:c2:
28:32:ed:45:a2:8b:57:5b:f7:42:9b:cd:53:e9:d5:e8:15:97:
3a:7f:f0:0c:44:77:ee:20:51:66:10:8e:23:b9:2f:94:b0:b2:
f9:61:1d:1e:a7:b9:50:32:56:5b:e7:ce:22:91:55:4b:bc:ad:
9d:d2:18:73:8a:5c:a7:9b:f9:d2:e6:2c:e2:57:db:d9:07:2d:
1c:1d:20:36:6b:96:76:f4:7a:04:16:ae:e6:82:9f:fa:f1:74:
18:ca:08:45:35:a9:a2:19:1a:af:a4:de:db:9e:7c:3e:c7:c1:
78:55:dd:d8:81:84:e6:bb:76:ca:f4:0b:b5:6f:00:44:b4:31:
62:88:ee:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org