Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2IKeJ99eJuZGa8-xMyVbtMPDwrc.roa
File: 2IKeJ99eJuZGa8-xMyVbtMPDwrc.roa (raw, json)
Hash identifier: fDiuZvkoonjhjPM2rzDv6/d5BYBVdDefZyHU0O4pRSA=
Subject key identifier: D8:82:9E:27:DF:5E:26:E6:46:6B:CF:B1:33:25:5B:B4:C3:C3:C2:B7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C4D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2IKeJ99eJuZGa8-xMyVbtMPDwrc.roa
Signing time: Wed 29 Sep 2021 02:47:35 +0000
ROA not before: Wed 29 Sep 2021 02:47:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7245 (0x1c4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D8829E27DF5E26E6466BCFB133255BB4C3C3C2B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0b:fc:1a:f5:ad:ff:ae:3d:ac:37:f1:ef:e6:
d4:25:32:6d:ac:6f:42:2a:c9:8c:35:02:36:c7:02:
e3:1c:3b:06:f0:04:1b:21:43:73:b6:4d:6c:15:5a:
40:59:13:84:bc:ee:dc:59:cb:8a:30:28:c5:ef:65:
99:9c:14:b6:47:17:f4:14:5b:df:99:18:b9:ee:12:
30:9c:1d:45:cf:6d:16:6e:f8:44:a6:28:f8:12:08:
7d:b7:27:1e:7e:0f:1b:1b:07:46:89:a4:17:e9:a2:
c3:1a:b6:d8:d0:58:9f:a4:05:91:78:a8:54:5b:1d:
83:3d:8e:0b:87:0e:4b:14:19:a0:44:6e:f9:e1:a3:
e3:ab:c5:9e:4e:f1:cc:dc:64:a2:b1:c0:d2:3f:61:
43:02:0f:bb:46:34:4b:f0:73:62:ef:1e:f4:8f:eb:
55:8a:25:94:08:25:ae:9e:8f:02:6c:af:16:0c:91:
77:b9:ba:78:72:94:c5:1b:70:46:1b:d7:84:5d:dc:
41:30:04:2c:c9:c3:f9:d1:26:f6:43:3a:d1:7b:79:
b3:17:eb:60:24:c9:2c:a5:0a:f4:b8:25:6b:80:8c:
6e:25:0d:ce:6c:7b:ed:22:3d:9c:e1:c2:58:b6:fb:
c0:bd:d0:7c:70:f8:58:24:0c:dd:b5:c9:79:29:1a:
38:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:82:9E:27:DF:5E:26:E6:46:6B:CF:B1:33:25:5B:B4:C3:C3:C2:B7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2IKeJ99eJuZGa8-xMyVbtMPDwrc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.20.0/22
Signature Algorithm: sha256WithRSAEncryption
86:ac:8e:ce:8c:5c:69:15:36:de:c7:1c:6f:f4:7a:93:c5:4d:
81:98:01:d4:24:51:50:7c:3e:e7:d3:b6:c6:c5:1e:50:51:17:
7e:fc:4a:02:fd:3d:67:68:81:ed:05:89:9d:5b:54:e3:4b:50:
6e:8a:71:c1:5e:e7:81:53:28:04:14:3c:cc:dc:2d:f9:59:78:
ff:28:3d:46:48:eb:4d:7e:06:ef:8b:b1:f6:e4:d1:36:2d:77:
1a:68:3b:3a:6a:91:e3:7f:93:ef:c8:0d:04:12:ce:70:17:a7:
db:ba:03:6b:f8:cb:c7:88:d2:df:be:a9:55:e3:78:be:ef:02:
70:b6:f4:cc:ba:96:44:2d:fe:e9:96:71:58:bb:be:79:38:08:
70:b8:99:ff:7d:e5:77:9e:8f:4b:2a:7d:4d:67:02:37:f1:37:
0f:55:21:d6:6f:5e:2a:6a:e7:61:1e:80:2e:c6:c8:1d:93:ed:
87:5f:8d:6a:03:b0:d1:36:1d:14:35:07:a1:64:3f:d8:bf:9a:
09:16:d4:e4:a9:b0:b1:15:1f:57:a2:42:3c:44:ca:69:3e:d2:
1e:55:de:a2:94:28:16:66:8d:82:ae:98:1c:17:c2:cf:b2:4d:
89:94:cb:2f:77:a5:bb:81:64:93:58:a3:24:98:7c:e5:5a:79:
52:06:23:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:20 2025 by rpki-client