Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2KjH8i2UtACJ6W_oDrC_ANBJ1kc.roa
File: 2KjH8i2UtACJ6W_oDrC_ANBJ1kc.roa (raw, json)
Hash identifier: vjUz5rUBj0YZXB8Xu3Kr0PQZnbIACFI5vPKGJ3QHE7g=
Subject key identifier: D8:A8:C7:F2:2D:94:B4:00:89:E9:6F:E8:0E:B0:BF:00:D0:49:D6:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0F3C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2KjH8i2UtACJ6W_oDrC_ANBJ1kc.roa
Signing time: Tue 29 Sep 2020 09:56:41 +0000
ROA not before: Tue 29 Sep 2020 09:56:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3900 (0xf3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D8A8C7F22D94B40089E96FE80EB0BF00D049D647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:45:5a:94:45:2c:69:5e:ea:a5:57:02:e9:39:
60:28:2f:d9:84:d0:1a:37:2c:90:35:af:d2:86:9c:
92:07:71:02:ba:4c:1f:80:b6:c8:96:72:c0:aa:5c:
fd:a2:65:24:88:15:e8:06:5c:d7:86:c2:65:7f:2b:
0a:cc:ac:81:d6:71:6f:f3:11:9c:8d:3d:2b:bc:af:
f6:27:d3:03:75:d1:5c:4d:50:2a:50:fd:91:17:fd:
c5:78:de:c9:e7:60:e9:1c:bf:90:01:da:c6:ea:04:
70:ac:59:d8:65:f2:85:2d:79:6b:fe:ad:9a:64:6e:
26:42:e6:fe:90:89:21:fa:a8:db:0c:f2:60:89:23:
1c:3c:5d:ee:b5:fb:38:b5:16:76:a4:80:6b:a7:7a:
28:e1:20:b1:e0:3d:0c:56:54:0a:f3:15:c2:4a:01:
d8:7b:d0:3a:92:9d:fd:fc:6f:fc:ab:01:f3:e0:40:
a6:dd:71:10:e1:aa:bb:36:b4:da:da:a2:62:49:47:
5e:f8:69:a6:59:4d:40:91:68:fe:f5:11:da:85:c4:
60:06:20:64:6a:43:af:03:83:f2:bd:04:1a:05:c8:
de:b5:8b:3f:bc:32:fa:c1:00:6f:d7:02:ce:b2:b8:
5a:10:6d:3a:a5:73:b0:1f:02:59:41:77:3b:07:c2:
db:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A8:C7:F2:2D:94:B4:00:89:E9:6F:E8:0E:B0:BF:00:D0:49:D6:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2KjH8i2UtACJ6W_oDrC_ANBJ1kc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.248.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:bc:16:27:e6:ce:0e:65:0d:80:e8:f5:6c:eb:30:6b:07:15:
d0:ea:01:4a:fa:87:f5:e5:fa:f2:c0:91:fc:db:d0:57:31:c4:
74:de:67:42:99:71:29:35:73:fe:4c:84:a3:66:e8:0d:74:ca:
69:96:5d:ac:66:c8:81:dc:25:9f:bb:4a:da:8a:37:20:7d:c8:
c5:10:01:cf:94:97:4d:24:63:5c:98:9f:f3:ac:8c:af:25:32:
c8:a1:a9:32:09:36:b7:0c:3c:55:ae:70:f4:4c:75:aa:c7:a8:
83:dc:df:92:42:92:5c:95:0f:6a:25:e7:7f:88:a8:74:3b:76:
cd:e9:1d:46:aa:b0:d3:1d:71:ec:de:39:1f:51:f9:1e:5d:5b:
ab:81:d4:31:2f:f9:e2:f2:db:fc:7e:b0:af:f7:fd:82:8b:82:
c9:48:6a:9a:c5:f5:7a:b9:7a:bf:c1:35:7d:83:75:d6:01:57:
c1:41:4d:14:ed:56:59:b6:62:3e:56:ed:41:67:2b:38:5e:93:
54:18:8d:e2:ce:3d:a6:bb:34:56:f7:74:13:b8:2f:af:b1:2b:
78:db:bb:02:1a:09:eb:87:f0:f5:36:f9:0b:3b:8c:ac:bf:77:
13:63:75:66:48:3a:84:9f:b2:fe:e8:69:b3:7f:9c:72:cf:5c:
2d:83:9b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:13 2025 by rpki-client