Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QE1yzLLjoE9nu5Xie82kZLDED2w.roa
File: QE1yzLLjoE9nu5Xie82kZLDED2w.roa (raw, json)
Hash identifier: J7OVdUcROCt8w3y8ja7epDCDf70Del1y+ylXvz660Vg=
Subject key identifier: 40:4D:72:CC:B2:E3:A0:4F:67:BB:95:E2:7B:CD:A4:64:B0:C4:0F:6C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0F03
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QE1yzLLjoE9nu5Xie82kZLDED2w.roa
Signing time: Tue 29 Sep 2020 09:56:24 +0000
ROA not before: Tue 29 Sep 2020 09:56:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3843 (0xf03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=404D72CCB2E3A04F67BB95E27BCDA464B0C40F6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a6:60:12:42:7b:a5:bc:ee:bf:8f:95:34:b1:
d9:ed:1b:9f:6f:84:4f:9c:88:b8:a4:1a:72:56:ed:
44:0d:9f:6a:45:f7:2f:62:bc:e8:ab:f9:92:55:9a:
16:c1:cb:18:19:7a:97:91:f4:00:67:03:a0:17:b1:
ee:c5:c9:a4:3e:c3:ec:a6:f9:f0:f7:4b:a5:67:81:
42:3f:49:71:e3:5a:0e:71:5a:be:15:bc:b9:6e:1f:
fb:18:4f:c9:81:34:f8:ab:ca:c8:f1:bd:4a:ce:36:
85:4f:88:00:81:ec:25:98:dd:fb:7e:a2:33:b7:2d:
44:10:2b:4d:dc:2a:51:25:46:c2:4a:5e:db:17:72:
42:93:94:ab:20:6a:bb:46:2d:03:52:02:c1:4d:0a:
1d:02:88:f9:f2:52:1f:38:14:b7:2d:2c:cf:55:6c:
41:f6:ad:2a:9a:ae:e6:bf:8a:9f:34:7c:38:49:20:
25:14:fd:3d:92:8b:ed:8e:f9:80:d3:6c:96:fc:f6:
4b:a7:f0:e4:08:41:d7:94:38:79:02:fc:c3:d7:1f:
98:9c:9f:78:7a:79:c9:bc:58:a5:72:90:c4:e1:70:
af:e9:d5:d9:5a:60:d8:25:2c:91:db:a6:f4:d3:f9:
d4:9b:e9:08:bd:32:1a:9f:98:e8:15:bb:c6:3e:37:
ca:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4D:72:CC:B2:E3:A0:4F:67:BB:95:E2:7B:CD:A4:64:B0:C4:0F:6C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QE1yzLLjoE9nu5Xie82kZLDED2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.64.0/21
Signature Algorithm: sha256WithRSAEncryption
52:85:28:2c:fd:b0:63:0c:9e:2e:a5:c9:41:c8:10:78:f7:07:
9c:29:94:af:14:9e:43:6b:a5:d7:16:49:5a:fc:40:df:f9:f0:
27:89:a9:85:8b:4d:5b:6a:1b:f4:b3:c5:60:5a:ed:20:71:02:
a9:0f:58:61:58:a3:72:e2:89:57:4a:db:ae:71:58:87:8e:f1:
a7:27:cb:12:d0:16:3e:ed:56:61:26:48:11:30:fa:41:6f:e7:
f2:b2:f3:de:d5:85:e4:05:8e:77:71:91:c1:ea:29:15:20:1e:
bb:48:d7:59:39:37:24:96:f3:34:55:af:80:f5:3f:ed:bf:8b:
d9:08:cc:b0:cf:1a:78:67:fd:2d:af:a6:ed:2d:9c:1a:ec:bb:
c1:c6:ea:9a:ad:1a:22:0a:eb:14:7b:0e:84:ad:3d:95:74:76:
da:e5:16:4a:ca:82:d4:8f:10:6b:90:6d:3c:93:6d:65:b3:95:
52:14:6e:29:16:9b:2e:da:fc:15:c2:cb:b4:69:d4:e9:5a:e4:
d9:1a:79:40:0b:94:a4:65:c0:39:ea:90:1f:1f:82:9e:c9:07:
2b:74:be:49:e6:fc:60:d1:f4:bd:55:98:76:7c:e6:cb:3f:6e:
51:b3:4e:65:9b:cd:45:1f:1c:c4:53:50:a8:84:3a:03:66:b1:
9b:b1:04:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:19 2025 by rpki-client