Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JIOe-rjIKcBWnBOvQASsS4TEBcg.roa
File: JIOe-rjIKcBWnBOvQASsS4TEBcg.roa (raw, json)
Hash identifier: iF5j6MwRwSsTL3hlcasLszPVhaOO8+/j6+DR/Wgnjuo=
Subject key identifier: 24:83:9E:FA:B8:C8:29:C0:56:9C:13:AF:40:04:AC:4B:84:C4:05:C8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AD7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JIOe-rjIKcBWnBOvQASsS4TEBcg.roa
Signing time: Fri 01 Sep 2023 10:08:20 +0000
ROA not before: Fri 01 Sep 2023 10:08:20 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10967 (0x2ad7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:20 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=24839EFAB8C829C0569C13AF4004AC4B84C405C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1f:81:a3:5c:5d:28:8e:cd:76:6a:51:e9:7f:
0e:73:71:8d:4c:eb:07:f4:40:54:9b:b6:44:7c:e1:
58:29:43:d8:67:1f:39:c0:2a:8d:86:a5:58:a7:b4:
de:51:e8:2a:0e:64:15:a3:f1:a4:40:ea:90:d7:fa:
28:80:9d:b6:80:11:6f:77:d4:76:03:12:ed:f0:81:
e9:69:67:25:10:cf:61:5c:9c:62:5d:41:e5:e4:96:
19:5a:b7:2b:1d:58:cc:c2:0b:28:8d:02:92:2c:65:
3f:5f:7a:7c:ef:70:e9:36:f4:54:31:c9:b7:22:0a:
b3:24:60:82:83:e3:af:7f:2a:3b:96:d1:66:3a:4f:
be:c4:9f:1c:90:82:19:59:53:f1:f9:13:62:9f:61:
8b:63:f5:2d:ed:3d:30:ab:8f:0b:f2:c7:0c:24:8e:
ba:2a:97:f1:a2:96:3e:c8:ef:c1:3b:98:a2:93:8c:
b2:f3:a9:26:b5:33:e9:b7:9c:ef:a8:5a:83:f9:6a:
c1:21:82:59:7f:f9:0f:7e:5d:04:f9:8d:c0:8f:9e:
6a:43:b0:ce:29:81:69:b1:b0:f4:dd:81:fc:60:d1:
60:de:1c:c6:ce:12:14:11:f1:69:a2:42:ce:05:47:
82:04:89:70:72:72:ea:fa:2e:f1:80:9f:a4:2b:d3:
25:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:83:9E:FA:B8:C8:29:C0:56:9C:13:AF:40:04:AC:4B:84:C4:05:C8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JIOe-rjIKcBWnBOvQASsS4TEBcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.46.0/24
Signature Algorithm: sha256WithRSAEncryption
25:23:73:ec:90:5d:8e:42:e7:73:d5:cd:0d:60:5c:7b:9f:3d:
a0:0e:c3:74:5c:86:47:19:cd:9a:cb:9d:f6:d8:22:14:08:c6:
00:6e:45:44:4e:ea:8f:6d:90:88:cb:1b:9b:7f:b2:b4:32:8e:
23:7b:df:bf:5a:c1:8e:50:e2:6a:7f:bd:2c:73:5c:07:ae:61:
21:3e:29:32:06:bb:62:bf:c3:cc:81:a9:e5:ce:c2:fe:8c:51:
10:95:7d:2c:bc:33:d8:5a:df:37:f7:44:c9:e7:3e:5b:d3:45:
97:74:84:be:de:b7:69:ef:3c:57:38:6d:10:32:f2:67:85:a9:
2a:45:f0:e2:2a:de:33:b6:14:96:e7:b6:f9:7d:15:0d:e2:f9:
ef:85:45:47:b3:86:29:ad:c7:be:c7:ab:93:bf:5c:58:cb:f9:
a9:5e:63:22:09:e4:91:48:23:4c:a1:7f:38:a1:e5:36:70:bb:
9d:b4:fd:c2:fc:4a:05:40:95:e4:ef:b0:0d:0f:95:9a:bf:e6:
18:1d:de:41:a5:80:f9:da:03:35:8e:02:f1:5f:70:a0:eb:d8:
2c:a1:84:09:32:cf:d6:76:a5:2e:fc:89:df:aa:83:ab:a8:90:
e6:4b:12:94:20:f6:6d:f0:dd:a3:9a:b1:33:3c:a7:e4:e1:7d:
4f:cb:e4:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:08 2025 by rpki-client