Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MDxPcYBCVZxVuDbyBZKflcKNu0o.roa
File: MDxPcYBCVZxVuDbyBZKflcKNu0o.roa (raw, json)
Hash identifier: pdLmmFvlLry+J1a+KGhKfzLM3OBRw66qNX93HwcL3+Q=
Subject key identifier: 30:3C:4F:71:80:42:55:9C:55:B8:36:F2:05:92:9F:95:C2:8D:BB:4A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2249
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MDxPcYBCVZxVuDbyBZKflcKNu0o.roa
Signing time: Fri 25 Nov 2022 04:40:59 +0000
ROA not before: Fri 25 Nov 2022 04:40:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8777 (0x2249)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=303C4F718042559C55B836F205929F95C28DBB4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4b:9a:99:56:ec:5d:80:aa:ff:63:4c:4f:01:
20:3b:8e:85:9d:01:7b:9c:ed:26:05:a2:a0:af:bd:
91:85:c5:e0:de:07:22:26:d9:8d:f9:78:cc:fa:f2:
c6:4d:a3:77:3a:f3:b1:56:34:5b:b0:bf:6f:bb:18:
64:f0:19:4b:b6:29:f7:e1:ef:fd:a8:4f:e2:2f:74:
c6:d3:a4:00:63:63:9f:25:1c:61:27:f6:62:43:25:
86:f6:44:d4:75:9a:5e:ad:c1:29:42:87:bb:fc:e8:
5b:ce:0a:63:b3:33:43:61:28:20:19:7a:91:e6:f6:
6d:78:a2:22:23:c3:f9:da:19:1f:4b:31:d5:4d:98:
32:06:8e:97:8d:5c:c9:cd:c6:dc:de:94:71:97:ed:
c2:e4:97:31:24:11:3c:5f:38:e5:ca:23:d1:66:7a:
5c:c7:00:13:11:0d:8e:0b:33:32:67:dd:41:6a:77:
85:4f:7e:9f:e6:27:b6:31:4a:66:76:7a:be:33:60:
63:10:d1:99:6a:f5:12:96:19:6b:eb:09:69:7e:c9:
1f:f1:3a:4b:89:0d:48:dd:b4:80:81:12:f8:f9:51:
4c:cb:8c:05:70:9b:83:b8:4b:20:03:e8:69:ad:56:
6c:2d:8a:f4:45:df:b9:a1:55:5f:02:cc:2a:19:d0:
47:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3C:4F:71:80:42:55:9C:55:B8:36:F2:05:92:9F:95:C2:8D:BB:4A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MDxPcYBCVZxVuDbyBZKflcKNu0o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.68.0/22
Signature Algorithm: sha256WithRSAEncryption
80:32:a5:71:b1:36:c4:fa:b7:9c:66:32:a6:94:2d:d5:fa:d6:
52:d1:63:a9:6e:76:c3:83:17:95:60:2e:81:52:d6:69:b4:9e:
2e:a4:f3:af:42:40:da:e4:32:70:d2:93:ef:92:b7:8c:60:59:
b0:20:a8:e1:9c:02:ea:71:56:8c:c4:81:78:e5:36:74:d5:f5:
6c:f5:19:e9:a6:f7:d2:e1:06:3c:30:d4:cb:ac:be:7a:5e:2d:
e5:45:66:52:37:14:06:f7:f5:7a:95:60:99:c0:f9:f0:35:d0:
aa:ed:b2:57:b8:84:79:37:b2:9b:c3:54:c0:1c:ce:a7:e7:a3:
3d:d6:c8:91:58:28:38:8f:0f:fa:9c:08:47:ab:09:07:a1:18:
bf:2e:92:2a:82:c2:f2:e3:fd:72:76:c6:f1:3c:45:8b:6e:35:
c7:9e:94:f9:6e:93:02:c5:cb:c7:cf:86:3b:ec:4b:85:08:34:
cb:65:92:a9:3b:bc:5a:0c:83:35:5b:d4:e7:f3:39:a1:94:c4:
f0:1a:aa:f0:34:3f:b7:37:32:1f:11:cc:15:e7:48:05:18:a2:
d1:a0:f8:af:1c:fa:7b:4d:82:e2:57:7b:92:10:9d:57:32:fa:
f9:cd:ac:85:7b:1c:1e:4a:b5:78:99:0c:39:62:87:bb:40:70:
79:9b:43:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:18 2025 by rpki-client