Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z3jk4NiSxLJa0aYBa2HiSx0ezlc.roa
File: z3jk4NiSxLJa0aYBa2HiSx0ezlc.roa (raw, json)
Hash identifier: ufnfA6dAFO7fGUr1Xgip9/M+1a4eek8XOqE6DJ1OAEI=
Subject key identifier: CF:78:E4:E0:D8:92:C4:B2:5A:D1:A6:01:6B:61:E2:4B:1D:1E:CE:57
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CB7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z3jk4NiSxLJa0aYBa2HiSx0ezlc.roa
Signing time: Wed 29 Sep 2021 02:48:05 +0000
ROA not before: Wed 29 Sep 2021 02:48:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7351 (0x1cb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF78E4E0D892C4B25AD1A6016B61E24B1D1ECE57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c7:6c:e9:e1:cd:7c:14:5d:02:96:93:d1:c7:
b2:5b:9a:85:66:fb:82:d8:a2:d8:98:43:fd:84:7d:
b8:7f:a4:bb:fa:8d:40:7c:d4:5a:dc:a8:9f:6d:12:
ac:ae:9a:94:5c:2b:89:ca:09:b6:9b:95:57:03:64:
50:a5:fe:fa:4b:20:f8:46:0f:3c:e3:df:90:c2:32:
1b:d6:49:0c:6a:70:e1:1c:2f:6e:51:3d:39:b7:33:
1a:13:97:bc:1a:d3:02:a4:fb:e0:ab:d0:1f:ed:03:
c3:de:60:2d:83:be:c0:ed:2f:b6:a6:79:54:9d:21:
65:33:e4:e4:4c:ef:11:ee:7e:63:2a:fd:96:c6:09:
82:0d:e0:92:0a:8a:7a:03:59:94:8d:1f:ce:03:1c:
ed:e5:85:38:09:84:1c:59:49:15:1a:0e:f9:f7:7f:
83:85:17:05:dc:65:28:92:e7:b3:a2:f3:b1:a5:48:
d5:e6:79:68:09:74:0d:0e:cc:68:a3:7f:fd:57:01:
a6:2e:77:bd:c6:3e:7e:30:9e:62:e7:7f:d4:ec:09:
a5:1e:4f:40:f4:f7:cd:45:d7:17:70:d4:c7:c5:4f:
f5:a2:a9:c1:34:d1:bf:e5:9d:1e:64:4d:2a:bc:78:
bd:5a:a4:93:72:40:81:ce:e2:f8:6e:74:12:9f:8a:
7c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:78:E4:E0:D8:92:C4:B2:5A:D1:A6:01:6B:61:E2:4B:1D:1E:CE:57
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z3jk4NiSxLJa0aYBa2HiSx0ezlc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.56.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:21:47:bd:9a:fc:4a:f4:4a:8e:a7:0b:de:51:91:73:fd:e1:
62:4b:b9:ef:33:c0:f5:e8:6d:21:a6:5b:cd:a5:55:b3:1f:48:
70:ef:40:3c:ac:7f:73:70:88:6f:d4:c5:2d:39:e8:9f:ab:a5:
72:4c:8c:31:ee:3c:1b:49:22:44:47:44:cf:ea:f4:83:13:f4:
0a:76:ec:48:b5:1b:2a:b8:e8:87:f8:74:08:5b:cc:7d:55:56:
99:7d:9c:09:a9:55:b9:0f:a7:c3:82:24:c9:57:91:7f:6b:70:
41:26:43:d8:05:c3:d0:93:7d:54:2b:7d:d9:bf:01:43:7f:fb:
66:e0:f8:11:52:3b:68:22:78:49:c7:19:90:c8:ee:80:55:97:
cd:ce:cc:b7:7a:78:56:26:1b:49:aa:df:5f:cd:44:24:c0:22:
70:71:02:de:a9:6d:c4:47:de:6f:b0:74:b4:f9:ce:c2:ad:44:
64:a5:f5:0d:4d:e8:bc:b2:89:fd:cd:c5:17:f9:a7:ac:fe:58:
a0:26:e2:9c:c2:89:f3:09:26:f3:75:db:b8:cf:46:62:0c:29:
b6:2b:01:43:fe:fe:27:a4:0d:ed:ea:7d:dc:ad:26:96:25:13:
f9:7b:87:8b:2c:f5:2e:7a:4c:d7:dd:70:be:16:88:6d:46:92:
21:11:f1:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org