Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zwL1cDVcs4HS_40rWjAUGPP2Mjg.roa
File: zwL1cDVcs4HS_40rWjAUGPP2Mjg.roa (raw, json)
Hash identifier: gSvTszY/xYpXVNVrtGxCPbOjbStONFaTpb+tiWp5Ei0=
Subject key identifier: CF:02:F5:70:35:5C:B3:81:D2:FF:8D:2B:5A:30:14:18:F3:F6:32:38
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C80
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zwL1cDVcs4HS_40rWjAUGPP2Mjg.roa
Signing time: Wed 29 Sep 2021 02:47:50 +0000
ROA not before: Wed 29 Sep 2021 02:47:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7296 (0x1c80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF02F570355CB381D2FF8D2B5A301418F3F63238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:67:58:b9:83:0f:2a:bd:e3:9a:af:b5:16:a8:
e2:bb:e9:be:93:a2:6b:17:2c:dc:4c:28:fc:56:46:
29:96:73:fe:2a:df:bf:65:13:76:fa:b7:15:a5:f2:
f8:2b:8e:a9:38:d8:3f:87:f8:26:80:4a:ef:6f:22:
51:28:3b:1c:a1:a3:3b:61:84:31:63:72:20:36:5f:
c2:27:9f:03:f7:fe:7d:f9:f5:b3:f2:29:33:44:de:
41:49:84:e3:f7:31:59:96:ca:09:ca:3e:ab:9c:fb:
df:8f:d9:c1:ce:9b:77:7c:25:37:2d:54:51:99:ad:
4f:82:b9:c7:54:88:61:ef:72:4e:86:10:44:f8:7a:
df:00:cf:0a:b7:e7:1a:0a:83:45:a0:9f:37:02:8c:
f3:80:3b:c5:54:6c:ba:88:ce:07:ac:c5:58:de:a5:
7c:45:81:5f:0a:11:39:1e:e5:fe:b8:7d:5a:a3:21:
3c:f5:99:fd:17:91:3c:7a:08:9b:d6:85:cb:5b:c6:
90:73:ae:e0:7e:c4:39:a1:43:dd:40:d6:02:55:f3:
5e:a3:3c:10:33:e8:0a:e4:9d:a9:ac:97:45:03:81:
b0:b6:0f:8e:02:03:95:a6:0c:82:ae:0a:f7:e7:ba:
84:78:74:0f:3e:40:13:43:f7:79:eb:f0:d1:cf:a2:
b0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:02:F5:70:35:5C:B3:81:D2:FF:8D:2B:5A:30:14:18:F3:F6:32:38
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zwL1cDVcs4HS_40rWjAUGPP2Mjg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.136.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:c6:da:36:1a:b7:77:25:36:03:af:1b:6a:d9:f9:70:0f:b3:
88:47:0a:2f:db:d4:55:55:2f:6e:d4:1d:3a:78:54:0a:00:af:
f2:ae:e0:47:ad:0e:62:91:f2:43:8c:e2:1e:8f:e3:b2:63:c2:
f8:a3:00:76:ba:e3:12:b0:81:9f:94:f6:cf:77:56:df:b0:2d:
9b:c3:ef:9a:62:fe:55:8c:c8:0f:20:33:61:0e:66:4a:a1:60:
20:c1:ae:7b:ed:94:fe:8b:b0:04:82:3d:a3:49:54:3f:11:a7:
f1:3a:a0:d8:90:c1:96:cb:0d:93:a5:4b:f3:3a:d2:b8:25:f1:
02:9e:60:d2:00:64:e1:a4:30:74:29:39:0b:bf:a6:fb:40:64:
af:24:e7:11:94:01:ab:92:b4:36:c3:ee:a4:bc:14:15:96:5b:
7a:b1:c1:08:77:58:a9:03:53:7d:fb:3c:f9:75:90:89:99:97:
e0:18:ca:1d:37:ba:a4:6a:7d:60:7e:de:fa:c5:c1:02:49:17:
c7:f9:6f:93:91:9c:2f:a1:65:52:88:e3:76:61:a2:3e:d7:57:
c7:47:5d:56:a3:80:2d:8d:45:22:b0:a4:d9:a6:35:68:b3:85:
9b:c8:b2:47:5b:9f:dd:b1:97:8a:db:06:cc:35:9b:71:1a:71:
77:9d:1f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org