Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QUxyUiDCj5SvKyDtvwTeDdtshT4.roa
File: QUxyUiDCj5SvKyDtvwTeDdtshT4.roa (raw, json)
Hash identifier: 5PigiVTXzfbyaSjE3l7yzzfVSF9yt6WW6SpTUJjUuE0=
Subject key identifier: 41:4C:72:52:20:C2:8F:94:AF:2B:20:ED:BF:04:DE:0D:DB:6C:85:3E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20D0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QUxyUiDCj5SvKyDtvwTeDdtshT4.roa
Signing time: Fri 25 Nov 2022 04:39:08 +0000
ROA not before: Fri 25 Nov 2022 04:39:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8400 (0x20d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=414C725220C28F94AF2B20EDBF04DE0DDB6C853E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:13:3a:4c:35:1c:ee:59:e6:67:cc:b5:d4:b1:
4b:75:2f:d2:81:c3:b3:09:22:63:1e:e7:02:77:5a:
c7:e4:07:a2:22:8d:fd:13:ba:5d:56:a2:29:62:b9:
3a:9d:3a:59:67:f7:e2:a5:27:98:eb:ac:eb:53:1a:
c8:ba:ab:fe:7b:9a:2e:b2:79:35:be:af:76:f4:de:
94:b4:e5:c5:f4:38:1a:98:9e:13:2f:da:c2:6a:fc:
14:fd:f4:20:0e:47:09:cb:96:5d:71:11:3c:45:f7:
d3:ab:de:3f:cc:44:01:87:7e:74:d7:ac:71:33:46:
29:a4:51:e1:a6:b7:7c:b4:03:24:d2:39:7e:9b:f9:
cb:f3:23:c1:dd:e5:55:51:23:cb:a8:32:ee:94:04:
35:8a:e6:49:a4:97:8d:bc:6f:3a:42:fd:39:f6:06:
56:3f:0b:a4:30:fa:ae:b9:5c:03:ed:eb:2a:39:04:
d6:0d:f3:ca:0f:80:b1:cc:0f:11:49:32:7f:5f:aa:
2d:2b:53:b5:59:8e:be:1a:7b:ed:ac:59:b4:bd:8e:
aa:e9:94:44:57:c2:cf:78:31:0f:6a:b6:f3:3d:12:
b9:07:1d:81:57:d3:75:48:e2:e7:14:e0:3d:81:33:
b7:7c:2e:7e:3b:63:7b:be:a6:9a:37:b3:f2:eb:f4:
66:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4C:72:52:20:C2:8F:94:AF:2B:20:ED:BF:04:DE:0D:DB:6C:85:3E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QUxyUiDCj5SvKyDtvwTeDdtshT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.210.0/24
Signature Algorithm: sha256WithRSAEncryption
88:00:8c:fa:56:97:a7:14:02:08:75:e6:97:ed:73:bf:0c:c4:
45:28:02:3f:e7:bd:9b:c5:80:3f:a2:ae:a6:c4:60:a7:ed:2b:
e1:7b:87:32:b1:fd:52:c8:6f:84:a9:45:2c:ce:b3:be:bc:dc:
85:2c:57:80:0a:63:27:56:03:e1:ee:37:01:13:dc:c3:41:cd:
df:28:67:5e:0e:78:f5:fa:d9:98:f8:04:c0:eb:c1:f6:bf:42:
b7:6b:cc:3b:86:27:04:bb:57:ed:59:c6:6b:27:86:90:c9:98:
55:84:d6:97:6e:a1:2b:76:8c:7b:78:2b:06:04:dd:a1:fd:5b:
97:e6:e2:22:96:53:68:b3:19:50:c6:1f:9c:4d:f8:10:99:ba:
cb:75:96:11:ad:ed:b3:9b:c9:0d:ee:6f:6d:db:e8:ca:6a:e6:
32:7b:4b:5f:3e:cc:2c:41:81:c1:00:64:b9:1a:4d:b9:38:8a:
01:57:1c:ea:f3:f0:4e:09:ff:b6:ae:a8:3d:79:f9:f8:cc:ae:
6e:a3:4b:3f:b8:7b:23:78:ca:56:20:31:88:1f:2a:35:89:1d:
b6:c1:0d:45:a5:f2:a1:68:c3:f1:a1:7f:88:44:7a:c8:a6:c1:
d0:b5:74:cc:9c:3e:36:da:39:43:c5:d1:80:6e:f5:7e:e4:52:
55:56:94:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:33 2025 by rpki-client