Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zPGPPBgTRHh4QHaa6bMiWVidVRQ.roa
File: zPGPPBgTRHh4QHaa6bMiWVidVRQ.roa (raw, json)
Hash identifier: JO8hQLtppIATeGhNGalHHa7wrx62L6czjbMNj/O4U5U=
Subject key identifier: CC:F1:8F:3C:18:13:44:78:78:40:76:9A:E9:B3:22:59:58:9D:55:14
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zPGPPBgTRHh4QHaa6bMiWVidVRQ.roa
Signing time: Thu 15 Sep 2022 02:53:02 +0000
ROA not before: Thu 15 Sep 2022 02:53:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CCF18F3C181344787840769AE9B32259589D5514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6c:f6:1f:6b:5d:6d:b1:06:75:6b:67:04:96:
a7:3d:f6:12:96:3a:cc:db:97:d1:45:a0:04:05:4e:
fc:0a:d7:b9:b7:5f:72:47:c6:bc:e8:eb:e7:82:ec:
d6:07:4e:e9:bc:47:8d:78:65:f5:6b:cf:14:b4:77:
38:ef:33:5f:09:58:af:6d:eb:aa:bb:4f:53:93:00:
b3:f9:75:43:b8:71:5e:c0:62:68:4d:01:55:c3:4c:
60:78:99:a8:f7:b5:4e:3c:19:ec:44:35:4f:fd:66:
dd:02:01:7c:c6:cc:a2:7d:ec:fe:33:f1:57:75:33:
8e:48:2d:f2:e1:cd:cf:18:f9:44:59:d1:5d:4c:8e:
60:d5:e4:cb:c3:f9:12:3e:60:82:ba:69:aa:81:69:
03:a9:21:69:1b:86:49:ef:4d:60:f3:9a:83:74:a2:
2b:23:8c:c1:38:b7:1c:52:7a:40:4d:cd:d6:e7:b1:
ac:07:58:15:9a:8e:e0:7c:f9:fe:cc:e4:23:92:c6:
e3:97:eb:d0:ac:c8:88:77:72:cf:2a:1c:d2:09:5a:
d4:b7:4d:78:ee:fc:16:44:11:07:b3:2e:6f:fa:c6:
0f:73:00:2b:4c:ea:89:4c:cf:62:73:29:1d:79:e7:
99:65:cd:3c:cf:a6:51:ae:7c:86:b5:af:20:94:58:
53:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F1:8F:3C:18:13:44:78:78:40:76:9A:E9:B3:22:59:58:9D:55:14
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zPGPPBgTRHh4QHaa6bMiWVidVRQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.4.0/22
Signature Algorithm: sha256WithRSAEncryption
44:2a:47:e2:f8:2a:a9:17:e2:78:89:2c:97:08:8c:56:ea:c9:
2c:a1:65:61:df:8d:46:4a:45:5a:76:9c:2b:dc:00:cf:1e:cf:
1a:90:d2:dd:d5:86:60:4e:e2:81:ac:3d:d1:59:eb:47:c3:a3:
86:ad:06:3c:38:ef:ba:5f:ec:8a:97:54:b5:94:8f:4d:83:22:
0b:d3:4b:05:34:d8:c7:fa:a0:f6:75:4f:0a:0d:b4:ec:7f:fc:
ac:91:fc:9d:52:4e:71:b2:57:18:c1:9a:84:4e:d6:cc:66:e4:
07:69:74:f1:b6:8c:c0:b4:63:39:eb:5a:02:a8:9c:0d:c6:f7:
89:1a:f4:3c:d1:f2:ff:fe:17:58:64:26:b0:73:50:c1:0e:29:
4b:b3:e8:8e:ab:5e:cd:60:cc:a9:ec:90:ad:24:cd:c5:4b:6d:
4d:eb:44:02:35:fb:32:8a:68:b4:fe:5c:cb:cf:4f:0f:c5:c8:
b4:97:e2:30:39:a6:89:39:a4:63:76:75:81:bf:c7:d0:8a:0a:
83:51:82:44:3c:82:cf:6f:1e:5b:60:2b:6f:e4:8b:99:60:cb:
ab:e4:00:09:45:f2:75:44:ed:56:8b:f0:82:f0:80:91:64:2e:
10:0d:bb:f7:a1:fe:00:5a:2a:4d:15:55:b8:d0:ab:0c:0d:65:
2d:3a:cc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org