Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z9c35L9-usIzzA5ZXD9cqbpmxpk.roa
File: z9c35L9-usIzzA5ZXD9cqbpmxpk.roa (raw, json)
Hash identifier: 5CZiX4fGVbHJbXMXokdIeDkQ3lTmTICxJEJqjfsAAzQ=
Subject key identifier: CF:D7:37:E4:BF:7E:BA:C2:33:CC:0E:59:5C:3F:5C:A9:BA:66:C6:99
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0CD7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z9c35L9-usIzzA5ZXD9cqbpmxpk.roa
Signing time: Tue 29 Sep 2020 09:53:53 +0000
ROA not before: Tue 29 Sep 2020 09:53:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3287 (0xcd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:53:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CFD737E4BF7EBAC233CC0E595C3F5CA9BA66C699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b7:d3:56:e3:db:45:f5:56:6d:e2:b5:1b:d1:
95:6e:27:0f:d8:c4:90:ff:04:ae:6e:33:6d:ac:a4:
ef:9c:3c:33:84:2c:b8:30:d7:bf:95:c3:fc:07:c1:
9f:bf:c9:7b:e9:85:4a:97:d2:60:bd:17:6f:09:ca:
eb:ec:ee:18:b9:f7:72:8e:de:a6:02:08:7a:c1:75:
68:6d:43:8c:e6:2f:d9:14:46:fa:11:15:4c:04:30:
cd:09:c4:86:69:0a:94:37:e9:66:1e:d1:6d:2d:4b:
59:2b:fb:e0:be:19:5e:2e:1b:bf:a4:cc:0e:e3:98:
cd:fd:f6:f2:76:48:2a:8f:98:02:22:26:43:f0:e7:
1a:68:48:6b:b1:1d:d9:c7:10:4d:2e:fc:1f:69:8a:
08:c2:58:3d:77:24:69:ab:fc:11:bc:b3:a5:04:dd:
fb:fc:7d:34:9c:7d:39:6b:00:b4:13:65:23:c4:14:
7c:83:53:71:6e:54:f7:17:9d:61:09:d4:89:d2:f8:
ed:71:85:04:41:96:ef:28:48:da:0f:46:1b:53:50:
0c:31:70:04:67:9c:46:c0:ad:73:8f:56:fd:53:74:
4b:ab:ba:e5:2e:2b:33:47:1c:5e:49:2c:3a:fa:aa:
0d:15:6e:38:c8:9a:c1:b7:24:b4:49:18:00:ca:8d:
95:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D7:37:E4:BF:7E:BA:C2:33:CC:0E:59:5C:3F:5C:A9:BA:66:C6:99
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/z9c35L9-usIzzA5ZXD9cqbpmxpk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.200.0/21
Signature Algorithm: sha256WithRSAEncryption
01:31:2d:98:d2:35:54:ff:3a:b5:01:07:66:6c:49:2e:88:a2:
68:ed:0d:49:ae:45:9e:fb:6d:33:3a:40:ba:4f:dc:72:cd:f1:
02:e0:82:fb:28:e9:19:d5:30:e3:23:5c:6b:0a:7e:c4:ed:18:
0d:d6:e8:32:f1:5f:26:d2:c8:2b:29:93:1f:20:e3:0c:8d:7c:
30:69:e4:05:47:01:96:fe:77:4a:f7:63:3c:0a:62:23:4a:04:
08:83:ef:f9:36:53:8b:c4:42:fb:83:57:20:bf:ee:94:8c:9e:
ed:ef:7f:03:96:49:ac:a2:1f:5e:cd:df:f9:a4:2e:f0:0e:c9:
e5:15:1a:e8:da:0c:d1:5f:08:c0:59:41:44:46:de:b6:0b:01:
d6:73:ee:27:3f:b3:50:75:b4:98:36:1e:ba:93:5d:c5:df:7e:
7d:27:a6:c8:f5:cd:26:76:97:ba:42:ca:f7:12:f1:bb:aa:82:
22:2d:80:9f:b4:e5:7f:fc:7f:0d:98:88:fb:a6:fa:bd:ba:2b:
88:a5:75:70:ec:6a:6d:59:57:a9:ef:f4:95:75:97:cf:49:69:
4e:81:e6:ea:a4:15:a6:d2:3f:a2:f0:1b:0c:91:fc:62:1d:22:
e7:61:65:c4:25:bf:d8:3a:3c:56:1c:f7:37:b8:a8:d7:f3:21:
d5:e3:0b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:00 2024 by rpki-client on console-fra.rpki-client.org