Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qFNQ-y1B2H9bkOmFj0bM1FVEY-0.roa
File: qFNQ-y1B2H9bkOmFj0bM1FVEY-0.roa (raw, json)
Hash identifier: QIfNvGeMyj6PdJA7wp28hPehX68m1DegzOLVtJHOYyQ=
Subject key identifier: A8:53:50:FB:2D:41:D8:7F:5B:90:E9:85:8F:46:CC:D4:55:44:63:ED
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qFNQ-y1B2H9bkOmFj0bM1FVEY-0.roa
Signing time: Thu 15 Sep 2022 02:52:46 +0000
ROA not before: Thu 15 Sep 2022 02:52:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A85350FB2D41D87F5B90E9858F46CCD4554463ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e2:c7:40:67:06:84:fa:de:2b:da:ec:cc:49:
6e:51:00:b0:ed:6b:79:f2:28:5d:d0:13:1e:fb:2c:
21:72:fd:34:84:1d:83:b4:c2:39:b6:74:13:d0:43:
a0:7a:1b:7e:fd:1a:88:c5:56:2a:63:9b:da:9c:5c:
3d:75:fe:f4:92:69:c5:62:39:59:35:e5:8a:36:d0:
e8:7a:62:bb:ef:a2:8a:7e:2b:32:27:fb:48:9b:a4:
19:01:f6:d1:e4:ff:c9:ab:25:3b:04:12:90:19:30:
21:d3:32:f2:87:3c:34:62:65:cd:12:ba:a0:cc:28:
e5:7e:a9:18:5d:89:47:24:02:3b:65:1e:6d:0d:7b:
37:c3:30:ec:77:4e:bd:74:1e:1d:75:a6:ef:c0:c5:
bb:ed:f4:ad:b2:e4:05:bc:48:ae:6d:93:2e:ab:8b:
24:eb:c4:9e:6a:e0:d3:6e:16:fc:9c:24:58:a2:71:
2d:ec:97:f7:6c:28:27:ad:d7:f8:b2:19:e9:4b:45:
21:df:3e:5a:2b:09:6d:ae:4a:9f:ec:75:77:94:d5:
09:0a:29:69:b6:09:be:4b:43:3b:86:32:07:4a:ae:
56:85:ea:b2:25:13:92:86:26:18:9e:27:d2:94:75:
6a:7a:2f:24:6a:45:f7:1e:ac:39:50:8f:3e:a1:c4:
c2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:53:50:FB:2D:41:D8:7F:5B:90:E9:85:8F:46:CC:D4:55:44:63:ED
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qFNQ-y1B2H9bkOmFj0bM1FVEY-0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.196.0/22
Signature Algorithm: sha256WithRSAEncryption
59:32:c2:b9:17:d9:14:21:58:fe:e6:e3:c5:cd:30:fc:8d:eb:
29:63:41:a3:bb:8b:ce:6a:73:88:99:a8:ce:64:ba:cd:04:40:
c7:44:9f:f7:8f:cc:34:98:b8:e7:ab:14:c5:0a:c6:91:55:85:
fc:e8:16:38:d6:75:6b:28:a8:4b:90:14:81:05:40:79:da:87:
cc:c1:54:9c:c6:2e:4b:04:dc:70:3b:9d:9b:4c:ce:e0:f9:41:
8a:f7:be:c3:dc:4b:97:27:f4:01:e5:a0:9a:dc:15:10:73:93:
a4:1d:aa:09:39:68:e8:4b:a3:50:2c:63:c9:48:f1:d3:51:58:
bc:08:ab:eb:99:a6:33:47:02:77:d3:5e:15:3e:91:86:34:46:
46:45:93:1f:2d:f7:50:ed:f6:b1:f3:e6:b5:52:a7:79:e4:2c:
45:c3:a2:f1:29:99:07:e4:0f:e6:51:2e:7f:9e:0f:ff:b2:3b:
be:09:6d:d7:fc:11:3a:09:72:e6:1e:46:c8:ab:da:95:66:18:
63:fa:c6:45:02:8c:b8:71:c2:d9:81:0d:44:e4:ad:38:9d:35:
d7:3c:7e:96:ee:c8:b1:2e:9a:bb:77:7f:17:d0:70:fd:09:4f:
a2:f6:d5:b5:68:05:db:f2:cc:fd:2e:0b:f0:d3:8c:a5:9e:5f:
ac:d9:72:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org