Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r6qYoRd-fwWtWuLA3Nipn2dWR0w.roa
File: r6qYoRd-fwWtWuLA3Nipn2dWR0w.roa (raw, json)
Hash identifier: d0jBv5NzbB9GUBy+cGi4X21MrwaKFWgiUsJHs8y8zHE=
Subject key identifier: AF:AA:98:A1:17:7E:7F:05:AD:5A:E2:C0:DC:D8:A9:9F:67:56:47:4C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 10A2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r6qYoRd-fwWtWuLA3Nipn2dWR0w.roa
Signing time: Wed 25 Nov 2020 03:42:22 +0000
ROA not before: Wed 25 Nov 2020 03:42:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4258 (0x10a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 03:42:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AFAA98A1177E7F05AD5AE2C0DCD8A99F6756474C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:67:6b:19:1d:f7:17:0b:82:5d:b3:3f:9d:15:
54:bd:b2:d3:fa:d5:ff:a4:56:aa:f2:5b:8e:bc:08:
b5:2d:94:31:f9:a0:61:07:ed:b2:97:3d:9a:d3:ff:
7c:a7:1a:cf:5b:ad:aa:11:65:4f:ab:50:23:88:b0:
ca:2f:88:2a:60:d5:c0:88:ab:f2:f9:15:6f:04:98:
4e:9d:02:e7:72:e2:b1:5d:14:73:82:d2:d2:10:cd:
65:2a:0a:60:ef:db:0b:66:5f:04:8e:d0:85:f6:f4:
e1:cd:4d:b0:a5:cf:d2:c0:88:ae:59:ff:3d:ab:bf:
e8:41:9b:ed:ab:9e:aa:93:d3:22:d0:11:2c:e1:92:
53:3c:dc:ba:2a:03:68:b4:cc:06:7b:8b:6d:96:e8:
38:b1:9c:48:27:5c:59:5d:0f:f4:91:99:3b:c2:06:
8a:b6:60:c9:6e:24:e0:33:82:23:4c:28:60:89:e5:
17:19:ff:22:fd:4e:fb:5a:a3:bb:6b:ec:cc:3b:48:
c7:1e:71:ce:f1:d6:04:91:79:de:71:db:7a:5c:3c:
b6:55:d1:87:b9:0e:8a:02:2f:af:cf:4f:6a:34:cb:
83:ea:74:2f:a6:42:4a:74:04:70:75:cb:fa:90:63:
17:11:b5:83:ed:0b:45:23:f8:fc:b0:3d:8f:0c:fd:
92:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AA:98:A1:17:7E:7F:05:AD:5A:E2:C0:DC:D8:A9:9F:67:56:47:4C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r6qYoRd-fwWtWuLA3Nipn2dWR0w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.192.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:f5:1a:67:b3:2c:64:a6:86:b5:6b:0b:03:66:dc:3a:02:44:
52:cf:7c:59:b2:85:ed:b0:53:40:5a:ed:be:12:5e:b0:3b:0d:
61:4d:9f:5c:e3:b1:4c:55:33:93:32:44:ad:e7:bd:c9:dc:0a:
ac:88:5e:2f:c1:42:f2:61:12:42:f8:76:6f:fb:8c:21:31:7b:
d6:3a:ce:dc:6f:d8:2c:2a:1b:40:67:52:e0:3e:67:b0:f8:90:
55:61:54:af:f3:b6:b5:ae:9f:3c:fe:b7:57:99:a4:5c:cf:15:
05:02:45:5c:94:cb:7a:3f:87:7e:92:6b:2a:31:2c:41:49:b8:
f7:86:cb:f2:c1:fb:7b:8a:44:9e:3a:08:70:67:a7:d0:03:39:
13:95:0c:f3:3d:31:a8:fa:8c:b7:f1:52:fb:12:9a:c9:dc:63:
c3:d3:f6:9f:27:8a:9f:8e:bd:68:2a:c5:75:5b:20:9f:fe:d5:
bc:a3:72:e0:23:80:df:22:2b:a0:b4:97:e9:3a:3e:8c:a1:e0:
5b:70:60:d3:7e:b8:74:1f:fd:22:c4:35:4b:a7:8d:48:19:b3:
08:bc:8c:0c:1f:22:02:91:9e:35:42:8f:45:46:51:13:6a:b6:
fa:01:4a:1e:c4:65:bd:77:d4:5b:96:d0:d1:b4:45:af:38:4e:
40:26:4f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:40 2023 by rpki-client on console-fra.rpki-client.org