Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DYpR14vkCNm19NVludabDNHKKd4.roa
File: DYpR14vkCNm19NVludabDNHKKd4.roa (raw, json)
Hash identifier: nn+QoA2Vw5n6Fu+MbEz0QL85Pld2vV9fU+WlVsm/eMc=
Subject key identifier: 0D:8A:51:D7:8B:E4:08:D9:B5:F4:D5:65:B9:D6:9B:0C:D1:CA:29:DE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2B1E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DYpR14vkCNm19NVludabDNHKKd4.roa
Signing time: Fri 01 Sep 2023 10:09:52 +0000
ROA not before: Fri 01 Sep 2023 10:09:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11038 (0x2b1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:09:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0D8A51D78BE408D9B5F4D565B9D69B0CD1CA29DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e8:f1:22:54:2d:db:a5:24:5b:2a:6a:e2:94:
10:69:26:62:18:7f:c6:da:e1:6a:7f:de:cc:66:85:
e1:ac:a4:4c:18:67:7b:46:af:3d:1b:76:60:f7:1f:
08:e2:30:0d:43:b9:1d:bc:aa:ee:0e:b8:b5:43:08:
38:f6:7b:d0:19:06:73:3a:ab:0a:81:be:d9:08:57:
5e:f3:84:48:67:e2:5e:85:e2:3b:44:d0:b7:57:4b:
08:9f:58:c9:47:32:da:d2:ff:48:e9:b4:26:80:e0:
5f:2c:cb:42:e9:c3:1c:ce:8d:1c:92:65:bf:fa:02:
57:02:50:36:f9:4d:05:d7:91:61:49:2d:56:46:ad:
45:57:0b:c8:f2:b8:8f:02:f4:00:2c:87:9a:31:e2:
a8:04:9d:f9:8e:9a:70:bb:29:12:4a:08:3c:f4:65:
74:16:9e:28:fa:24:1b:fb:65:26:f8:08:f1:83:51:
a8:cf:e1:ed:b9:98:8f:d9:bf:3f:95:4b:62:67:68:
92:2e:73:c3:d1:c7:fc:5c:62:a9:99:cd:f2:1f:61:
82:2a:27:63:26:97:fe:37:42:26:bd:83:e1:a8:6b:
78:7e:54:a7:28:90:d9:d1:95:4d:5a:df:8a:e5:f1:
02:5a:32:8d:6b:a3:f3:9a:ad:5b:d5:e6:d1:14:d3:
f0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8A:51:D7:8B:E4:08:D9:B5:F4:D5:65:B9:D6:9B:0C:D1:CA:29:DE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DYpR14vkCNm19NVludabDNHKKd4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.76.0/22
Signature Algorithm: sha256WithRSAEncryption
51:37:76:cc:ae:06:8d:db:58:e5:5a:a9:ac:b6:37:22:df:3d:
8d:d4:37:a3:5d:5f:31:a9:1d:a9:71:6a:25:a1:f6:0d:ad:f5:
21:18:bf:a2:95:50:8e:41:d6:e3:77:26:bb:04:ed:33:18:a9:
b0:28:4f:9e:cc:72:ee:f5:f2:51:13:ee:3e:95:fb:4a:c7:23:
63:c4:8e:8b:86:32:7c:fb:f1:2c:83:22:e4:05:fb:3d:79:4c:
4a:f6:d6:2b:d5:bf:5d:70:70:2a:65:fc:37:31:29:3c:fa:96:
ae:ed:5a:dd:4c:e1:2d:40:43:70:89:8f:62:1f:ba:f1:99:1a:
69:b9:a1:44:bf:7d:5c:7d:5e:b8:09:ac:98:d7:7c:b0:a3:4d:
a0:ad:0a:a6:c6:68:34:53:af:f4:05:c9:bf:f6:f7:2f:24:b8:
20:0b:07:db:c8:c0:e5:43:cc:3d:11:f9:45:eb:1c:bf:ab:54:
27:1d:2f:dd:00:60:ac:76:d5:c1:f5:e6:8d:35:74:4e:fa:c2:
e5:fb:b7:7d:41:79:d1:a1:95:3b:63:00:87:60:95:6c:9b:b3:
9c:a5:50:df:2d:84:2c:be:60:1e:32:23:73:d1:5f:5e:e4:c2:
a8:07:34:74:1a:e4:36:ed:4a:f3:8e:07:df:dc:05:72:0b:b1:
42:8b:bb:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:22 2025 by rpki-client