Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KtwcJaJwT9B-K2bYXMGYPhl7X2E.roa
File: KtwcJaJwT9B-K2bYXMGYPhl7X2E.roa (raw, json)
Hash identifier: /4tQbGjW1Rks/9w/qy51DcSE6uoMhV1M4kbj3m9D1pI=
Subject key identifier: 2A:DC:1C:25:A2:70:4F:D0:7E:2B:66:D8:5C:C1:98:3E:19:7B:5F:61
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29B3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KtwcJaJwT9B-K2bYXMGYPhl7X2E.roa
Signing time: Fri 01 Sep 2023 10:06:57 +0000
ROA not before: Fri 01 Sep 2023 10:06:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 118.232.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10675 (0x29b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2ADC1C25A2704FD07E2B66D85CC1983E197B5F61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:48:39:dc:0e:60:1d:df:46:da:37:c7:3b:8d:
78:34:98:de:06:ad:7b:93:69:79:30:31:b6:1f:b0:
ad:45:38:0a:f1:c8:6b:f0:b6:7d:fe:12:5a:75:9f:
c6:db:f1:f1:78:4a:4a:cf:43:b8:bc:67:4a:c8:eb:
61:b2:16:67:af:34:fd:27:e5:49:9c:94:b9:dc:03:
d5:4c:b2:83:91:36:7e:4e:b9:21:e6:7b:11:27:df:
e7:d0:75:79:f7:3e:3f:69:ff:54:b0:88:3e:30:42:
71:10:89:7f:ac:ba:f4:0f:08:f8:c3:93:af:b9:06:
e3:14:e1:7d:9e:21:17:58:28:b4:ab:13:c3:f9:c7:
9e:2c:b4:6f:e6:9e:84:c1:b8:50:ae:02:6a:e8:3e:
ae:2c:23:7d:25:c9:7f:96:2d:4b:45:af:04:b6:10:
22:31:f2:90:d2:44:ff:06:20:64:0d:a9:a1:91:cf:
ad:c7:74:6a:8b:6a:c1:3b:c6:f0:b1:05:50:e1:0d:
18:eb:18:da:c5:8a:f0:c4:7f:f5:73:2e:31:c2:1b:
67:5c:b5:30:cb:7e:d0:35:39:71:cb:21:ca:12:ee:
9f:94:98:af:d7:38:b6:b5:c3:7b:7d:fe:63:a3:86:
4e:ae:3a:f1:0e:98:3f:94:78:0b:9e:41:71:c6:75:
b4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DC:1C:25:A2:70:4F:D0:7E:2B:66:D8:5C:C1:98:3E:19:7B:5F:61
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KtwcJaJwT9B-K2bYXMGYPhl7X2E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.220.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:95:84:51:9d:eb:9a:0b:9b:02:13:73:1c:a1:39:40:65:b9:
c1:e9:82:03:61:b2:1f:d6:d6:16:c8:d5:33:f3:3d:f9:e4:c2:
bd:e6:67:0f:03:97:13:4a:83:a1:c9:1f:17:9a:18:8b:19:db:
ab:c4:ae:2c:52:1b:7f:1e:7f:ad:5a:5a:27:19:b2:ac:63:7c:
11:35:b6:62:b4:58:19:3e:f2:01:a8:b4:6f:df:61:12:40:87:
29:99:2a:66:ef:e6:ad:5e:19:4c:dd:1b:5d:11:bc:11:15:ef:
a6:16:be:e9:38:bc:48:90:1d:8d:8a:ab:1f:1d:db:f5:f0:20:
f4:95:35:c0:c9:41:ac:6e:56:bf:af:86:bb:a6:b4:da:41:55:
6a:38:4b:3f:e8:0a:fb:66:d8:b8:19:a3:76:e6:01:cc:15:67:
03:2b:b3:f9:06:f9:07:30:46:8a:3b:6b:89:45:0a:ca:f1:fd:
af:38:b0:c1:16:37:a3:03:73:f7:cb:6e:2e:ac:75:12:b8:7e:
89:3b:23:a2:48:d0:3c:30:de:89:72:46:02:44:8e:cc:9c:bf:
ae:4b:b0:73:17:ba:9f:5c:88:6c:f9:6e:1b:cb:21:b0:74:ae:
dc:9d:bb:9a:a1:e2:fb:65:f2:0a:99:1a:ff:bb:20:d5:fa:5b:
04:21:26:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:11 2025 by rpki-client