Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qV5ld3v4joeaT11hkilKbf0N0hk.roa
File: qV5ld3v4joeaT11hkilKbf0N0hk.roa (raw, json)
Hash identifier: s3qawTrrX1CjVtlN7tgJund7vBqHYU5cJI0raifb4F4=
Subject key identifier: A9:5E:65:77:7B:F8:8E:87:9A:4F:5D:61:92:29:4A:6D:FD:0D:D2:19
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qV5ld3v4joeaT11hkilKbf0N0hk.roa
Signing time: Thu 15 Sep 2022 02:56:04 +0000
ROA not before: Thu 15 Sep 2022 02:56:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8100 (0x1fa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:56:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A95E65777BF88E879A4F5D6192294A6DFD0DD219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bb:05:a4:57:32:1d:51:b0:b0:1d:b2:ba:d8:
4a:0f:0b:f4:ba:79:48:67:5a:ba:d2:c8:9b:53:4c:
7f:8b:8d:1d:eb:d5:ca:9e:84:b7:26:66:3e:43:50:
d8:2b:94:73:bf:75:a7:33:98:08:9e:9a:bb:70:38:
d3:a8:fb:29:62:b9:81:9a:76:b5:43:6b:62:e7:0d:
97:64:5d:b7:7c:8c:7e:d0:21:e9:4d:11:a7:92:9b:
00:e9:01:49:c5:bc:7d:76:6f:ab:cc:ee:bb:0b:ed:
db:5a:75:6e:1e:f3:8d:72:81:89:dc:24:4c:2c:10:
19:da:8a:ae:c8:28:7a:06:71:d7:a1:23:40:70:de:
b0:bb:f8:d2:45:e9:f5:a0:bf:03:9e:7e:ca:e2:ba:
29:f4:b8:41:31:65:8d:71:ad:92:83:1f:7c:5a:a4:
75:85:94:6b:a1:10:07:f9:0a:36:f1:24:26:16:4c:
8e:c6:31:30:52:ec:df:64:57:75:95:05:3b:44:6f:
92:92:96:b5:42:4a:b4:31:aa:1f:f3:0a:b8:c4:05:
b6:f8:92:8e:38:24:8b:fd:b7:38:21:3b:a5:da:b8:
00:46:3b:d4:de:56:32:a9:c0:be:2d:57:a7:ae:3e:
a5:63:3a:1f:45:1a:65:74:ae:ce:e1:af:71:ec:d0:
51:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:5E:65:77:7B:F8:8E:87:9A:4F:5D:61:92:29:4A:6D:FD:0D:D2:19
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qV5ld3v4joeaT11hkilKbf0N0hk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.40.0/22
Signature Algorithm: sha256WithRSAEncryption
64:90:2e:74:f1:92:fd:31:40:41:a3:13:4d:91:f8:09:61:54:
92:f4:44:da:a7:74:89:31:85:01:d8:82:ee:fc:d7:36:41:28:
aa:68:04:ed:a7:c0:75:6c:00:db:8e:c0:7f:72:e8:86:de:52:
66:55:f8:b1:22:0b:5d:70:60:b0:a5:30:c6:da:13:c3:b6:1d:
b0:31:1d:0d:6b:89:89:3e:ec:d7:88:f3:37:52:24:43:ca:f9:
9d:86:29:55:30:88:f2:ba:36:6e:3e:06:d8:ef:d0:b4:fc:f2:
0b:62:ff:46:87:19:1f:e7:21:f1:06:12:21:1c:84:a3:80:85:
a2:6e:02:03:26:e6:d5:d6:be:28:8d:2e:23:8d:6f:09:1d:56:
65:d3:ab:4c:ff:8e:27:fe:d1:d9:81:de:ed:ca:2c:7b:aa:50:
96:3b:a0:0d:59:c3:a9:36:5e:20:ef:c8:74:bd:7f:e0:66:a4:
d9:8c:80:2c:77:0c:0a:44:fe:8d:6c:ff:7f:b5:ff:83:a5:57:
9b:ff:d6:74:ed:de:87:4a:eb:22:c6:45:27:90:80:6c:ca:a1:
92:db:e2:85:61:4d:fb:cb:d1:07:9f:2b:50:f4:db:c3:70:e0:
ba:4f:79:f5:04:32:4e:fb:bc:e8:aa:d9:68:fa:c9:6c:8d:3e:
02:07:03:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org