Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IvtTrjKNlp55W1W0O4mnfN7kZVo.roa
File: IvtTrjKNlp55W1W0O4mnfN7kZVo.roa (raw, json)
Hash identifier: PvTaU1dY9lqWzLzeTQc9zQX16LRuZxunrKxne/1U3Yw=
Subject key identifier: 22:FB:53:AE:32:8D:96:9E:79:5B:55:B4:3B:89:A7:7C:DE:E4:65:5A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A9B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IvtTrjKNlp55W1W0O4mnfN7kZVo.roa
Signing time: Wed 29 Sep 2021 02:45:33 +0000
ROA not before: Wed 29 Sep 2021 02:45:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6811 (0x1a9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=22FB53AE328D969E795B55B43B89A77CDEE4655A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3f:4f:17:cd:9b:c0:7e:c0:b8:a2:da:27:e5:
66:db:8e:c2:48:d0:0d:18:c9:22:25:88:da:a3:c8:
82:8e:a6:2c:21:86:e6:82:8d:b6:b8:38:52:bd:b4:
e6:97:5b:e9:f0:16:3c:dd:d5:27:ab:18:7d:95:e9:
66:b1:23:a7:4b:7c:14:5e:5b:ba:bf:05:af:a1:74:
58:0a:af:b4:c9:41:ef:dc:a5:6a:ee:71:82:88:40:
c3:fd:91:67:9f:c2:06:e6:7b:c4:ad:fa:26:29:c1:
ea:18:56:c6:6e:9f:1e:b3:19:7e:53:08:ac:84:2a:
9c:ff:4d:22:b1:15:09:65:81:57:df:ff:25:03:e2:
05:24:7e:9c:5e:a2:6a:bb:2a:89:ee:37:08:6e:72:
26:6d:10:d3:be:0c:16:d9:5a:13:ac:a3:20:0d:03:
b6:1c:c6:61:b2:93:46:d5:54:f2:eb:0e:cc:a7:56:
9c:1a:96:a9:78:6a:a8:27:2e:7f:2b:f3:a2:1d:99:
da:07:6a:f7:48:53:3f:ec:ef:f3:cb:cb:6e:14:6e:
19:06:30:f5:8b:ad:2b:f7:02:ef:5b:dc:0e:df:aa:
4e:4e:5c:7d:80:a6:39:b2:a8:66:b1:63:5b:a8:a3:
a1:74:96:3a:fb:8e:a3:ed:12:63:22:c6:a9:96:e6:
a7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FB:53:AE:32:8D:96:9E:79:5B:55:B4:3B:89:A7:7C:DE:E4:65:5A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IvtTrjKNlp55W1W0O4mnfN7kZVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.132.0/22
Signature Algorithm: sha256WithRSAEncryption
92:ea:ac:ad:e4:c5:ba:3a:cb:5c:9f:70:0e:0d:0b:51:78:5e:
38:dd:e2:b2:5a:a4:f6:50:05:d4:a8:5f:60:6a:28:db:28:9c:
b9:04:6c:c9:6f:e7:bc:f1:d6:c6:a3:3a:7e:1d:ea:5e:16:7d:
cb:1a:29:78:a3:33:21:a2:de:6a:48:b7:87:31:3a:3f:cf:92:
e5:72:9f:4c:83:1b:5d:94:c5:44:6d:65:f2:a5:ed:6c:bf:10:
bc:82:5a:11:34:ac:7c:ce:18:b6:36:5e:34:42:45:66:2d:1d:
fc:39:09:d2:20:59:11:fc:dd:49:de:e7:52:b9:fa:71:e1:44:
eb:d5:b1:2e:2d:53:0c:43:c8:16:b4:93:13:85:6c:a1:08:c3:
28:57:0e:64:30:2e:34:e0:33:f3:90:72:bb:c0:fc:78:f7:5e:
58:f2:7b:f4:74:20:9a:df:66:04:fe:c0:29:af:84:0c:51:02:
57:a5:db:e8:08:b7:7a:54:45:d5:e3:e1:00:5d:2b:e7:62:06:
01:0c:49:e3:bb:e0:33:0c:6d:be:b3:6e:5a:21:88:e2:a9:5a:
24:cb:9d:32:1f:f4:10:fe:30:3a:db:0f:66:bf:79:66:04:cf:
8d:2f:a6:eb:14:5d:14:ce:9e:cb:c1:5a:03:1d:70:2a:59:48:
89:6b:3a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:22 2025 by rpki-client