Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tIZ1iPUG1Qudne_TaShFOWklHt0.roa
File: tIZ1iPUG1Qudne_TaShFOWklHt0.roa (raw, json)
Hash identifier: ToYF4rXc2R0/Rtk5V8ISyMg2A5KaO+cNutrhBlyKMrc=
Subject key identifier: B4:86:75:88:F5:06:D5:0B:9D:9D:EF:D3:69:28:45:39:69:25:1E:DD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0EF8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tIZ1iPUG1Qudne_TaShFOWklHt0.roa
Signing time: Tue 29 Sep 2020 09:56:21 +0000
ROA not before: Tue 29 Sep 2020 09:56:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3832 (0xef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B4867588F506D50B9D9DEFD36928453969251EDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2c:e3:96:22:da:86:60:95:90:10:64:b8:20:
8a:f4:64:5c:78:69:8e:57:5c:0a:7d:7b:5d:1f:7a:
d7:d4:df:2b:5f:a9:2b:27:dd:7f:c6:ea:2f:6f:d4:
f2:44:b5:57:b7:6d:3c:cd:9e:fb:8d:29:b4:09:86:
6c:31:a8:a1:c3:a2:01:8a:cd:84:46:86:72:39:06:
67:01:80:de:87:71:d5:36:12:35:62:b6:4a:33:ef:
aa:f8:5a:1d:48:cc:88:42:c0:49:47:b6:12:a7:7e:
16:ee:c9:84:d7:03:7e:1e:96:2b:48:87:3c:ec:79:
87:2b:7b:d4:ea:d0:0b:39:f4:33:d2:a5:13:f2:38:
b9:51:56:e2:80:b2:9f:93:15:13:2d:05:f2:0a:5b:
8e:32:0a:44:ed:a6:c5:d2:2b:e2:d9:e3:55:d3:11:
34:16:34:9c:7a:87:cd:8f:a1:ec:98:60:e0:57:56:
49:fa:17:da:4c:ae:ca:52:bf:ed:31:42:4d:54:43:
1d:f7:03:ab:cd:7a:a5:3b:2a:cf:d0:52:48:f0:0b:
22:31:0d:03:27:39:a5:10:d7:33:43:05:6c:9a:77:
30:2e:d1:49:60:c0:f4:f5:e6:04:69:21:68:18:59:
4b:1d:fd:26:b9:da:c4:d3:c8:27:e6:62:da:fe:cd:
80:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:86:75:88:F5:06:D5:0B:9D:9D:EF:D3:69:28:45:39:69:25:1E:DD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tIZ1iPUG1Qudne_TaShFOWklHt0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.84.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:fd:0e:2c:07:9e:36:b9:eb:e4:af:d3:53:c2:e3:4b:03:d4:
c7:66:2c:e5:bc:ed:8f:36:31:4b:91:24:24:2e:ad:03:4b:44:
ba:86:6e:9f:15:83:c5:69:af:56:c6:39:1d:c7:a9:54:2c:f4:
e9:8b:88:7d:76:02:07:43:d7:3d:28:f7:c9:3f:00:1d:d7:ef:
7c:66:e4:9b:31:73:8e:90:39:a2:3d:7a:08:54:59:0d:29:a7:
d8:2b:d7:aa:08:cf:ba:60:42:75:31:52:b1:93:3d:a5:62:e4:
a4:1e:b6:d9:b0:ba:b2:38:22:31:b8:f0:52:b7:8c:3c:ac:73:
23:15:f2:e3:29:10:b8:88:f8:b2:3d:fb:1c:20:50:2e:6b:0a:
d8:83:cf:f8:f4:2e:4b:91:74:3b:d9:7e:a5:0e:d6:9a:e3:a5:
ac:32:90:c7:9f:84:bd:90:8a:38:a0:a9:a8:de:80:6b:4c:bc:
f8:c5:c3:66:87:50:ca:a8:7f:5c:50:37:4c:3f:b2:f1:99:a8:
ee:0c:3d:b3:0e:bd:ff:88:f7:27:12:89:cc:65:b4:60:69:ca:
36:87:8f:b8:e9:25:0e:cd:47:6a:19:93:57:ff:cf:a1:89:d2:
90:a5:7e:f8:f6:91:f3:e8:04:46:5c:e4:51:63:88:ad:ca:aa:
56:0f:65:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:41 2023 by rpki-client on console-fra.rpki-client.org