Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y2N6ZMOKvB9L7G5XsHvqfoO0YZk.roa
File: y2N6ZMOKvB9L7G5XsHvqfoO0YZk.roa (raw, json)
Hash identifier: UGBfB0+OEkn94YFNPIrKWmk9Iuxg2Yu2b8qIrE2Osg4=
Subject key identifier: CB:63:7A:64:C3:8A:BC:1F:4B:EC:6E:57:B0:7B:EA:7E:83:B4:61:99
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y2N6ZMOKvB9L7G5XsHvqfoO0YZk.roa
Signing time: Thu 15 Sep 2022 02:54:08 +0000
ROA not before: Thu 15 Sep 2022 02:54:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CB637A64C38ABC1F4BEC6E57B07BEA7E83B46199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:91:d6:69:5f:a2:8f:d5:5a:7a:39:11:69:
c6:69:17:9c:1c:f7:72:f2:85:a8:b0:62:94:36:c9:
a4:3a:86:c8:7d:28:b2:cf:52:a1:40:5b:01:c9:e8:
6b:e7:26:ec:c5:07:57:66:df:7f:f1:8e:4a:67:d1:
ea:f9:3e:6a:f0:04:30:f6:bd:32:7e:7f:1b:95:0f:
d0:c3:01:e9:93:63:ed:c1:78:7c:16:88:7c:78:78:
e5:50:f0:2d:be:41:2b:ac:9d:d7:11:73:bc:e6:36:
e7:95:80:cc:a5:1d:28:92:cb:a3:a5:9d:17:4b:4a:
4c:2a:f3:5b:bf:ee:cf:c7:7a:00:d9:c9:76:86:c4:
6c:a1:52:42:f0:cc:01:43:2c:11:a6:89:af:03:b5:
56:80:58:60:83:ec:65:04:7f:aa:8f:9d:3a:d0:f6:
b6:bd:8b:48:10:38:ae:9e:9f:50:c8:91:1b:9a:aa:
67:37:ef:ca:08:fd:14:74:9a:07:a1:4f:96:94:1b:
03:de:e5:60:2a:2c:d3:5d:82:4a:fc:92:36:67:04:
7c:eb:d5:cb:a8:64:12:9e:c9:8f:76:89:7c:6f:e0:
49:d2:71:b2:a4:78:75:6f:78:75:3c:0b:b5:5b:c7:
23:5a:4b:c9:83:fa:64:cf:16:e4:1b:8b:85:ea:f3:
9f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:63:7A:64:C3:8A:BC:1F:4B:EC:6E:57:B0:7B:EA:7E:83:B4:61:99
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y2N6ZMOKvB9L7G5XsHvqfoO0YZk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.8.0/22
Signature Algorithm: sha256WithRSAEncryption
96:ab:80:fa:40:95:5e:65:eb:bf:61:5d:60:67:bc:21:1a:3c:
46:09:ba:57:ff:67:a8:08:40:96:b9:55:6e:f0:72:38:44:91:
54:04:82:de:fd:d7:d6:13:dd:51:6d:c3:d7:00:3e:0b:d7:73:
83:b3:e9:e0:d1:c7:1d:cc:6f:a9:a4:f2:e2:16:6e:4b:62:01:
d1:01:1e:67:8c:35:c0:85:62:98:57:d5:16:48:de:9c:a1:83:
1f:9b:fa:c3:c6:e0:88:94:b0:a7:80:f9:71:b3:3c:dc:71:e3:
3f:c7:5e:70:21:3f:b9:06:87:a5:95:3f:0f:fa:6a:43:13:da:
47:56:43:db:9f:bd:e8:91:4f:7b:3a:e7:64:92:f8:40:94:96:
e8:7d:ee:03:77:dc:1e:65:77:3a:1d:5b:af:61:f7:c7:a9:b6:
19:a4:36:47:6d:3f:45:ea:b0:e3:3d:1c:f8:a1:ed:13:9d:7a:
1f:95:4a:0c:4e:67:0a:cf:a8:44:17:f2:a8:62:5e:6e:56:ed:
bc:ac:08:d5:c6:68:3c:1a:9f:67:ac:99:ec:58:da:6e:53:95:
d8:e0:89:06:af:31:7c:e0:b7:75:70:80:ef:54:31:62:83:49:
29:8c:ee:aa:9d:12:fb:91:a7:f9:80:a1:b5:81:03:9c:03:ef:
29:c4:62:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org