Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4fa1pz5uufEZbI4HRja3kgUFVQg.roa
File: 4fa1pz5uufEZbI4HRja3kgUFVQg.roa (raw, json)
Hash identifier: IwxKB8oglBL1WnBJodSNxabN9mwsGzQHpGEHMFLHi8s=
Subject key identifier: E1:F6:B5:A7:3E:6E:B9:F1:19:6C:8E:07:46:36:B7:92:05:05:55:08
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2975
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4fa1pz5uufEZbI4HRja3kgUFVQg.roa
Signing time: Fri 01 Sep 2023 10:06:38 +0000
ROA not before: Fri 01 Sep 2023 10:06:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10613 (0x2975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E1F6B5A73E6EB9F1196C8E074636B79205055508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2a:4f:72:0f:67:2d:10:04:fa:a1:ea:92:75:
d8:c7:ab:5f:7a:1b:a1:8e:c3:1a:81:d8:7c:09:f3:
d8:de:d5:87:9c:f1:79:12:a5:88:4b:62:4f:ee:73:
70:a7:9a:e4:3d:bd:03:50:33:08:b7:e4:45:f4:c1:
cf:54:09:30:21:40:bc:b0:ce:b0:4f:f3:87:82:e9:
76:43:09:2e:43:4c:21:50:84:3c:f0:4b:53:ee:cf:
2a:d3:b5:b4:d6:7e:70:52:b1:42:7e:a6:f5:6a:da:
6d:34:e0:8a:9b:b9:f2:20:97:7a:d6:09:53:19:09:
85:3c:a0:be:d4:65:f4:b2:c5:fa:0a:af:a5:33:20:
d2:47:4e:dc:b2:95:18:76:10:8c:7f:9a:1a:f2:e2:
ad:98:0c:18:d7:f5:68:ea:5d:b2:36:7e:6f:bf:4f:
15:70:06:3a:99:5c:53:16:e1:33:ce:87:ae:9d:43:
dd:3c:0b:64:cc:f1:18:fd:e9:c8:0e:ec:20:df:3f:
86:d1:ba:a7:4b:52:c9:bc:71:87:4a:8b:f7:60:e1:
f2:83:45:b3:96:63:7a:0b:e9:4e:0a:e5:53:76:dd:
35:97:e5:82:0a:18:e4:11:30:b8:15:e1:3f:dc:98:
53:f9:9b:57:34:38:60:6b:8d:38:87:a9:0b:58:0a:
32:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F6:B5:A7:3E:6E:B9:F1:19:6C:8E:07:46:36:B7:92:05:05:55:08
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4fa1pz5uufEZbI4HRja3kgUFVQg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.245.0/24
Signature Algorithm: sha256WithRSAEncryption
64:3b:9c:a7:96:fe:b0:dd:bd:f8:23:87:20:9e:2c:ff:ba:0a:
5b:92:aa:08:3b:22:fe:9f:1c:d1:f2:2c:19:51:5a:78:83:e7:
b0:d1:17:bb:cb:ed:60:fd:59:7a:b2:e7:53:66:ea:09:db:a5:
e8:41:61:87:5a:5c:1d:37:fa:d5:c7:a6:ce:00:26:85:38:db:
0f:1b:6b:fb:ca:99:76:d8:7e:55:7e:d6:4b:b1:d9:60:29:e7:
d8:fc:df:3f:cf:03:10:f1:41:c6:7e:a6:0e:8c:43:49:15:24:
d0:ee:51:5a:d9:9e:12:25:61:45:4c:4b:59:71:48:03:5b:cd:
1f:67:03:f8:14:87:d9:e2:35:73:68:21:8e:2b:15:43:82:bd:
1e:8e:63:1f:4a:1f:d9:44:73:68:c8:9e:0a:75:d2:11:e4:9e:
a6:72:dc:06:a4:18:fc:72:6c:b7:d6:74:28:fe:c5:fd:79:42:
3a:49:d2:ff:24:c6:01:ed:69:2f:48:71:bf:f4:91:ab:fe:7d:
89:52:01:06:3a:4a:65:19:f6:51:de:bf:47:ba:f9:b1:ab:48:
10:c7:79:4d:9c:d5:cf:bc:0a:6b:80:5c:f2:60:3e:18:7f:91:
f4:c5:fc:e5:a7:2b:38:04:4a:bd:91:9e:da:19:1f:4e:16:a4:
ea:da:5f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:38 2025 by rpki-client