Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-WFdBfCeBx4iSbPofHTzUC6whhg.roa
File: -WFdBfCeBx4iSbPofHTzUC6whhg.roa (raw, json)
Hash identifier: VYCdZG4ASz94ujwvLWr1Y3tz0l51RWxrvC+Lxc1OHpg=
Subject key identifier: F9:61:5D:05:F0:9E:07:1E:22:49:B3:E8:7C:74:F3:50:2E:B0:86:18
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2878
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-WFdBfCeBx4iSbPofHTzUC6whhg.roa
Signing time: Fri 01 Sep 2023 10:05:23 +0000
ROA not before: Fri 01 Sep 2023 10:05:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10360 (0x2878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F9615D05F09E071E2249B3E87C74F3502EB08618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d5:5c:3f:67:3f:12:74:bd:5d:e9:23:f3:5c:
80:41:e6:8c:53:70:64:2a:2d:f3:fb:13:0e:ab:1a:
86:61:c9:6e:74:0e:86:5f:b0:e0:db:a5:1c:1f:45:
7c:6a:ec:c7:d4:e3:71:38:d1:56:75:eb:60:07:e5:
f1:df:a2:1d:b6:ca:2e:ef:94:f2:53:cd:22:d6:d1:
b6:77:42:14:9c:a7:4c:c9:c2:47:3a:8f:25:8a:9a:
ef:18:73:54:e8:88:01:79:9c:93:28:18:61:38:ba:
f8:73:80:20:20:0a:55:f4:fa:48:10:3c:f8:82:fc:
67:15:d1:ab:9b:1f:64:e7:b3:57:2e:51:ce:bc:3f:
b0:41:43:d5:1f:ce:ec:0f:3e:48:be:50:98:a1:a9:
e0:5c:16:ab:f5:33:fa:60:b5:34:90:6b:c5:56:08:
a8:a5:a8:c4:68:41:68:e2:c1:66:c8:b9:4b:18:33:
cc:15:f7:72:03:81:7d:42:6d:a0:2d:42:a3:16:7f:
b2:ea:c8:67:bc:b8:52:07:ca:1d:d8:d7:dc:97:a4:
58:b4:5f:af:a1:0f:67:0c:d3:f8:a1:6c:8e:cd:a1:
ac:73:6a:b1:ba:68:1a:b4:a6:ca:6e:f3:a2:c7:30:
89:8d:ff:6f:fc:75:29:1a:16:15:52:43:fc:d1:27:
b1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:61:5D:05:F0:9E:07:1E:22:49:B3:E8:7C:74:F3:50:2E:B0:86:18
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-WFdBfCeBx4iSbPofHTzUC6whhg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.205.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:3e:33:4c:e1:03:5b:d8:15:e6:b5:8a:65:7d:0f:77:17:cc:
20:d4:a3:a7:c1:5d:12:96:26:07:54:7a:6a:44:f2:d7:c0:5d:
61:06:60:24:48:92:cc:88:84:79:df:2e:81:1d:25:0d:17:0a:
65:66:61:78:7f:75:0a:d6:bc:d3:6d:89:92:8b:5f:f6:87:86:
61:f4:35:20:b6:e7:cc:83:75:ea:f8:fe:7e:49:b6:38:51:3b:
d4:c1:ac:4f:f8:b1:9d:e6:b4:d4:1e:fe:c7:0c:76:90:0a:6c:
6a:aa:ac:bb:f2:6f:9a:1d:bc:67:cd:42:d9:7b:e9:d0:97:47:
09:a7:f5:e9:5b:89:b3:03:85:61:f5:d5:6d:9a:49:e3:b8:ac:
bf:40:b0:21:a7:47:47:45:73:c0:3a:3f:f6:1e:ce:2a:23:09:
9b:6d:6e:7d:d0:92:c4:c8:56:37:92:8f:94:6b:d3:ac:d8:31:
91:af:ff:72:97:fd:15:e3:a2:67:8a:9e:a2:96:e3:5e:3b:4b:
68:c8:06:d4:8f:a1:99:62:b0:72:52:49:05:3a:2b:3d:0b:46:
99:cb:ec:ee:91:55:5b:4f:f1:df:f1:f0:75:d7:27:0b:c6:97:
2b:26:a5:df:87:a9:3c:07:fb:44:b2:c3:34:be:20:b2:4d:6a:
f6:63:32:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:04 2025 by rpki-client