Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ak30DtjkKqQfhrOcpXESFW5QN6k.roa
File: Ak30DtjkKqQfhrOcpXESFW5QN6k.roa (raw, json)
Hash identifier: H2n1sd//yXT2O/BPul8MQxUi0+UPiUyTq40tTodlGv4=
Subject key identifier: 02:4D:F4:0E:D8:E4:2A:A4:1F:86:B3:9C:A5:71:12:15:6E:50:37:A9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AB4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ak30DtjkKqQfhrOcpXESFW5QN6k.roa
Signing time: Fri 01 Sep 2023 10:08:12 +0000
ROA not before: Fri 01 Sep 2023 10:08:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10932 (0x2ab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:12 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=024DF40ED8E42AA41F86B39CA57112156E5037A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1e:0b:8d:f3:0a:d1:67:4f:50:13:72:a0:15:
f4:2e:4d:bd:5f:78:2f:cf:8c:f5:10:3d:f5:16:7b:
02:ed:17:7b:25:5e:e1:bc:c0:03:f9:c8:0d:60:6d:
53:da:9a:5d:ca:46:2e:8f:ce:17:d9:4c:84:a2:98:
57:f8:92:0e:62:5d:d7:9c:45:1b:41:13:0e:f4:36:
8a:97:e9:38:03:32:18:21:26:29:60:cb:4d:08:8f:
55:b3:08:db:7a:fc:b6:b9:0e:68:39:c2:ea:82:9d:
d3:a8:f6:56:91:ef:6e:80:e1:b0:59:ff:af:b2:7e:
7d:2e:89:8b:bf:df:51:6b:de:9f:07:95:94:d7:6f:
ec:67:48:af:46:04:88:ed:7e:cd:d2:79:45:6b:47:
dd:60:ad:08:5d:38:1f:a0:39:c7:47:ee:f9:07:56:
ff:e7:97:88:5a:99:27:a4:2e:90:40:0a:bd:fc:80:
6a:6c:eb:b4:51:07:88:51:64:17:bf:46:2d:2d:73:
88:63:75:e6:06:27:51:cd:bb:bc:88:37:1b:99:61:
d1:46:dd:5d:a9:59:e7:ba:f4:28:1b:fd:a5:78:51:
3d:95:97:8b:19:e7:b4:00:f9:f6:e9:9f:d4:37:f3:
43:40:02:ab:60:02:fc:4a:8e:e3:cc:e7:a0:07:00:
e0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4D:F4:0E:D8:E4:2A:A4:1F:86:B3:9C:A5:71:12:15:6E:50:37:A9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ak30DtjkKqQfhrOcpXESFW5QN6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.160.0/22
Signature Algorithm: sha256WithRSAEncryption
14:96:34:ba:12:67:c4:2b:da:79:6c:b7:e4:31:e2:50:5b:ec:
8a:22:8c:27:75:14:ac:88:9a:9c:3c:ed:1f:7e:d6:3d:51:e2:
96:0f:20:80:67:65:30:3a:23:a0:29:a7:ed:38:b3:8c:af:65:
2d:3a:3f:08:08:97:a2:b3:28:4b:a2:33:02:99:ac:f1:a3:c1:
54:16:e1:29:b0:da:16:8c:53:fd:29:10:1b:b9:6a:7f:de:76:
c7:5d:29:85:59:32:74:c7:56:39:8b:c3:fb:ba:0a:50:34:77:
04:4c:b5:8d:75:cf:fd:9f:c6:e3:fa:db:32:af:b6:fb:62:28:
4a:71:ce:84:af:84:1d:89:ac:64:fd:dc:2e:37:3c:d0:33:0c:
fc:52:bb:bd:f4:6b:22:fd:04:bc:3a:05:95:f3:31:d7:31:51:
52:93:dd:09:df:e4:66:47:b7:eb:93:f9:f9:33:87:8c:82:e5:
4b:7f:0a:fb:6a:d8:c3:fd:0e:80:eb:d6:80:68:a0:41:95:bc:
cb:aa:15:ce:54:3d:e1:ee:7c:2e:f3:df:0d:2f:2f:c4:91:bc:
6d:47:97:1c:a3:34:8f:4d:f4:91:20:51:67:f0:43:4f:2b:25:
50:0f:74:c7:36:f6:01:6b:f4:1d:bf:fa:45:37:c7:88:39:8e:
51:c7:e2:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:07 2025 by rpki-client