Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FQnHF5H7YIdUeEkQV-JOjPhpkN8.roa
File: FQnHF5H7YIdUeEkQV-JOjPhpkN8.roa (raw, json)
Hash identifier: /s4C7DnpkXUL7Xrtvw66af2/RWPFxKXBNjcxUBjJEWk=
Subject key identifier: 15:09:C7:17:91:FB:60:87:54:78:49:10:57:E2:4E:8C:F8:69:90:DF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 282C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FQnHF5H7YIdUeEkQV-JOjPhpkN8.roa
Signing time: Fri 01 Sep 2023 10:05:02 +0000
ROA not before: Fri 01 Sep 2023 10:05:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.104.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10284 (0x282c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1509C71791FB60875478491057E24E8CF86990DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b1:0e:9c:0f:11:97:ed:ba:05:34:92:1d:42:
db:62:0f:dc:fc:7f:42:a8:5d:dc:4c:db:9d:a7:a1:
dd:41:c8:bb:02:52:87:b3:f2:f4:7e:62:36:c2:3d:
92:aa:af:ec:0c:89:67:f7:84:2c:cb:d0:6b:ca:34:
c6:94:a1:8a:6d:c0:ce:bb:2e:01:1e:b1:9e:09:99:
2b:12:a8:12:1a:55:8b:29:78:4a:4c:00:c3:40:99:
3e:60:21:3d:e7:dd:c0:50:99:a0:94:b0:a0:5e:df:
f4:0f:c7:dd:5f:8f:f6:9f:d7:4f:ea:e2:a9:de:93:
00:5f:d4:19:12:70:f7:97:3a:fd:50:8f:45:f7:81:
02:f9:d5:9e:cd:ba:d0:ae:3c:5b:a6:eb:5c:dd:df:
3d:43:a3:44:56:2d:67:d7:99:13:ea:f9:c8:e6:60:
7c:20:c1:37:7a:26:62:e5:87:01:c6:57:1c:4f:ba:
89:26:2d:c2:24:1b:7a:b1:28:f6:fd:47:f2:d0:d1:
17:16:f5:fd:9c:0b:a6:33:f3:dc:b7:44:69:f7:eb:
e2:cd:59:95:e1:88:60:47:a2:d7:1a:ba:a5:5d:59:
0f:ae:9b:4a:37:06:8f:9f:02:a1:09:1a:a5:61:96:
41:eb:3d:36:c0:31:f3:d6:12:1a:18:2a:af:43:f8:
0f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:09:C7:17:91:FB:60:87:54:78:49:10:57:E2:4E:8C:F8:69:90:DF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FQnHF5H7YIdUeEkQV-JOjPhpkN8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.104.0/21
Signature Algorithm: sha256WithRSAEncryption
51:12:8b:b4:0e:ff:8e:bb:1a:2f:02:c7:86:54:bf:f7:c0:0e:
e5:b3:c1:32:17:85:1e:90:01:10:0f:7e:68:fd:90:2e:de:76:
36:e3:11:f5:1d:8a:63:f4:b3:81:36:71:ee:1d:96:23:98:21:
27:97:4d:70:40:3c:da:7d:5d:a3:9f:66:5d:e4:bf:d6:64:ae:
dd:70:92:db:82:f3:0a:f0:81:6a:69:c4:5f:49:e8:4f:2b:9f:
58:30:e0:d2:8f:7d:96:06:b6:03:c1:dc:3d:ab:9a:17:01:f5:
15:11:82:ac:37:28:36:88:65:35:d9:2e:39:b1:c4:a0:7e:8b:
59:10:69:5e:ed:ff:ca:29:f5:9c:a0:af:e8:14:57:e7:74:8c:
41:81:8d:06:10:ac:53:3e:ad:f9:65:20:ec:76:93:87:75:ee:
2c:29:f0:30:1e:a9:d9:b0:b4:b1:ca:b8:89:e0:1c:8f:7e:28:
93:d4:c4:ae:57:d9:dd:06:25:73:e7:3f:63:4b:7e:a3:61:3f:
a3:d4:f6:cd:1d:6f:5b:91:19:17:6a:23:4a:58:85:be:12:57:
c0:d0:94:92:f8:ce:6e:1e:cd:16:51:d0:45:d9:ac:01:ac:85:
ff:57:e7:aa:70:05:e1:6e:1b:86:ee:1f:0e:56:ed:73:c9:7f:
b3:5b:73:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:03 2025 by rpki-client