Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QDb8N8Omw7MeKmxwFdq1AF7q74I.roa
File: QDb8N8Omw7MeKmxwFdq1AF7q74I.roa (raw, json)
Hash identifier: 8IiDJYrFPxMT3rLgYFXkIbV8KgKS9EsZQNqGOK4gKk4=
Subject key identifier: 40:36:FC:37:C3:A6:C3:B3:1E:2A:6C:70:15:DA:B5:00:5E:EA:EF:82
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2179
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QDb8N8Omw7MeKmxwFdq1AF7q74I.roa
Signing time: Fri 25 Nov 2022 04:39:58 +0000
ROA not before: Fri 25 Nov 2022 04:39:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8569 (0x2179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4036FC37C3A6C3B31E2A6C7015DAB5005EEAEF82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:80:c6:c5:c7:0b:cd:9c:81:87:06:9d:7a:29:
a4:34:3c:1a:9d:dc:34:8c:e1:50:8c:d6:d1:d3:cb:
45:f5:2d:5a:2b:e9:55:0c:91:ae:8c:ca:8f:c4:af:
92:bd:af:3a:7a:e3:23:90:ce:cc:82:aa:39:13:60:
98:16:e6:22:5b:8f:cc:dd:52:70:34:8f:e2:9b:e6:
ec:b4:24:d3:74:a0:b5:95:78:f0:ed:01:d5:37:4d:
9f:97:9c:df:df:23:43:f6:be:8d:c9:65:47:b9:85:
1c:1f:32:5b:4a:61:21:4f:a9:a5:95:ef:50:34:1f:
0f:cd:1f:4a:7f:77:6b:ab:c3:79:2e:8e:47:e3:47:
9a:91:e7:83:d8:f5:d5:43:e1:83:bf:4d:5d:42:ad:
dd:ac:95:31:bd:81:4b:91:6d:10:70:0a:9c:57:60:
be:3e:10:ac:3c:66:52:84:f9:31:93:a6:58:80:80:
1b:a4:90:ef:55:c9:5a:58:3d:1e:76:9d:a0:b7:39:
34:c0:d6:3d:7c:f8:78:5e:9c:7a:04:8c:3a:32:83:
da:e2:b6:90:66:1e:cd:2e:08:b9:f7:81:8b:17:89:
e1:fe:2e:1d:6a:54:8e:6f:5b:ea:f8:fd:e2:a9:4e:
a6:4f:e4:6f:4f:6b:b7:b5:a8:2e:c3:38:09:9a:e0:
e5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:36:FC:37:C3:A6:C3:B3:1E:2A:6C:70:15:DA:B5:00:5E:EA:EF:82
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QDb8N8Omw7MeKmxwFdq1AF7q74I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.32.0/22
Signature Algorithm: sha256WithRSAEncryption
68:72:eb:74:db:49:98:99:d8:2a:b4:ac:e1:eb:55:c6:ac:44:
41:78:5a:1d:a8:1d:99:14:ab:cc:44:b4:6b:68:f0:55:ae:db:
9d:25:36:47:af:11:0c:16:c9:74:5c:3e:f3:b3:2e:a3:2b:0f:
5f:50:9e:b6:c5:37:a7:45:d6:97:30:ff:66:39:80:83:8f:62:
f8:8a:f9:72:93:72:df:9f:c6:e7:a9:39:e9:b8:06:d9:61:f1:
90:a9:2e:cc:23:27:e6:78:12:e7:cc:bf:72:c2:21:29:38:e9:
e3:e7:73:5e:d0:6a:67:e5:6c:66:13:19:38:52:8d:1f:b6:d7:
3c:9e:f0:f1:d1:33:a2:5f:0d:18:df:46:59:4f:54:63:1b:e1:
b1:11:2c:71:94:2b:0d:6d:cb:25:17:69:29:c0:39:68:00:38:
12:2c:e5:79:91:37:96:79:2d:0c:ee:0c:26:46:d9:a0:20:8e:
3e:70:c1:c0:e4:18:13:e2:1c:f8:3a:78:d9:48:a4:12:78:0c:
a5:61:73:cc:da:10:10:dc:ce:46:01:90:5e:34:59:ac:d4:07:
ea:48:fb:c5:9a:9f:13:4b:2c:b0:01:3a:53:99:50:38:38:b8:
76:fb:71:79:93:2b:75:5e:87:91:2d:e0:b3:67:b1:c9:12:86:
f9:26:9d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:21 2025 by rpki-client