Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q4ndsa13vkrM0yQJhMarmu3b-k8.roa
File: Q4ndsa13vkrM0yQJhMarmu3b-k8.roa (raw, json)
Hash identifier: n/fbqThkBEJmpneWGuUCm2istQ1r/emCVvZsdrrtJFY=
Subject key identifier: 43:89:DD:B1:AD:77:BE:4A:CC:D3:24:09:84:C6:AB:9A:ED:DB:FA:4F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2997
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q4ndsa13vkrM0yQJhMarmu3b-k8.roa
Signing time: Fri 01 Sep 2023 10:06:47 +0000
ROA not before: Fri 01 Sep 2023 10:06:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 118.232.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10647 (0x2997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4389DDB1AD77BE4ACCD3240984C6AB9AEDDBFA4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:38:c3:2f:76:b9:15:71:f7:be:49:6a:01:d1:
a7:0d:9b:9d:ef:19:59:df:b8:a7:fb:cd:37:b2:78:
cf:f4:7d:fa:6b:aa:31:fd:2c:75:53:27:e7:0e:80:
28:dd:4e:d2:af:a4:ee:41:7d:92:7d:93:54:e1:79:
8e:b0:76:51:8e:e4:05:59:34:24:82:3b:48:6e:07:
80:63:1b:c4:65:ce:0d:de:b5:73:e2:0d:38:15:8c:
fd:b0:8e:21:8d:4f:59:fc:88:a7:b4:e1:0b:d3:c7:
c3:b7:6e:5b:e2:07:dd:6b:a9:80:1b:ec:56:b2:ca:
38:a9:e4:b7:62:dc:5e:99:ce:72:c3:6e:5e:27:6e:
9a:95:5e:30:90:4e:f3:fa:d7:0c:55:51:18:a4:d3:
a2:3d:dc:b6:13:14:75:aa:9d:39:79:45:af:38:10:
b8:06:77:45:5d:b3:0f:fd:e2:ea:6b:f0:34:19:c4:
e2:65:8a:d5:26:93:80:2c:07:44:c7:80:a7:08:ca:
1b:52:5c:4e:77:2a:37:1b:10:72:47:4d:df:63:d8:
af:14:65:e5:4a:13:30:22:5d:fa:e7:82:a8:90:96:
82:38:f0:e1:f5:49:57:46:07:18:ed:23:e4:36:94:
82:3f:02:d8:36:23:05:ca:8d:d2:09:46:e6:c6:7d:
df:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:89:DD:B1:AD:77:BE:4A:CC:D3:24:09:84:C6:AB:9A:ED:DB:FA:4F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q4ndsa13vkrM0yQJhMarmu3b-k8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.0.0/18
Signature Algorithm: sha256WithRSAEncryption
6c:e2:03:86:5f:be:e2:18:e5:46:c1:3b:6e:68:48:4a:26:eb:
b0:42:b1:19:e9:33:90:4c:a0:d1:d8:c2:78:a2:a2:c6:ee:18:
c3:7c:ba:29:76:ca:6e:09:a2:bb:82:fe:b2:e9:36:80:e4:1a:
bb:79:21:8d:7d:1e:9c:17:11:2c:61:48:71:f4:f5:16:86:b4:
14:c2:61:af:98:c0:b1:36:41:33:98:87:89:e6:36:4e:93:9c:
38:1b:5f:c2:03:59:a0:7e:f4:aa:20:e6:33:51:e5:4b:d2:f6:
9b:89:3f:0c:7b:1e:71:80:68:65:be:79:f2:ce:68:1a:85:a2:
f9:12:d2:14:6f:6e:17:35:2f:09:5c:59:22:64:d9:f2:dc:18:
90:35:7e:f2:b5:dc:50:27:19:37:0f:ce:27:d1:2c:6a:be:d2:
63:99:c3:d5:e2:57:94:02:02:17:42:78:a6:dd:d4:5b:e2:4f:
f0:0d:3a:58:e5:cd:da:8e:e4:33:59:29:be:d2:d9:5e:98:f6:
34:d0:c2:2c:c2:b4:4e:ec:d2:ef:0a:4b:02:55:18:fc:fa:f5:
2e:f1:f9:6a:0b:b4:7e:19:ee:e5:25:1b:b5:aa:99:6c:bf:8a:
f7:21:c3:46:2f:0c:58:00:38:5b:78:35:56:19:e8:c9:e6:e9:
f8:4d:4a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:51 2025 by rpki-client