Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pA4Iqbj3fwZo4PxKrcKLX4x-kc.roa
File: 2pA4Iqbj3fwZo4PxKrcKLX4x-kc.roa (raw, json)
Hash identifier: l4RP23DE8+5ODPBHsWawQpAXKynIHNoHr63dth20xNw=
Subject key identifier: DA:90:38:22:A6:E3:DD:FC:19:A3:83:F1:2A:B7:0A:2D:7E:31:FA:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A39
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pA4Iqbj3fwZo4PxKrcKLX4x-kc.roa
Signing time: Fri 01 Sep 2023 10:07:38 +0000
ROA not before: Fri 01 Sep 2023 10:07:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10809 (0x2a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DA903822A6E3DDFC19A383F12AB70A2D7E31FA47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a7:46:a0:74:44:e8:1d:2e:87:d4:db:30:b9:
c9:18:43:db:dc:e4:49:82:62:aa:08:3f:6d:bc:1f:
70:45:1a:e1:be:6c:b3:61:bf:f7:40:a4:a1:f2:a7:
19:f7:c7:d5:c0:92:ec:14:97:cd:9b:b5:10:6c:ff:
63:49:d5:a3:97:7d:7d:3e:30:43:28:16:b5:ad:ad:
1b:ce:73:84:4a:a3:bd:fc:61:e5:b4:9a:47:00:8f:
c8:6b:d4:77:35:4e:dd:2e:51:75:ea:3b:11:7a:58:
09:af:ec:b0:fd:f7:2b:3d:ca:84:f4:d8:57:2c:96:
ce:83:f0:0d:dc:4d:d5:51:d0:ba:8a:c6:37:4f:97:
e6:55:73:6e:54:c1:af:08:d5:f6:66:98:4a:34:51:
c2:19:e6:1a:4d:08:fd:c2:b3:ee:dc:f0:74:b1:22:
27:73:ec:86:c9:ac:28:7d:40:0f:4b:93:a5:b8:24:
3b:aa:4c:99:57:f0:19:0c:44:3d:4d:25:fa:eb:4c:
72:5c:7f:e1:1b:14:1d:5c:87:8b:63:af:4a:91:79:
bb:f3:f2:8e:66:a8:d2:b4:93:4f:f9:51:ba:72:98:
86:7c:e5:f0:9d:4c:0a:53:d8:fe:80:06:8d:47:42:
fd:55:bb:d2:cd:ce:ad:63:57:6b:93:6f:66:16:d7:
33:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:90:38:22:A6:E3:DD:FC:19:A3:83:F1:2A:B7:0A:2D:7E:31:FA:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pA4Iqbj3fwZo4PxKrcKLX4x-kc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.224.0/21
Signature Algorithm: sha256WithRSAEncryption
28:78:ac:65:a8:27:ed:5a:ac:51:e4:b0:da:c8:37:56:10:ca:
33:8a:c3:d4:18:82:16:dc:03:93:25:d6:fc:9b:c0:66:a2:d4:
18:06:49:45:d7:41:4b:ea:a9:41:de:71:f7:db:e5:05:6d:81:
fb:d6:7c:4a:ec:89:fe:49:9c:89:98:40:e1:e8:02:46:37:de:
f3:6d:f6:85:4e:cb:06:6a:86:45:ec:20:b3:17:82:c1:9a:82:
58:0d:d9:f9:2c:41:a9:89:97:24:4b:e5:40:66:7d:a4:3e:d6:
bc:4a:92:22:25:1b:11:79:0f:0d:f4:67:21:79:e1:fd:3e:58:
76:09:8b:cf:03:2c:2f:a4:d4:69:89:b1:7a:c2:71:b5:30:26:
89:82:63:2a:b6:50:91:23:b2:9f:e4:76:dc:4f:d7:a3:1b:f0:
dd:08:13:27:32:7f:fd:da:49:c6:52:4e:49:d3:25:52:7e:a7:
0f:26:d8:aa:98:fd:1f:0f:42:6a:67:de:3b:48:fb:e2:a0:10:
cb:34:ba:67:a7:03:6e:83:ad:20:c0:57:ae:53:c0:87:a7:7e:
22:a8:72:51:58:17:4f:83:85:64:0e:23:27:7d:ab:35:46:b5:
94:68:5d:7c:2d:e9:d9:d2:20:54:4b:78:47:1a:c9:5e:32:90:
aa:7e:69:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:30 2025 by rpki-client