Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5X23Aty9lswRH_sbXx7AFXSpK58.roa
File: 5X23Aty9lswRH_sbXx7AFXSpK58.roa (raw, json)
Hash identifier: oda+OainowsejflK5v0ELlq4KY9wYCmL8ptM8dxwleY=
Subject key identifier: E5:7D:B7:02:DC:BD:96:CC:11:1F:FB:1B:5F:1E:C0:15:74:A9:2B:9F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2ACD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5X23Aty9lswRH_sbXx7AFXSpK58.roa
Signing time: Fri 01 Sep 2023 10:08:18 +0000
ROA not before: Fri 01 Sep 2023 10:08:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10957 (0x2acd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E57DB702DCBD96CC111FFB1B5F1EC01574A92B9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:10:41:0f:dd:7d:d4:36:94:3c:c2:fb:f0:57:
bb:58:14:9a:7a:e4:4c:a2:a7:c9:8f:6d:7f:f0:92:
34:c3:37:f6:8c:bb:9c:14:3a:f2:af:61:2d:58:33:
79:1a:eb:67:3e:0d:a9:fb:af:4e:dd:2b:a3:60:28:
71:21:6e:2b:c6:c0:db:a3:44:d2:38:6f:2d:62:57:
2e:7f:d8:4e:8f:1a:da:14:7d:9c:37:d8:fd:eb:91:
a2:a4:6d:56:fd:82:71:3f:10:60:d5:71:57:27:71:
80:70:ef:82:d4:c0:24:b0:bc:76:a5:3d:f0:d0:77:
47:1d:fc:83:56:ad:bc:8d:eb:e0:da:8f:ba:71:a8:
cd:30:fe:aa:6d:b4:47:99:da:d0:5d:e6:69:bd:cf:
5b:d2:71:88:f7:78:f7:08:6a:56:52:60:39:1b:1d:
08:f2:b9:15:55:10:28:7e:64:86:85:99:7e:e1:f6:
ab:b0:4d:93:91:09:b3:e0:7b:be:e4:7d:ce:1a:3a:
15:ff:da:e7:fc:d1:4d:fa:1d:0c:c0:3a:c5:a5:57:
98:90:14:fe:b3:93:46:d0:cd:f8:56:ca:85:74:01:
34:1b:6c:10:e4:80:18:24:b0:3a:e6:12:66:89:85:
db:65:d6:77:7f:36:0d:8d:cc:ae:fe:00:24:34:6f:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7D:B7:02:DC:BD:96:CC:11:1F:FB:1B:5F:1E:C0:15:74:A9:2B:9F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5X23Aty9lswRH_sbXx7AFXSpK58.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.152.0/22
Signature Algorithm: sha256WithRSAEncryption
79:53:4f:f4:f1:cc:c2:fd:44:be:c3:4c:2f:ca:46:cb:4e:77:
18:4a:c6:d4:f9:7a:3b:3f:7d:d0:72:bf:18:da:36:13:05:94:
73:dd:1f:e0:d8:5c:49:7c:7d:27:2b:c4:3b:f2:bb:0a:9b:c5:
34:63:c8:ff:9c:5c:29:7a:b5:57:4b:42:d5:fc:7a:05:1e:14:
8e:1c:0b:fc:0c:64:70:c1:72:28:62:cf:99:7f:c2:10:b8:91:
eb:d4:18:0b:b2:cb:42:a6:c2:8c:25:e8:86:b0:d8:ec:db:0c:
e5:b5:95:81:76:6a:2c:97:3a:ff:9d:00:ad:db:66:73:62:de:
51:17:64:4a:0d:1e:cc:85:78:22:dd:0c:c3:65:91:e9:4a:c7:
de:fb:ed:b4:0a:8f:01:f7:91:64:e4:2a:7a:8c:1b:18:f0:6d:
0a:8b:8d:1a:08:57:91:f8:e3:76:36:72:6f:26:e6:11:e4:77:
64:f0:ab:cc:1f:bf:a8:6c:61:54:3a:7b:56:a5:0c:13:9e:08:
b0:8d:ba:aa:58:ff:33:fe:28:af:0f:5e:27:42:a5:43:93:83:
b0:8e:7b:e1:66:6f:4b:a7:df:b9:28:d2:2a:26:03:c7:51:92:
65:67:77:84:76:fc:5f:45:78:4b:c6:73:d9:7a:d5:8c:28:d9:
13:e2:48:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:52 2025 by rpki-client