Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DaaFT-08J7Kefqu6Z3TLyRzl0RM.roa
File: DaaFT-08J7Kefqu6Z3TLyRzl0RM.roa (raw, json)
Hash identifier: 6O2bhIc7Lb68DwtfbFeV5dqeaK9bFZ3V5OlCTAbwl40=
Subject key identifier: 0D:A6:85:4F:ED:3C:27:B2:9E:7E:AB:BA:67:74:CB:C9:1C:E5:D1:13
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28A3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DaaFT-08J7Kefqu6Z3TLyRzl0RM.roa
Signing time: Fri 01 Sep 2023 10:05:36 +0000
ROA not before: Fri 01 Sep 2023 10:05:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10403 (0x28a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0DA6854FED3C27B29E7EABBA6774CBC91CE5D113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:19:08:58:db:6d:1a:6d:a6:df:11:01:9a:9b:
14:a0:b5:ca:67:87:ed:26:af:b0:a0:1e:3a:ee:58:
30:78:fb:11:5d:7a:84:ab:8c:35:9d:c0:e5:20:d6:
07:9d:dc:3a:87:09:a3:32:53:af:ff:03:14:3a:68:
24:b1:6f:3c:62:28:06:68:81:cc:10:9b:4a:1b:ec:
7c:64:c7:8b:cd:23:0c:ca:83:f8:95:91:7f:b9:f1:
85:9f:52:e2:58:c5:31:9f:a1:c3:1d:6d:28:69:38:
bb:21:59:d4:75:77:98:d2:fa:0f:09:68:35:c0:18:
66:d0:e1:08:3d:2c:bb:24:72:48:11:f1:51:e4:35:
79:71:2d:97:e9:fb:ba:42:cd:54:d7:c2:84:68:d4:
00:8e:9f:3c:af:f0:47:42:77:a9:6f:e5:29:97:e1:
66:dc:6a:ea:eb:fd:b9:16:ef:37:bd:97:22:96:ec:
94:42:90:9a:23:f7:8e:23:5a:ff:d5:b3:da:5c:d9:
99:2f:65:19:cb:88:00:0a:c6:52:af:d1:c4:4d:e3:
8e:f2:24:73:68:2a:89:55:58:01:7f:a2:e9:fd:86:
67:62:78:09:75:4b:a6:dd:d4:df:78:73:db:34:07:
20:cf:49:ea:5d:ce:d7:36:4a:06:05:15:0b:35:f2:
48:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A6:85:4F:ED:3C:27:B2:9E:7E:AB:BA:67:74:CB:C9:1C:E5:D1:13
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DaaFT-08J7Kefqu6Z3TLyRzl0RM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.32.0/20
Signature Algorithm: sha256WithRSAEncryption
1f:98:1d:a2:29:4f:8d:85:67:e0:ed:d7:b7:01:47:d0:1e:84:
fd:f1:fc:bd:fa:5e:b8:26:af:62:3a:85:5b:29:db:9f:b0:b1:
5a:c4:b7:94:e9:24:c0:27:fa:6f:2e:8c:0e:ac:30:a0:24:10:
c1:a0:8a:24:b1:d2:e9:31:14:e8:ce:2e:16:52:45:3a:8e:67:
c3:30:cb:38:7e:65:49:86:69:8f:40:df:a5:1b:9d:66:8b:c5:
0c:71:b4:aa:e2:0d:c5:d3:76:bb:32:c2:57:f2:0b:3a:0e:5d:
2b:a7:b3:8e:b4:18:a3:06:9c:73:83:22:32:2a:7a:13:91:00:
a8:5f:0e:2f:93:3e:00:97:82:fb:04:77:2a:20:5a:29:91:29:
74:05:38:dd:2e:0b:0a:dd:cb:85:ef:1d:66:84:9b:74:7f:f0:
27:8b:c8:29:56:00:11:d9:1f:15:19:50:bc:c1:9f:4e:7f:b9:
f7:24:e9:b0:ce:32:43:45:40:46:96:b1:98:cb:99:67:0a:e7:
e1:3d:1e:01:ab:67:e9:76:ce:98:2c:46:22:86:3e:02:d0:b3:
a5:fb:4b:f5:e7:d5:c3:50:e3:c2:ef:e9:ae:0e:ee:7e:9e:cc:
6a:a3:ff:fe:7d:de:04:dd:1f:cb:43:5e:ae:b4:15:c6:51:ec:
0f:47:4a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:53 2025 by rpki-client