Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rDqY4PeDHBl0SBN-4cfXVL3KJRM.roa
File: rDqY4PeDHBl0SBN-4cfXVL3KJRM.roa (raw, json)
Hash identifier: Qd9UH2ETiEM8XdUPKt6jf8HAFthMh/GVcygatMPKho8=
Subject key identifier: AC:3A:98:E0:F7:83:1C:19:74:48:13:7E:E1:C7:D7:54:BD:CA:25:13
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rDqY4PeDHBl0SBN-4cfXVL3KJRM.roa
Signing time: Thu 15 Sep 2022 02:45:28 +0000
ROA not before: Thu 15 Sep 2022 02:45:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AC3A98E0F7831C197448137EE1C7D754BDCA2513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:96:ff:74:56:cb:50:2c:23:f6:53:23:aa:c4:
f0:9f:f7:1b:8d:60:b4:e8:7b:dd:e1:69:69:ea:cd:
14:a4:3b:12:88:9e:06:ca:a9:94:be:f4:a8:64:68:
65:ed:16:58:6b:08:55:34:f4:35:e3:e4:ab:ac:d6:
e7:e5:f4:6d:e2:a5:db:46:6f:3d:43:6e:e2:ac:ac:
c6:50:57:07:d8:ed:e5:e6:6c:8f:3d:74:75:ab:21:
86:cd:a0:d7:37:6e:0e:1a:fb:f7:25:1e:6e:c5:25:
44:86:09:c5:92:67:c1:0e:44:37:b4:77:18:10:d9:
6f:ce:9f:1d:11:03:8c:69:63:27:f6:41:b0:dd:23:
f4:89:22:6a:45:5f:63:a4:77:c3:4c:5d:a0:2b:68:
7d:71:cf:39:f1:e2:cd:52:c5:64:f9:d5:5a:cc:12:
40:99:2f:e2:c4:ee:25:2d:ca:d0:20:2b:fc:dd:09:
f4:9f:b0:06:c6:a4:8e:ed:c8:81:f3:6b:22:ad:14:
a2:c7:a7:63:de:52:d2:84:ab:cc:24:ce:5e:23:a6:
f3:17:a9:cd:4c:ce:d4:55:fc:09:05:47:a9:af:65:
9a:47:a4:ae:e6:84:09:c1:90:78:f0:91:3d:da:f8:
ef:c2:c7:c0:12:c2:06:63:af:18:88:8e:c1:29:07:
18:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:3A:98:E0:F7:83:1C:19:74:48:13:7E:E1:C7:D7:54:BD:CA:25:13
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rDqY4PeDHBl0SBN-4cfXVL3KJRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.180.0/22
Signature Algorithm: sha256WithRSAEncryption
36:c6:7b:b3:0e:24:a1:d0:3a:11:08:c8:63:2c:38:5d:ed:f0:
07:50:fb:0c:af:76:0f:42:97:3e:08:e3:9b:b7:57:f1:c8:e9:
46:15:09:fc:53:e7:33:b0:34:54:f5:67:9d:ec:c3:73:73:2d:
00:e7:d8:29:dc:f9:58:98:2a:39:cd:75:a0:25:04:86:7a:d8:
fb:d8:5c:08:54:81:ac:5a:89:10:6c:ec:f8:4a:98:ac:ec:e1:
e5:2b:70:68:8b:32:39:5d:20:7e:8a:dc:66:55:1b:de:19:a6:
84:1c:6a:89:d3:26:69:08:53:d2:c4:35:fb:b4:40:d3:59:a8:
b5:e7:1e:58:f7:96:3f:a0:a5:30:9d:40:71:7c:5e:77:1b:36:
df:b1:d8:ba:40:e5:54:54:43:40:57:b1:31:14:25:2e:21:75:
8e:f2:43:cb:16:3c:7c:48:e1:f6:48:71:8b:7f:ce:a8:cd:e0:
1e:7e:69:db:9d:57:3e:c9:d3:ba:ff:3d:9e:f0:6c:3b:57:1e:
3c:b7:0c:cd:9d:b4:48:00:73:ec:6f:7d:7c:26:db:cd:6a:13:
e6:12:47:e5:a6:98:07:34:82:5f:ed:db:f8:81:ac:04:e9:61:
28:d1:e0:b1:d8:e1:ba:9c:e7:dc:14:4f:37:49:07:a9:20:db:
3a:e4:77:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:59 2024 by rpki-client on console-fra.rpki-client.org