Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oaK8rbHUHVCE-VJwVDyl7-wo3Mw.roa
File: oaK8rbHUHVCE-VJwVDyl7-wo3Mw.roa (raw, json)
Hash identifier: TNMALzjdbGCxbsPo6U4yG+vgmGW6cTmQcXf00KyeC5A=
Subject key identifier: A1:A2:BC:AD:B1:D4:1D:50:84:F9:52:70:54:3C:A5:EF:EC:28:DC:CC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2217
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oaK8rbHUHVCE-VJwVDyl7-wo3Mw.roa
Signing time: Fri 25 Nov 2022 04:40:45 +0000
ROA not before: Fri 25 Nov 2022 04:40:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8727 (0x2217)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A1A2BCADB1D41D5084F95270543CA5EFEC28DCCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:be:29:c2:73:ab:eb:86:6a:8e:85:76:5c:e9:
02:d6:14:8b:a5:26:f9:0b:0f:4c:87:53:a3:e1:1e:
75:fd:d8:18:f8:1c:ae:ba:c1:a9:87:c2:99:71:17:
65:7c:ea:a1:ac:35:b1:e5:f5:bf:8d:53:03:13:30:
83:86:58:36:26:0b:9b:c8:00:44:43:82:ba:50:d3:
7d:40:42:6a:78:b7:95:b4:d4:d2:d1:c7:23:79:fa:
2d:b9:61:cc:ef:93:46:16:09:fd:19:4b:d7:0a:1c:
8f:d4:da:52:51:4d:b2:49:f4:1b:0d:92:07:25:e3:
35:03:e6:38:66:74:31:7c:74:d5:75:d7:b7:38:21:
e6:c1:2e:5e:f5:b5:64:4f:4f:65:65:3d:db:60:88:
28:58:d1:07:aa:b4:bc:6f:d3:0e:57:5a:dd:dd:45:
54:8e:a3:14:3c:92:1f:5b:d0:33:dc:44:c0:eb:d8:
07:d3:24:fe:cf:07:ba:c8:df:00:f0:c4:34:ec:b3:
a7:7b:8d:a6:3b:e9:19:dd:20:be:82:85:ea:b6:e6:
02:69:e2:fb:dd:c5:c3:90:21:2e:6d:d9:e1:f6:76:
70:c7:d2:11:a9:49:10:07:37:b3:d7:4a:ca:a2:ec:
5e:e0:8c:52:c5:c1:0f:76:81:ab:d6:09:95:e8:2b:
44:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A2:BC:AD:B1:D4:1D:50:84:F9:52:70:54:3C:A5:EF:EC:28:DC:CC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oaK8rbHUHVCE-VJwVDyl7-wo3Mw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.160.0/21
Signature Algorithm: sha256WithRSAEncryption
16:6e:bd:0b:1d:99:f3:2b:b4:4c:5f:99:ab:fb:67:48:50:fa:
5a:9b:42:20:82:d0:ce:f7:98:04:ab:fe:93:b4:1e:40:c9:50:
c3:da:68:e5:f7:7a:bd:34:b9:59:70:9d:6d:bd:d4:3d:4c:c4:
ba:21:b5:37:72:44:3a:ef:1c:d5:9f:dd:98:82:b7:5c:fa:f8:
bb:f0:81:25:d5:c0:7d:53:75:62:23:d3:7d:84:ee:71:78:83:
b2:b2:53:38:28:18:9c:20:78:0e:27:87:59:24:7f:21:38:99:
5f:79:2c:9f:ba:d3:39:9f:07:3e:3b:c3:8d:31:73:c9:19:ee:
55:89:8f:cb:b3:1c:e1:cb:e4:89:e6:ea:e0:36:5b:96:f0:5e:
44:3e:73:e7:ec:79:23:af:7d:04:f6:6e:26:bf:61:a1:77:45:
0b:af:ef:c7:3c:15:ca:ab:51:f4:71:d4:96:85:94:9c:98:5e:
96:04:f2:e8:e6:3c:fe:69:74:c4:ce:53:b4:70:cc:5b:35:44:
3b:c5:94:c8:fe:e3:45:c6:9d:96:06:7e:1e:96:56:da:67:f5:
f4:e9:ff:c0:bf:64:c8:f2:13:58:15:c3:4c:4e:ce:d9:b5:93:
6a:98:1b:df:7a:05:fc:b8:e7:6f:8e:23:89:62:a7:ff:85:e8:
42:45:0e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org