Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HSjhplasSFyJHYQPUIVbT8CmgK0.roa
File: HSjhplasSFyJHYQPUIVbT8CmgK0.roa (raw, json)
Hash identifier: XH/wrR2M6TBzCZWw9kdSRRTY+xYtBB0be4Ebg10L+b8=
Subject key identifier: 1D:28:E1:A6:56:AC:48:5C:89:1D:84:0F:50:85:5B:4F:C0:A6:80:AD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21BC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HSjhplasSFyJHYQPUIVbT8CmgK0.roa
Signing time: Fri 25 Nov 2022 04:40:21 +0000
ROA not before: Fri 25 Nov 2022 04:40:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8636 (0x21bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D28E1A656AC485C891D840F50855B4FC0A680AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:14:34:5d:29:f1:80:e2:5f:a6:8f:80:ca:c4:
f9:a4:0f:7f:bb:9b:6f:0e:7d:e6:2d:36:d2:9e:e5:
db:c4:88:95:b6:64:48:4b:0a:bb:a0:5c:2e:71:1c:
a3:53:1b:ec:c1:bc:cd:3e:8a:ed:e0:36:48:aa:e1:
94:5c:76:7c:69:0e:b9:44:fb:c9:7a:62:bb:00:02:
e8:14:ce:5f:15:4a:20:be:49:17:ee:e2:2a:b7:aa:
ff:98:cb:e5:88:db:b1:d8:cd:73:3a:86:63:86:0e:
69:52:7f:0f:8f:23:e9:eb:e6:96:76:ef:1c:e3:25:
1e:f5:a4:c8:fe:f0:86:3d:ee:8f:24:6a:17:7c:99:
d6:50:56:5a:6c:78:68:42:eb:f0:eb:6e:8f:8f:86:
54:02:9c:ca:0c:98:59:77:da:13:cf:e8:10:cf:1d:
fd:2c:65:04:ec:ad:48:61:1d:77:4e:63:fc:95:93:
75:62:d7:2b:31:11:ab:1c:6f:56:f2:60:43:37:56:
77:40:18:9d:7d:b7:9b:5a:fd:05:31:35:9f:11:84:
cd:01:14:cd:62:a6:5c:2b:c8:b0:9b:75:be:f5:f6:
57:63:fd:07:22:a9:e5:b8:c2:4d:41:48:36:34:af:
db:d4:85:7a:ab:1a:29:32:29:99:1d:b1:02:fe:76:
17:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:28:E1:A6:56:AC:48:5C:89:1D:84:0F:50:85:5B:4F:C0:A6:80:AD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HSjhplasSFyJHYQPUIVbT8CmgK0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.151.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e9:52:d8:80:32:e2:9a:4b:80:cb:c9:2e:02:21:f6:23:cc:
14:a4:bb:4b:ac:8e:f1:1b:4d:ec:0f:24:ac:a7:2a:d0:31:fe:
74:47:92:97:b1:64:5c:48:62:05:ab:b9:e6:02:32:0c:1b:57:
43:55:36:d0:7e:93:03:83:96:0b:a4:a7:06:d2:ac:fd:51:7c:
dc:de:5a:14:a9:4a:05:b5:60:53:39:47:24:87:22:d8:bc:dc:
6e:a7:21:4a:d0:2b:15:46:a1:64:12:47:38:23:8b:c1:98:e3:
de:48:e5:86:15:eb:48:b4:5c:24:62:5e:78:05:d6:34:75:2d:
6e:06:bd:9e:5c:07:98:47:9a:ee:43:ac:2f:2c:2d:6c:af:09:
ed:1d:38:30:f5:0b:58:52:0b:4b:68:db:24:72:94:08:ff:46:
10:4b:9c:66:21:85:2b:99:9c:19:36:14:88:0d:25:83:57:0a:
fa:2e:a4:a4:d8:6e:24:aa:32:1b:a2:3e:28:2e:4d:b6:34:66:
a1:45:ed:32:ad:2b:08:f1:7f:25:9f:84:5f:5b:a8:0e:34:79:
46:e6:cb:13:95:ca:6d:ee:a8:b3:e8:c0:57:9e:fb:52:4a:74:
20:4f:a1:28:6b:f3:5c:2e:07:ca:24:94:3d:3a:53:b5:43:b2:
70:3b:d7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:52 2025 by rpki-client