Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uQIsifNYkPyMVy7ohJbRmtDnAk8.roa
File: uQIsifNYkPyMVy7ohJbRmtDnAk8.roa (raw, json)
Hash identifier: 5j/HbFovVAW0qngX09EdBUt+qUqWcRwuHer3GbcTu8s=
Subject key identifier: B9:02:2C:89:F3:58:90:FC:8C:57:2E:E8:84:96:D1:9A:D0:E7:02:4F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uQIsifNYkPyMVy7ohJbRmtDnAk8.roa
Signing time: Thu 15 Sep 2022 02:53:21 +0000
ROA not before: Thu 15 Sep 2022 02:53:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B9022C89F35890FC8C572EE88496D19AD0E7024F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9f:22:4a:e9:66:4b:81:93:d0:52:7a:84:2a:
18:ed:96:fb:ee:c8:9f:79:9c:38:d6:59:07:a5:f5:
46:80:34:0c:17:6d:83:51:a5:d3:49:eb:4b:21:7e:
eb:12:e1:b1:9f:04:d4:07:40:95:a9:61:b5:06:e8:
1b:4c:4d:20:15:38:70:c9:4b:26:98:14:ce:82:53:
e7:7a:43:ad:63:a1:4c:65:9a:45:5f:f8:90:25:a2:
fb:e1:75:8e:01:2d:0d:17:24:f5:f1:fc:79:1d:70:
50:ab:cb:38:54:6e:31:a7:26:98:1b:1a:99:60:22:
d1:6d:a2:a1:8a:42:27:76:c0:b1:76:5f:25:50:27:
3d:98:ca:51:e8:a2:ca:ca:02:6a:b0:18:47:b3:2c:
a1:18:41:38:af:78:50:1e:4b:af:40:70:1d:6c:d6:
99:65:31:43:ed:99:63:0d:36:b6:b6:b4:4b:e4:73:
52:64:fa:5b:ec:bc:14:92:1a:6a:3a:39:f3:2f:8c:
e7:48:5a:88:46:62:7d:c7:83:b2:e6:ff:67:6a:21:
31:d1:9a:27:35:b3:31:1d:5d:1e:bf:1e:55:27:5c:
6a:e3:a2:60:26:f7:18:19:1f:d1:c2:8e:71:18:ac:
09:40:c8:ee:6d:d8:18:91:cb:70:81:da:59:e5:e1:
97:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:02:2C:89:F3:58:90:FC:8C:57:2E:E8:84:96:D1:9A:D0:E7:02:4F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uQIsifNYkPyMVy7ohJbRmtDnAk8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.52.0/22
Signature Algorithm: sha256WithRSAEncryption
05:e3:c9:3e:db:94:f1:12:53:27:61:43:58:24:4a:a3:f2:00:
fb:5f:2e:a7:4b:3d:b6:24:bc:96:87:5f:34:45:f0:68:92:89:
99:f9:2c:83:7f:5a:6b:68:68:59:7d:7e:f2:00:97:4d:62:19:
1d:a8:aa:c0:88:06:ee:16:63:26:d6:c2:5d:cd:fe:1b:36:7e:
05:eb:55:83:45:b4:4a:4b:e6:eb:40:6c:52:59:e1:25:6a:0c:
cf:bc:73:bd:64:7c:6b:cc:d6:3c:d0:43:12:0b:c5:10:0a:85:
86:67:02:13:07:25:e8:f6:e6:a6:8a:58:16:b6:52:4e:24:89:
2f:e2:15:be:9d:de:c2:47:70:b0:21:8b:d1:90:1b:97:ed:7d:
10:b6:49:6e:46:cb:b9:ac:24:19:f3:b8:1b:55:f9:74:43:49:
b2:2b:08:c7:49:32:0b:91:6a:87:14:b4:3f:09:5c:a5:bd:d3:
ab:cb:a1:a2:20:bf:d5:2d:8a:71:09:e3:eb:af:66:67:51:fb:
36:5f:a1:16:d1:a5:09:da:b7:d3:c3:b3:35:5b:7b:03:31:5d:
82:de:41:76:49:91:2f:57:81:02:b5:44:cc:ad:d7:fd:db:43:
af:3b:26:22:39:f7:d2:0d:00:74:a2:e9:aa:a3:36:95:69:5c:
e3:c2:6e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:59 2024 by rpki-client on console-fra.rpki-client.org