Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5MBc7V0e1VFszZDLWRhW9_DVTvg.roa
File: 5MBc7V0e1VFszZDLWRhW9_DVTvg.roa (raw, json)
Hash identifier: AhiKYkNidkP0bvfTSaxuQKmd3roPHsUuSG5s13OaqFQ=
Subject key identifier: E4:C0:5C:ED:5D:1E:D5:51:6C:CD:90:CB:59:18:56:F7:F0:D5:4E:F8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C99
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5MBc7V0e1VFszZDLWRhW9_DVTvg.roa
Signing time: Wed 29 Sep 2021 02:47:58 +0000
ROA not before: Wed 29 Sep 2021 02:47:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7321 (0x1c99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E4C05CED5D1ED5516CCD90CB591856F7F0D54EF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:26:5c:11:85:12:fd:9c:fa:56:72:5c:98:53:
14:e3:f1:d1:74:ff:2e:4a:05:93:40:a5:a9:61:ac:
c9:7d:e5:26:14:df:35:71:91:df:a1:b2:63:58:58:
67:3b:30:0d:a7:2b:33:70:82:b6:e6:e5:2b:d8:63:
ee:34:2b:63:b8:e5:31:40:d9:ad:c3:da:0c:f8:99:
41:8b:58:58:ce:a9:db:92:86:97:1e:32:03:11:31:
88:98:e7:32:07:27:63:03:60:0b:e1:70:8e:75:78:
75:4a:33:f4:ee:86:ad:1c:81:11:07:e5:11:d9:c8:
d8:b6:68:dd:8b:b2:53:4f:91:15:65:bd:d9:26:74:
6a:39:09:9e:5c:00:b6:f2:33:d0:d8:ad:3d:e8:bc:
24:ae:5a:d5:dd:03:e1:eb:a7:66:c6:22:29:61:b1:
99:0a:92:3f:af:97:17:6a:cf:e1:80:ff:97:34:43:
38:dd:2b:52:a8:37:b4:90:ad:57:3f:59:4b:05:83:
a0:6b:af:9d:bb:0a:1d:a6:a4:47:75:75:82:0c:f1:
50:37:92:c9:66:1c:2e:75:7e:38:cf:13:93:3f:79:
7a:77:7e:cb:48:aa:f2:14:1e:3d:d3:f3:d0:39:74:
5b:05:77:4b:b3:c4:6f:22:e9:ba:44:d2:99:0b:a8:
11:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C0:5C:ED:5D:1E:D5:51:6C:CD:90:CB:59:18:56:F7:F0:D5:4E:F8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5MBc7V0e1VFszZDLWRhW9_DVTvg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.128.0/21
Signature Algorithm: sha256WithRSAEncryption
b0:b5:80:20:4b:05:ec:cd:9f:db:cd:67:43:65:6d:f8:2a:ef:
58:7e:09:da:8d:50:ca:59:00:7d:49:1b:79:78:20:48:9f:d8:
00:76:94:b5:90:79:12:4e:bc:39:46:cb:a0:f2:23:b4:ce:94:
eb:8d:34:bd:69:23:b2:44:cd:66:09:d7:99:fa:36:85:f6:3e:
21:ed:c2:8c:8d:db:a9:72:51:80:06:36:46:9e:24:2b:38:df:
62:cc:47:7a:68:86:22:0d:f0:7c:3a:6e:b2:fd:b3:12:8b:80:
1a:76:e0:f4:e7:2a:1e:f5:a9:f4:fe:76:0f:a3:95:70:9a:c7:
39:cf:6b:7e:e3:99:b1:b4:cd:9e:e6:72:07:05:e4:56:f8:f2:
f3:b9:f7:93:62:c7:de:2e:c9:02:45:23:f7:5d:47:cd:92:5b:
96:a5:7a:53:7b:04:93:f4:09:2f:2e:42:08:a7:09:19:fd:b0:
ca:7c:59:e8:03:06:47:40:16:2b:80:c3:12:1e:36:95:0a:52:
7f:08:94:dd:d1:e3:11:6c:cb:82:54:5c:1d:9c:67:7c:f8:a2:
3c:56:70:e5:28:94:dd:76:07:4b:bd:a2:47:af:77:07:f2:5f:
0a:ba:8a:aa:41:b1:06:83:3f:87:7c:67:54:5e:04:20:6d:bc:
f5:56:41:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:17 2025 by rpki-client