Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3BCJAspYJnQYWW-aR_ji-bSU6Bs.roa
File: 3BCJAspYJnQYWW-aR_ji-bSU6Bs.roa (raw, json)
Hash identifier: I1EdnveR2M794ZghwgjWPUUvOZHO/i32zwjWvl8Frto=
Subject key identifier: DC:10:89:02:CA:58:26:74:18:59:6F:9A:47:F8:E2:F9:B4:94:E8:1B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2B15
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3BCJAspYJnQYWW-aR_ji-bSU6Bs.roa
Signing time: Fri 01 Sep 2023 10:09:49 +0000
ROA not before: Fri 01 Sep 2023 10:09:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11029 (0x2b15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:09:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DC108902CA58267418596F9A47F8E2F9B494E81B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:fe:23:a8:ea:37:9a:d7:e4:e8:c7:c6:98:92:
d1:cb:84:64:54:09:69:04:16:f3:42:f0:ac:9f:e4:
12:03:d8:30:bc:8a:4f:b2:81:b8:1c:1f:c4:ad:87:
fe:6a:dc:67:96:bd:13:19:0e:d5:b2:8d:19:af:77:
82:36:81:58:48:9a:85:8f:88:91:50:91:5f:1f:a4:
fa:1f:bb:82:ea:bd:1b:16:4a:20:83:09:9f:f8:78:
ca:eb:74:ef:d7:aa:0d:72:24:a8:95:83:6d:dd:4a:
62:c8:4e:57:6a:a9:88:5c:0a:54:d8:82:91:8f:2a:
10:61:2a:2d:30:ed:d0:ad:d1:e1:08:63:b9:d4:ae:
08:13:3f:94:e1:b3:de:6a:97:91:c9:19:b3:31:e1:
44:04:f3:c4:c8:21:2b:da:53:3e:00:ba:bd:23:d9:
fd:7b:62:2e:3b:db:7b:de:b6:db:ce:1f:40:34:f9:
d6:5e:93:29:30:26:ec:c5:22:be:0c:bc:dd:e3:86:
01:85:46:2a:0a:b8:18:5f:93:40:d2:5e:5f:89:6a:
d8:14:43:5b:7b:ca:af:83:c8:42:fe:ae:e8:43:0a:
fa:94:4a:b7:fd:70:2d:18:c3:91:09:98:db:e8:c8:
28:15:a5:14:ec:b1:83:35:b9:ba:61:46:52:f3:40:
bc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:10:89:02:CA:58:26:74:18:59:6F:9A:47:F8:E2:F9:B4:94:E8:1B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3BCJAspYJnQYWW-aR_ji-bSU6Bs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.68.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:c6:9a:73:bf:b7:b1:6f:9e:f8:86:43:3f:fc:32:38:8c:86:
c2:db:f8:e9:6a:24:2c:d2:85:5a:a6:33:70:6b:ac:a8:52:e3:
04:e6:41:14:96:39:66:44:99:0d:f3:6a:4b:33:d7:bf:99:3f:
00:09:26:f8:f8:af:bb:80:bf:7a:90:34:39:d2:70:21:80:27:
17:c0:73:3c:70:c8:b7:bb:36:e3:a9:6b:4e:1d:12:63:68:ca:
d8:60:08:55:07:0f:8f:67:8d:5f:2a:a6:fe:f8:1b:d3:9f:9f:
ce:ef:9b:b9:1f:84:0c:ec:52:03:9c:bb:bf:30:65:a6:4a:98:
c1:97:31:98:e8:60:cc:49:cf:43:37:66:dd:9c:5b:9a:2c:ec:
71:84:e6:3b:3a:a9:1b:4c:2e:df:b7:bb:33:7b:04:d3:a9:a9:
2c:f5:fe:83:7b:cb:5a:da:ef:e1:7f:07:eb:39:4d:3d:a0:3b:
25:d3:b2:5d:96:4f:a1:8b:b3:52:70:da:1a:2a:df:55:65:bc:
8c:d7:c9:85:8b:59:4c:41:cb:ae:1b:e4:51:27:64:94:e6:8a:
90:49:6e:33:27:de:8b:bf:23:29:a7:df:52:95:01:4e:a6:4c:
35:7e:59:87:b2:a1:24:f0:31:45:cb:e7:d6:fb:22:22:21:d1:
c1:a7:4d:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:14 2025 by rpki-client