Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Op-kxXBLbw7bDcuD6GDk9ubp3gI.roa
File: Op-kxXBLbw7bDcuD6GDk9ubp3gI.roa (raw, json)
Hash identifier: V44bHqCWtnjtIHvcOukEbF7SD0uezICizqYaK6cnjzE=
Subject key identifier: 3A:9F:A4:C5:70:4B:6F:0E:DB:0D:CB:83:E8:60:E4:F6:E6:E9:DE:02
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A56
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Op-kxXBLbw7bDcuD6GDk9ubp3gI.roa
Signing time: Fri 01 Sep 2023 10:07:47 +0000
ROA not before: Fri 01 Sep 2023 10:07:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10838 (0x2a56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3A9FA4C5704B6F0EDB0DCB83E860E4F6E6E9DE02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:49:40:9c:f3:1c:f3:44:e8:dd:be:3a:46:5d:
9e:75:95:7d:94:82:bb:f0:8b:bb:27:1e:32:bf:8d:
0c:6e:5b:91:f7:36:89:95:73:77:0f:b4:47:36:51:
e7:29:07:7a:32:21:16:30:b2:8e:eb:8d:78:ef:99:
dc:fa:28:2e:6c:07:f7:dc:c3:28:9c:b7:d5:de:c2:
69:72:87:00:d1:bd:45:67:91:78:3f:65:20:46:93:
5c:e0:fa:b1:11:ef:f7:98:c9:aa:5d:90:c8:81:a1:
5b:f1:21:17:30:a9:68:f5:17:bd:c1:7c:c0:a3:91:
23:e1:53:af:ea:a5:50:0e:50:99:1d:84:d1:1f:73:
52:97:a5:7d:4e:a7:f9:1e:23:11:31:6f:2b:b8:31:
9b:d1:cc:d7:91:c6:f7:72:26:95:c0:9d:bf:4c:20:
c4:09:21:97:f2:b5:29:d6:97:ed:64:f5:d3:c8:fd:
f7:85:b2:04:8a:d2:42:43:33:0d:af:e1:cd:75:34:
08:2a:fe:ec:1c:45:02:19:c2:a0:42:cb:d5:81:d9:
db:90:90:94:0c:b6:33:d7:db:b9:ca:6a:e2:32:65:
1e:2e:cf:e7:82:4c:16:f7:ad:7e:43:bf:4c:e6:e8:
06:7d:cf:f2:51:53:22:d8:7f:47:aa:63:0b:4e:d2:
df:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:9F:A4:C5:70:4B:6F:0E:DB:0D:CB:83:E8:60:E4:F6:E6:E9:DE:02
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Op-kxXBLbw7bDcuD6GDk9ubp3gI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.100.0/22
Signature Algorithm: sha256WithRSAEncryption
48:9a:aa:2e:7b:11:0e:2c:ac:ee:88:18:54:2c:fc:c8:0d:cf:
9e:3a:01:37:09:d0:62:f5:1c:98:68:6f:54:99:71:15:1c:e5:
1b:6c:9f:2c:fd:55:eb:0e:ec:38:69:53:b9:4f:71:ea:eb:a9:
00:16:82:14:54:41:b0:52:34:71:3e:d4:d0:32:73:d7:e9:c2:
8d:5d:97:df:38:65:3e:9e:aa:05:15:4a:aa:8e:a1:20:30:49:
77:cc:04:ea:88:a5:58:27:4b:17:c4:fd:93:c5:4a:5c:68:4e:
9f:80:20:b7:b7:67:b3:7a:a9:30:13:a8:31:88:cc:d9:50:a8:
34:ce:fc:80:0a:02:39:1d:d2:bb:e4:4f:ee:86:1c:f4:3c:8c:
c8:45:ff:a9:9a:15:31:9b:c9:06:95:00:8f:1a:eb:6f:75:be:
d3:64:7c:ca:5d:5a:77:94:0e:80:cb:cc:8a:cf:e0:d9:7b:7d:
70:f9:b0:8d:f6:1f:74:28:cf:02:31:22:f4:03:2e:d5:8c:29:
ef:d5:49:86:f4:a2:52:67:c0:98:fb:a0:23:65:c0:11:6b:1f:
ac:27:fb:84:01:c7:73:cd:6e:1c:1c:c5:1e:be:23:c7:66:d6:
f3:a6:ac:dc:b8:61:3f:a2:b4:f0:0c:c9:f4:ce:dd:ca:7a:56:
fd:37:18:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:03 2025 by rpki-client