Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8tkW-urrJdT86q-dzhaJeClzdzU.roa
File: 8tkW-urrJdT86q-dzhaJeClzdzU.roa (raw, json)
Hash identifier: Z+dUriYSys6OwknAzcsLfxDQB6aezG0NSfqNhvXxXvY=
Subject key identifier: F2:D9:16:FA:EA:EB:25:D4:FC:EA:AF:9D:CE:16:89:78:29:73:77:35
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A14
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8tkW-urrJdT86q-dzhaJeClzdzU.roa
Signing time: Fri 01 Sep 2023 10:07:28 +0000
ROA not before: Fri 01 Sep 2023 10:07:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10772 (0x2a14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F2D916FAEAEB25D4FCEAAF9DCE16897829737735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:85:47:63:ce:c5:9c:e5:2f:6a:da:13:d3:
ec:df:e8:84:8d:87:32:2d:c7:09:02:b4:83:5a:4c:
4f:0b:bc:94:4e:e7:3f:a9:45:ef:bd:2d:41:e9:ee:
a5:cf:f5:76:d6:ce:b4:f7:48:4d:75:87:ea:49:f3:
f3:eb:0c:73:39:32:8c:a4:00:57:f0:45:cb:cc:21:
38:40:73:91:47:25:c9:e1:85:ff:98:02:8d:75:91:
4f:50:9e:7d:52:b9:a7:2a:1f:16:d8:f6:ce:4e:65:
2c:d5:b9:0b:68:a9:47:0d:4a:db:13:9e:29:ae:00:
ec:1a:40:cd:2a:db:8b:4a:76:d7:51:c1:ea:3b:61:
31:4f:56:11:41:3f:20:9e:2f:38:78:c0:6e:7b:8b:
a8:d9:8e:24:5d:46:35:2d:84:c1:0e:f5:b3:06:03:
b3:c5:fa:f5:37:c0:9d:a9:d1:ce:9d:db:61:33:61:
7e:f1:d1:87:64:10:29:d6:14:cf:5e:b3:85:d0:e4:
2d:35:a6:ec:d8:32:ec:f9:34:44:b9:aa:14:55:b8:
f2:58:aa:d6:2f:01:2f:30:9c:40:f6:cc:95:ba:44:
6b:d5:21:bb:0f:4b:ef:21:99:83:85:3b:db:bf:4e:
12:12:56:0b:3e:b6:8a:3f:1a:70:1c:9c:30:a4:9d:
95:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D9:16:FA:EA:EB:25:D4:FC:EA:AF:9D:CE:16:89:78:29:73:77:35
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8tkW-urrJdT86q-dzhaJeClzdzU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.4.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:ec:12:77:b0:9f:65:5f:75:71:a8:8a:e0:ea:00:4f:db:68:
00:9b:98:f5:16:92:a4:57:5d:ff:da:3d:f3:69:46:af:a2:9b:
8f:93:d8:b5:7c:cd:9e:8b:a7:77:1a:22:60:a8:eb:b4:d2:1d:
6d:e5:55:8e:d0:23:67:cf:48:cb:98:9f:1a:75:f1:8f:d0:75:
4a:e3:11:d8:68:32:bf:ca:37:32:37:e0:e6:65:d8:34:8b:28:
c9:bf:2d:33:64:7b:d8:7d:e4:66:de:d7:3d:34:ef:3c:9b:a7:
e8:6f:88:c7:ef:4f:be:a3:b2:1c:a8:99:df:45:31:d5:81:40:
10:6f:35:1a:d6:27:46:ff:ff:29:1f:18:fb:76:08:ac:44:c1:
cc:ac:6c:87:e1:66:2c:3b:03:be:95:26:c2:bd:62:15:c1:dc:
7f:fe:34:3f:9f:5e:90:44:76:7b:9f:76:2c:2b:77:75:89:0c:
f5:55:48:46:d1:2d:a1:73:4c:f6:55:d4:15:c0:88:ee:db:b8:
57:00:9c:00:76:b8:3a:7a:0b:c6:c2:57:29:1c:83:11:0d:08:
3f:42:32:7f:ab:62:88:e5:a1:3d:a0:e9:46:a2:47:bb:18:cf:
8f:60:43:55:c9:57:46:33:ee:c9:c4:93:12:0d:d4:bd:cc:8f:
da:61:1c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:34 2025 by rpki-client