Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HF6Rp5g0rPMLqEsIu3tQxM-2Jbw.roa
File: HF6Rp5g0rPMLqEsIu3tQxM-2Jbw.roa (raw, json)
Hash identifier: Wo/6rq6ssu5Et6SGzh1NzKt823NgFLKX8PZaRFvCkQY=
Subject key identifier: 1C:5E:91:A7:98:34:AC:F3:0B:A8:4B:08:BB:7B:50:C4:CF:B6:25:BC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2320
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HF6Rp5g0rPMLqEsIu3tQxM-2Jbw.roa
Signing time: Fri 25 Nov 2022 04:42:04 +0000
ROA not before: Fri 25 Nov 2022 04:42:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.224.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8992 (0x2320)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1C5E91A79834ACF30BA84B08BB7B50C4CFB625BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5d:ae:78:24:6d:8d:98:66:2d:23:53:d8:b2:
93:ac:5a:39:0b:c0:66:32:3a:88:3b:43:65:77:9e:
dc:5c:f6:d4:73:66:86:13:13:a9:e8:77:cc:fa:9d:
74:0c:09:c8:84:54:d5:83:90:e6:46:fa:74:ba:45:
f8:e3:8d:b0:64:5e:95:f9:82:25:b9:33:87:d9:4f:
a1:f9:f6:ed:2f:39:03:73:05:fb:e8:96:47:fe:2e:
c1:52:9f:6d:e1:60:d6:d8:3f:5f:bb:8e:fb:f6:dc:
2b:12:99:d9:e2:49:b4:c7:6c:a8:b7:91:a1:8c:6b:
ab:64:8c:4b:12:ea:24:49:bd:46:27:1c:9b:e5:4a:
34:15:4b:e1:fd:68:b9:a7:1c:c7:af:4b:83:62:a8:
67:d1:15:5d:40:34:cf:9a:53:7f:b9:8a:e3:5a:01:
fa:31:fe:b0:e5:d6:9f:cf:d1:df:6f:91:72:fc:ae:
e3:98:21:75:7a:2b:43:c9:03:52:e2:aa:c5:cf:00:
ff:28:01:df:33:19:59:5e:ed:94:cc:c7:1b:45:4f:
7a:51:e0:cf:4a:8c:c6:58:ed:8a:c2:6c:82:6a:7e:
a6:c5:ee:8e:29:de:7e:18:28:0f:01:b2:48:23:87:
4c:02:31:91:8d:fd:c6:90:13:45:30:2a:bd:7c:20:
db:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:5E:91:A7:98:34:AC:F3:0B:A8:4B:08:BB:7B:50:C4:CF:B6:25:BC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HF6Rp5g0rPMLqEsIu3tQxM-2Jbw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.224.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:3b:0e:6e:59:60:e6:9c:91:64:06:53:02:52:6a:7d:4a:c1:
9c:04:c3:1b:8a:b2:1c:5a:84:14:a2:4c:ba:dc:3a:97:32:13:
f7:77:95:d8:32:68:d8:2d:f0:59:4f:73:67:e8:aa:be:d5:f0:
76:e4:62:cb:4b:7e:5f:5e:01:17:26:c5:ce:35:1f:34:bb:6d:
bf:cd:59:b8:67:c6:f3:12:74:d2:cf:f7:77:5a:cd:e8:57:15:
b2:8e:16:9c:67:64:c9:c0:51:ba:38:76:c0:72:38:bc:b7:7b:
87:bf:7e:14:e0:c2:e8:f4:ed:d4:cb:a2:a7:ce:36:13:b5:38:
a9:58:52:0f:1a:42:a7:4f:33:35:ab:b3:cb:c3:52:d1:0e:ee:
79:6a:44:f3:e4:00:c4:bf:30:be:2f:ab:39:99:6b:b3:09:19:
24:e5:b5:0d:e2:90:c9:87:a1:15:26:29:70:06:b1:e7:50:c8:
37:65:5a:7b:4d:93:3d:b3:a4:5c:64:48:4e:16:28:a0:8b:e0:
39:c3:a1:c3:83:8d:bb:16:e3:f2:28:29:ea:39:9f:84:03:68:
5c:0b:90:2d:3e:60:25:f3:70:0d:a5:3b:38:54:45:5a:36:c1:
dc:4f:6c:0f:a6:ae:13:31:7e:ab:15:76:37:45:87:ef:0d:8b:
ed:76:9c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:38 2025 by rpki-client