Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2Dh700us7Aez3KwydmnHFhf9io8.roa
File: 2Dh700us7Aez3KwydmnHFhf9io8.roa (raw, json)
Hash identifier: GFx+SmIY2TRIipTDKtnNUaCIP6qlCYmf6dVO4TgbHkY=
Subject key identifier: D8:38:7B:D3:4B:AC:EC:07:B3:DC:AC:32:76:69:C7:16:17:FD:8A:8F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AF4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2Dh700us7Aez3KwydmnHFhf9io8.roa
Signing time: Wed 29 Sep 2021 02:45:57 +0000
ROA not before: Wed 29 Sep 2021 02:45:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6900 (0x1af4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D8387BD34BACEC07B3DCAC327669C71617FD8A8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a5:01:c3:68:e2:9c:99:c6:6b:5c:46:a3:56:
71:c0:a2:fa:41:eb:32:2e:b5:30:3a:7e:41:92:a7:
1d:07:21:00:c7:ff:2a:f7:50:17:d0:ec:d0:77:17:
b1:9e:5d:7e:ea:51:05:1f:74:cf:96:ab:18:a4:d4:
54:0d:03:91:64:58:ae:24:15:6f:ab:35:2f:40:01:
ca:20:00:b5:19:cc:d2:ec:63:2b:e4:a4:bf:58:a0:
47:f6:c1:1d:63:9b:7a:cb:58:aa:39:46:28:2f:e6:
17:01:2f:b0:a4:f9:3f:1c:d4:1a:61:ae:05:e2:fa:
c7:c1:15:f2:86:1d:ba:35:af:61:d3:51:5e:83:30:
cb:dc:ac:3e:e4:90:7c:3c:a7:92:6c:7e:7f:17:3a:
17:05:be:9e:8d:24:96:0c:68:3b:4e:15:f1:20:fc:
97:97:94:64:bb:aa:85:b9:f3:be:c1:17:5b:6f:23:
d0:4f:0e:56:56:23:f8:77:97:ff:4c:90:a7:b0:a3:
3c:3a:42:a8:e0:33:f6:d8:8e:fb:7d:63:e9:da:92:
50:b4:ba:08:e2:04:95:18:73:64:f0:73:7c:28:7e:
07:7d:cb:0e:40:e8:d5:ea:39:22:de:b0:e0:15:42:
80:32:e7:82:6a:45:87:07:72:06:53:50:25:8f:b2:
65:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:38:7B:D3:4B:AC:EC:07:B3:DC:AC:32:76:69:C7:16:17:FD:8A:8F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2Dh700us7Aez3KwydmnHFhf9io8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.100.0/24
Signature Algorithm: sha256WithRSAEncryption
98:22:11:18:70:21:3e:1a:c8:00:20:b3:ec:45:93:2d:ec:9f:
0a:e2:3e:d3:8c:2d:43:0c:60:ad:8f:4c:fd:46:ee:51:e8:b4:
43:aa:1c:14:a3:7e:db:38:6b:28:37:09:c6:49:71:ef:24:25:
15:ce:9e:ce:f6:59:26:ca:cc:d6:fc:83:a6:62:e5:08:fa:94:
03:d0:5d:45:c8:19:05:0f:36:01:9a:34:1b:02:32:e5:bf:ef:
7c:e3:9a:89:b2:20:a9:35:c2:db:bf:1b:6c:40:b2:44:1f:ae:
59:5b:26:57:a7:40:d8:c8:ae:ea:62:6f:01:e3:19:2f:c1:0d:
0a:90:d8:4f:ad:2b:d7:c2:4d:eb:57:f6:5e:76:57:d8:6a:87:
65:ce:0e:bc:42:06:08:4b:a6:25:2a:11:d4:a9:07:56:dc:7d:
85:8e:c7:3b:c7:f4:7d:be:68:31:33:5e:bd:6a:6e:2f:fd:7f:
f8:f6:4b:6e:3f:8e:8f:d9:b6:3f:83:77:13:af:7d:96:33:c0:
9a:87:37:18:93:6e:75:b4:f7:29:58:b8:b9:a5:81:c9:d4:03:
66:8a:60:b7:4a:eb:2a:8a:4c:97:73:d4:c1:35:1e:8b:00:2e:
88:3b:64:86:25:48:b5:8f:8c:19:0e:9b:bc:05:df:60:60:a3:
78:c9:f0:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:02 2025 by rpki-client