Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QxeBzrOHPavi5RejojxWXBymY_w.roa
File: QxeBzrOHPavi5RejojxWXBymY_w.roa (raw, json)
Hash identifier: mBdwFXRjKk2qfe2I6at5en4P7JEPR3XKlI0Orbs93QQ=
Subject key identifier: 43:17:81:CE:B3:87:3D:AB:E2:E5:17:A3:A2:3C:56:5C:1C:A6:63:FC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21C5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QxeBzrOHPavi5RejojxWXBymY_w.roa
Signing time: Fri 25 Nov 2022 04:40:23 +0000
ROA not before: Fri 25 Nov 2022 04:40:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8645 (0x21c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=431781CEB3873DABE2E517A3A23C565C1CA663FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:32:ba:52:a8:ab:b1:da:10:2d:8c:32:c9:1c:
8c:9a:fb:d8:98:05:a6:a9:c9:82:5c:8f:d6:7b:e4:
8f:46:03:a3:49:4d:ca:c9:30:51:b1:93:a9:1a:5b:
de:0e:e6:8e:8a:34:fb:45:e5:1f:03:d4:d5:30:ba:
0f:40:73:56:5d:46:b6:21:81:6f:0f:b8:a7:18:36:
0e:fa:1f:f6:95:a0:09:0f:64:c8:39:d2:6f:68:4c:
8a:31:bc:69:41:e5:4d:e8:f8:d5:20:b4:28:91:cb:
0e:81:b2:e9:ac:d4:48:81:bb:c7:b1:62:73:bc:77:
65:ad:00:92:ce:79:72:71:6d:79:ea:a6:0e:cc:33:
49:18:af:c3:5b:55:f2:a3:0a:31:48:11:a4:f9:0d:
61:74:9a:eb:ba:d1:23:9e:97:e9:38:9c:ea:ad:58:
12:9c:7b:2e:c4:e5:5e:7a:7e:85:db:5e:28:71:e9:
84:6c:4a:58:4b:61:85:d4:33:ad:99:d6:e4:63:a0:
28:6e:d3:04:37:69:34:fd:30:5d:32:c7:65:3a:63:
a9:53:a6:e7:55:29:28:d1:d1:f6:80:e2:60:07:ce:
5f:3a:b0:ba:22:cc:8b:7e:99:eb:0a:29:85:e6:e4:
4d:90:71:19:3f:98:64:c5:f7:fc:a1:fe:65:68:b5:
1c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:17:81:CE:B3:87:3D:AB:E2:E5:17:A3:A2:3C:56:5C:1C:A6:63:FC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QxeBzrOHPavi5RejojxWXBymY_w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.232.0/22
Signature Algorithm: sha256WithRSAEncryption
62:78:35:9a:ca:84:c3:77:75:90:3a:e5:cd:b3:e1:90:cf:87:
8a:2d:cf:e4:51:34:90:a4:95:79:b9:aa:24:6a:00:b8:cf:e6:
f2:c3:ca:41:8b:47:b9:c4:d6:49:56:85:75:69:90:8e:d2:c3:
bf:29:47:05:2e:6e:79:4f:d7:99:1a:de:ac:0c:8d:99:b6:0b:
99:4c:39:60:7a:36:a5:59:34:88:f1:36:87:4a:92:48:01:6d:
b4:9f:a8:90:8f:ee:be:b5:05:79:dd:f6:1f:ce:22:e7:27:3c:
d3:a6:6a:2f:bd:bb:ba:cb:ee:9f:45:48:5a:54:5c:6f:9b:63:
c0:64:ff:2d:97:95:f7:28:d8:08:d9:38:2a:34:27:b5:99:c2:
8e:13:82:08:6a:65:1c:24:fa:d9:6e:e4:75:b6:93:14:f0:81:
ac:bb:20:dd:d5:cc:f0:88:ab:33:2f:58:89:17:01:24:16:b8:
7a:b6:f2:cc:a0:88:98:3b:a5:c1:2a:8a:34:e2:78:70:39:e7:
39:1a:be:b1:ef:c5:af:f7:d2:67:56:2e:c2:8d:5c:f9:73:42:
bc:05:ce:6d:5a:6a:6c:00:81:4f:0e:20:9b:93:65:58:2c:77:
67:04:9f:0c:61:71:e3:c6:d1:84:2e:48:f6:b0:68:21:28:9f:
93:44:67:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:23 2025 by rpki-client