Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-TnQE5r9-KAe7SiM2DNbh4lph4.roa
File: G-TnQE5r9-KAe7SiM2DNbh4lph4.roa (raw, json)
Hash identifier: EY14d47E5MANFAbuVYx7joLjp0ZpRVeUQjEZiDz80tU=
Subject key identifier: 1B:E4:E7:40:4E:6B:F7:E2:80:7B:B4:A2:33:60:CD:6E:1E:25:A6:1E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 290E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-TnQE5r9-KAe7SiM2DNbh4lph4.roa
Signing time: Fri 01 Sep 2023 10:06:06 +0000
ROA not before: Fri 01 Sep 2023 10:06:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10510 (0x290e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1BE4E7404E6BF7E2807BB4A23360CD6E1E25A61E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e6:fe:68:93:13:8e:11:77:c8:38:41:d2:03:
8a:54:ea:d8:41:b7:6c:c6:14:96:83:18:84:97:f3:
4e:24:d1:d7:f6:18:64:c7:e6:21:91:c1:2b:ec:5e:
ae:33:24:73:99:8c:b1:73:9d:9c:5a:e6:36:04:85:
d5:f6:06:57:7b:db:79:fc:f8:e8:bd:d5:90:32:19:
ed:d2:41:96:72:f2:7b:15:5d:40:c1:e2:59:6d:17:
3e:79:5a:61:86:9e:a8:23:32:10:7a:3f:a6:18:44:
01:cc:f3:fd:61:e5:a4:c9:05:1d:9f:cd:16:fc:a7:
a4:d2:c5:b6:ab:4a:7e:7a:0b:f5:78:46:cb:a9:03:
23:99:a4:fc:06:70:f2:f5:dd:70:05:33:4c:32:27:
13:af:07:13:c0:48:46:2d:f3:a3:d1:39:93:3c:11:
d1:6f:14:ba:5c:cd:60:e5:df:c2:d9:d3:47:ac:6d:
dc:7f:35:64:44:d2:a4:98:84:8a:0b:0c:e9:7b:1b:
06:2b:98:54:fd:61:72:e4:53:9d:bf:2a:71:60:09:
58:c5:3c:a5:1d:53:ff:40:91:87:07:63:48:83:1d:
83:02:be:0a:a7:e2:00:de:dd:13:ae:6a:15:dc:24:
b9:af:7f:87:bc:38:91:b6:d9:4c:f0:ca:3a:32:4b:
51:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E4:E7:40:4E:6B:F7:E2:80:7B:B4:A2:33:60:CD:6E:1E:25:A6:1E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-TnQE5r9-KAe7SiM2DNbh4lph4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.180.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:03:20:f5:ae:71:d2:82:44:57:96:af:0b:0f:da:35:7d:59:
da:76:fa:0d:51:c5:f5:6f:c6:fb:b8:a5:e8:e5:ba:98:73:a6:
a7:3d:d8:19:0f:81:b6:f9:39:45:3d:07:23:61:98:b1:68:82:
fe:3f:26:1b:bd:03:43:77:b6:ba:f6:81:79:1f:46:fd:29:8c:
24:7a:5f:d5:d9:a8:fb:2c:07:3d:6c:c9:f6:81:97:06:ec:0e:
fc:31:13:f8:06:68:73:18:0f:e8:1a:fb:fd:78:c5:a5:a1:79:
98:e5:f0:89:19:84:59:31:41:d0:3c:d4:b3:67:1c:cb:4c:b0:
22:a5:05:3c:e4:07:48:10:e7:99:c8:e8:5a:9e:2d:1b:b3:ef:
99:65:c2:62:e9:f7:6d:52:b7:53:b3:56:24:4d:a2:f0:22:38:
d8:24:91:e9:2a:7c:cd:89:c3:aa:db:6b:57:d6:d2:28:a7:c8:
66:13:ee:06:81:90:49:06:db:48:e3:3a:b9:87:c4:89:f1:5a:
da:d2:6b:9d:31:f4:93:2c:53:7a:59:de:88:67:91:90:ec:d5:
f1:80:a3:d5:5d:90:7b:0d:e3:d2:ef:44:c9:e2:c8:ea:0f:00:
15:ed:69:46:a1:5b:08:ec:42:ce:d4:c6:db:9b:2a:ca:3e:6a:
09:b0:7b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:34 2025 by rpki-client