Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N6Ch0PqsQdTrG3A0Efv2BTXa7Ac.roa
File: N6Ch0PqsQdTrG3A0Efv2BTXa7Ac.roa (raw, json)
Hash identifier: iYbtQ832Kt9oKNGOPyF0sPn4AUCPJNS1OHNzF7+ASaM=
Subject key identifier: 37:A0:A1:D0:FA:AC:41:D4:EB:1B:70:34:11:FB:F6:05:35:DA:EC:07
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 10A8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N6Ch0PqsQdTrG3A0Efv2BTXa7Ac.roa
Signing time: Wed 25 Nov 2020 03:45:38 +0000
ROA not before: Wed 25 Nov 2020 03:45:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4264 (0x10a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 03:45:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=37A0A1D0FAAC41D4EB1B703411FBF60535DAEC07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:cb:8f:1c:8d:b3:b3:c1:b7:c2:39:3f:c0:33:
b3:d3:8f:fd:67:7e:1a:01:f8:e9:17:1a:40:a6:2d:
76:7a:7f:9c:d3:8a:79:64:b5:c8:eb:ab:b8:5b:12:
c8:71:05:a0:7d:0a:f0:c8:ee:00:7b:d6:1d:09:9b:
7b:67:e3:f6:cb:a5:0e:c2:33:0d:9a:25:4f:66:3e:
be:c7:1b:f8:14:a3:da:77:cf:d2:74:9d:53:ed:a7:
33:bc:b1:0f:64:e8:4d:2d:69:36:72:4c:76:18:f4:
c1:a7:64:21:a0:b1:2a:3a:cc:4f:c7:1a:7b:90:1e:
88:11:25:98:a3:e5:f7:4f:88:69:65:7a:48:1e:e9:
3a:a8:42:59:bb:ed:f8:42:28:a7:57:bb:e4:45:4b:
6b:1d:4a:8d:1f:63:0e:8f:56:65:ae:15:48:fd:e6:
e1:a6:50:35:cd:6d:3a:a8:31:76:fd:73:05:41:91:
5c:a7:0e:33:ab:e4:56:af:0a:2d:9c:6b:19:50:4c:
b4:a7:22:b0:96:80:65:54:9c:39:b5:8d:66:d8:ae:
1a:0e:87:5d:c5:39:80:83:1c:ce:7f:ee:03:c8:1a:
de:60:5e:d7:e9:8f:ff:53:52:1b:8d:6b:d1:20:7f:
61:23:b8:0a:88:71:2c:f5:35:44:8a:95:5b:89:7d:
ce:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A0:A1:D0:FA:AC:41:D4:EB:1B:70:34:11:FB:F6:05:35:DA:EC:07
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N6Ch0PqsQdTrG3A0Efv2BTXa7Ac.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:56:56:68:c2:47:ba:5c:af:22:c4:5e:35:52:3a:15:e2:b5:
07:ff:7d:fc:85:45:bf:20:44:cf:1f:bf:40:a0:9e:30:56:54:
c9:15:10:d5:8c:ad:06:05:84:8a:a5:1a:00:d7:9c:7d:90:6b:
75:3d:b5:62:09:0d:0e:5d:fd:f7:59:f7:95:fc:ad:53:bb:bd:
ca:a0:42:57:bc:d3:d1:ec:f2:48:af:1b:69:b4:b6:a9:41:3e:
24:8e:26:29:b5:0a:43:c6:05:99:0f:72:57:a1:60:0c:d0:80:
1b:f8:ec:1a:0f:b7:f0:b1:56:8c:6d:db:a3:bd:dd:d7:79:93:
3c:9d:a6:f8:3b:26:bb:2d:1e:8b:a0:e1:d2:fb:35:c8:32:2f:
5d:30:aa:05:07:b9:c9:dd:3f:aa:dd:cd:77:4d:e3:c1:9f:34:
56:5a:bf:a4:8b:e8:0d:8a:e3:73:ce:86:d1:d1:5a:8a:47:00:
76:49:89:88:0f:25:16:dd:6e:6f:68:f6:c6:32:e2:b4:0b:5b:
b6:03:cb:b2:0f:54:11:21:88:fa:36:74:c1:1e:02:30:0a:66:
73:c8:1f:c2:01:74:c5:9b:26:f1:b8:9f:39:a1:17:1c:91:de:
1c:9f:fa:9a:a7:0b:c3:ca:86:f2:b2:0d:8a:1b:2a:e8:5e:3b:
01:bd:53:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:16 2025 by rpki-client