Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pHVvR_yC0RhGlxnw3Ff9Nx5H3vw.roa
File: pHVvR_yC0RhGlxnw3Ff9Nx5H3vw.roa (raw, json)
Hash identifier: quGnlheIdbrQWvmdhmvESspWGP+Na/4g2/6rmSNBMVY=
Subject key identifier: A4:75:6F:47:FC:82:D1:18:46:97:19:F0:DC:57:FD:37:1E:47:DE:FC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CCF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pHVvR_yC0RhGlxnw3Ff9Nx5H3vw.roa
Signing time: Wed 29 Sep 2021 02:48:14 +0000
ROA not before: Wed 29 Sep 2021 02:48:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7375 (0x1ccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A4756F47FC82D118469719F0DC57FD371E47DEFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d3:e8:b6:74:14:42:19:78:a1:7f:6e:88:e5:
a3:79:a5:49:11:2a:12:e8:33:9e:17:49:53:a1:78:
bb:b3:03:1c:d7:1b:bc:28:10:15:77:13:46:80:cb:
8b:e8:18:a8:f4:a1:8f:b5:ed:e9:fb:87:8b:d1:ce:
b1:72:59:8d:7c:81:c1:37:c2:01:00:ff:ab:c4:7e:
db:06:8f:7b:04:22:c1:2c:d6:19:d1:b5:57:d6:7c:
5b:f4:8d:bf:81:45:c3:2b:17:05:85:02:1f:ea:cf:
de:08:61:84:15:8c:33:57:28:4a:83:29:78:9b:73:
3f:a6:b4:d7:af:97:ad:14:15:dc:0f:9c:78:3f:9e:
40:a8:58:6a:3e:f6:69:b9:5d:ef:f7:d0:e6:60:99:
31:dc:59:6c:5e:36:a3:c6:c2:6c:5a:b2:18:c1:18:
36:a1:cc:5f:54:c9:09:c5:c1:16:33:e3:a3:5c:11:
5b:24:fe:b4:07:54:ab:38:9b:59:9c:d2:ca:b1:49:
4b:27:d2:52:7c:f9:a9:27:68:86:2c:4f:16:f2:51:
48:7e:ed:ba:55:61:e9:39:9d:3d:09:1e:63:05:60:
e2:0a:ee:d8:db:0a:16:b9:7c:e7:6c:15:00:93:d1:
81:bb:8a:84:18:3e:c4:d3:2c:e0:67:16:e6:a0:5b:
49:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:75:6F:47:FC:82:D1:18:46:97:19:F0:DC:57:FD:37:1E:47:DE:FC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pHVvR_yC0RhGlxnw3Ff9Nx5H3vw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.40.0/21
Signature Algorithm: sha256WithRSAEncryption
42:c1:bd:be:01:22:27:c4:c9:b8:c9:98:18:5e:76:95:f5:c1:
e9:2b:6e:4f:de:d2:44:81:1c:4f:9e:c1:dc:73:bf:8b:20:a2:
66:1d:39:5a:76:6a:cc:76:89:38:8a:c3:3e:31:6b:97:f8:9a:
e8:34:5e:8d:99:b3:88:d3:37:e0:68:b0:e1:8b:43:5c:0f:a4:
ae:8f:7c:89:11:6e:61:0e:58:8d:97:2c:33:9c:47:67:ea:16:
6e:c7:a0:dd:ae:2d:76:02:ba:77:e4:af:89:93:c5:f9:b9:56:
34:c4:57:5e:04:e5:fa:5e:70:66:10:48:61:97:9b:06:74:f4:
ef:c4:1f:26:4a:7a:82:89:f2:60:d3:f8:c7:d5:ef:9d:6d:8c:
0c:0c:05:36:7e:ae:d4:dc:ec:60:e8:77:d2:e0:1d:28:d6:1e:
ee:e8:a2:70:a6:7f:96:58:01:2a:67:20:0d:f9:c2:46:aa:8c:
11:74:83:79:f1:44:e3:78:a1:b5:8e:11:a5:a3:15:4b:ca:5b:
51:99:08:1f:c9:51:91:b3:06:24:63:2d:d5:aa:24:ea:74:a0:
b8:27:13:5d:a8:4e:f6:e7:40:eb:54:23:3e:07:cb:e0:48:3c:
d3:7d:5f:f4:de:0e:b9:2a:c1:4a:a2:b4:d0:88:6b:94:54:24:
20:79:88:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org