Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K-kXp4djHL2tbkEHiodcY4uTm8U.roa
File: K-kXp4djHL2tbkEHiodcY4uTm8U.roa (raw, json)
Hash identifier: 3LV5jPNBzikjrYLa5cSfOPlA6ukkcFUvua0LWf233tA=
Subject key identifier: 2B:E9:17:A7:87:63:1C:BD:AD:6E:41:07:8A:87:5C:63:8B:93:9B:C5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29F9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K-kXp4djHL2tbkEHiodcY4uTm8U.roa
Signing time: Fri 01 Sep 2023 10:07:20 +0000
ROA not before: Fri 01 Sep 2023 10:07:20 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.192.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10745 (0x29f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:20 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2BE917A787631CBDAD6E41078A875C638B939BC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:ca:08:c8:4c:43:ba:a7:a8:b2:83:92:40:
2b:14:85:9f:f9:d5:ce:d3:46:47:a4:48:09:d1:aa:
e1:61:d2:fd:f7:e5:2b:19:7d:e8:88:37:a2:9d:64:
0f:c5:d8:c3:16:40:76:11:17:ef:ef:b3:a2:08:94:
a8:5b:1f:0f:90:c9:ed:b3:16:cb:78:a5:46:bd:15:
38:e0:21:0e:ed:70:9b:fc:61:f5:df:1f:9c:7f:50:
15:ab:2e:4e:a9:95:8a:ad:c4:54:4c:aa:3d:93:4c:
70:ab:8a:a8:c4:33:fc:8d:a0:f4:42:c2:a4:32:4a:
57:e9:13:e9:91:1e:cb:d6:50:4a:90:0d:a0:cc:a8:
bd:76:52:40:a6:38:0a:cf:87:65:4b:35:83:99:de:
a5:7f:f3:5e:16:81:0a:ee:b3:e3:a9:62:aa:1e:c0:
73:60:46:cf:65:f7:42:c7:ef:96:18:e3:f9:0b:17:
fb:10:59:a2:7b:6f:1f:d9:ad:d8:e9:7f:e4:b3:33:
5d:9a:71:13:25:a1:a4:1f:d4:2f:fa:a2:bf:1c:ac:
16:01:8d:0a:6d:88:2a:0a:2a:e9:da:e1:bd:ba:ff:
6d:e1:1b:b6:e5:c9:d8:c2:97:30:d1:0d:e7:fd:fd:
25:18:53:db:21:04:be:49:67:54:90:a2:49:9f:35:
13:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E9:17:A7:87:63:1C:BD:AD:6E:41:07:8A:87:5C:63:8B:93:9B:C5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K-kXp4djHL2tbkEHiodcY4uTm8U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.228.0/22
Signature Algorithm: sha256WithRSAEncryption
32:d6:a9:1d:b0:07:d8:c3:b6:a1:c5:77:d5:5d:c7:05:08:b9:
2a:f6:d4:b8:02:d8:4a:89:00:be:71:a7:49:98:95:e3:c5:0f:
15:47:48:98:3d:8c:24:fd:1d:92:8c:ee:e6:bf:2f:77:31:ba:
a8:d3:e0:d2:35:67:08:79:67:c2:38:23:05:a4:50:bf:75:85:
b0:8b:17:d1:49:b3:d2:28:50:db:23:10:3e:31:b3:49:07:7e:
29:d7:92:28:91:25:01:a1:9a:b6:0b:cf:b0:a2:6a:a0:c8:bd:
cd:75:30:0a:02:f6:28:8e:ea:6d:ff:13:c4:84:af:80:ef:91:
91:5f:c9:b5:8b:90:c6:1c:ae:5d:0b:10:f6:a8:bf:2b:91:0f:
d0:27:42:a5:2c:61:de:e2:4a:9c:fb:e5:78:40:47:07:9b:3f:
3e:7d:7f:6d:cb:92:00:36:6b:75:fc:a7:23:8d:aa:45:f0:de:
b2:75:9c:22:bb:88:dd:11:74:b9:e3:1c:f2:91:61:72:67:9c:
9e:82:80:27:d8:cd:1f:27:4f:2d:f4:e6:34:61:77:79:40:de:
65:02:37:25:22:0d:63:3a:aa:46:94:e2:0c:0e:1f:27:cd:ce:
ca:c5:6d:bc:be:7f:1f:63:be:bc:70:9a:1c:14:34:32:7d:b7:
79:f6:f9:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:29 2025 by rpki-client