Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oTJk8XvfgLtio3Obk3bQx7_RVRg.roa
File: oTJk8XvfgLtio3Obk3bQx7_RVRg.roa (raw, json)
Hash identifier: 28XT3SsWpsLj0CaOowCOey5eJoK2f+91uYW23R+YjVE=
Subject key identifier: A1:32:64:F1:7B:DF:80:BB:62:A3:73:9B:93:76:D0:C7:BF:D1:55:18
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 13CD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oTJk8XvfgLtio3Obk3bQx7_RVRg.roa
Signing time: Sun 07 Feb 2021 11:56:18 +0000
ROA not before: Sun 07 Feb 2021 11:56:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5069 (0x13cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:56:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A13264F17BDF80BB62A3739B9376D0C7BFD15518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:e0:57:43:94:7d:d5:9b:81:7e:23:9b:ff:
44:d9:d0:e0:5a:77:b2:5c:73:3c:8e:a8:97:40:d7:
06:a2:db:65:cd:ed:f0:a0:0b:4d:f8:cf:d3:28:f3:
70:2f:b8:61:0a:bf:bf:7b:b6:83:3c:a6:ca:b7:61:
35:4e:4b:f8:5a:e2:45:6e:de:ba:8a:97:9d:13:f2:
15:09:48:04:f5:4e:c1:db:ff:5d:ae:83:68:23:c1:
74:b4:0f:52:8f:54:57:5c:ac:0e:17:98:cf:19:08:
40:f5:70:27:5e:52:42:48:49:b7:42:9d:57:59:d1:
4f:9f:06:34:43:9f:79:c9:68:30:e9:f6:b7:b5:1d:
52:75:6d:50:47:2f:34:1e:0c:9a:15:d1:1d:5c:27:
83:99:b1:eb:fb:9c:d0:54:cb:2a:7a:1c:95:7e:b7:
db:65:4d:8e:ae:b0:e7:cb:5c:df:73:bf:56:d2:b6:
29:4f:f4:97:85:e5:6a:54:ea:47:f5:e8:c4:be:fa:
e3:2f:88:d0:67:5d:e0:09:f9:73:28:fc:a8:63:ff:
e1:38:09:d8:e7:c8:8a:cb:58:fb:e5:a0:47:c0:67:
f6:52:21:fa:a7:e2:da:1b:22:b7:e2:b8:83:0e:23:
9a:ef:9e:8b:a5:69:a5:d6:9e:dd:30:98:e4:3d:ce:
46:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:32:64:F1:7B:DF:80:BB:62:A3:73:9B:93:76:D0:C7:BF:D1:55:18
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oTJk8XvfgLtio3Obk3bQx7_RVRg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:e1:86:be:16:29:e2:75:f6:dd:b8:dc:37:ec:a3:b4:aa:c2:
28:f8:e0:46:f1:e5:b1:a6:ff:5d:91:3c:27:f1:26:93:f7:5a:
4a:48:16:de:ef:72:66:9f:fc:c3:5f:5a:03:ee:79:49:b9:fe:
00:30:0f:11:31:a9:0f:df:65:95:dc:d9:3b:c1:8b:18:e0:68:
85:2f:a1:45:3a:4e:83:8c:5f:e3:0f:e6:81:3d:13:e4:52:94:
e6:8a:2b:6b:5c:8e:ff:87:bf:c9:7c:5c:32:64:c3:a1:5a:c3:
f8:73:f9:e8:30:9d:13:59:8a:b7:7c:6a:bb:9d:87:0a:8e:a8:
bb:0a:e6:2a:02:b4:7e:3a:ff:2a:d5:87:9b:85:36:36:8d:9e:
65:b0:50:29:52:d6:e5:ba:5e:e0:fc:0a:eb:a5:b8:99:9c:6b:
06:30:16:7e:c3:78:4c:8f:1d:49:d7:58:91:33:a9:3a:62:c4:
48:33:df:99:71:70:18:e8:82:47:f1:53:aa:80:e5:a6:39:d3:
e8:66:bc:7b:b3:6b:d1:19:43:49:ec:db:e7:d3:7f:fc:80:9c:
4a:c0:13:89:34:64:e2:af:82:e3:0a:43:6b:6f:9e:20:0a:e1:
86:59:17:74:bf:01:02:16:64:b3:19:ef:45:6c:ab:33:66:91:
a3:9d:b4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:28 2023 by rpki-client on console-ams.rpki-client.org