Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RuPJsJss2VLdi6t_bZLV5lN7UWQ.roa
File: RuPJsJss2VLdi6t_bZLV5lN7UWQ.roa (raw, json)
Hash identifier: hghQ3aBxayjMznkTUvkQLCXlVXJyZrgK/utqFeM9Wa0=
Subject key identifier: 46:E3:C9:B0:9B:2C:D9:52:DD:8B:AB:7F:6D:92:D5:E6:53:7B:51:64
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CD1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RuPJsJss2VLdi6t_bZLV5lN7UWQ.roa
Signing time: Wed 29 Sep 2021 02:48:15 +0000
ROA not before: Wed 29 Sep 2021 02:48:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7377 (0x1cd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=46E3C9B09B2CD952DD8BAB7F6D92D5E6537B5164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7f:4f:9a:79:37:67:36:68:93:8c:af:17:87:
33:66:f5:cb:be:b8:e1:d2:b8:3f:c1:7e:2d:c2:6d:
8d:b6:4f:00:b9:8c:ba:84:b3:67:57:73:db:bd:39:
ec:2e:0b:3b:70:12:b8:a3:9f:e2:a7:d3:24:42:7b:
b1:45:1c:c5:e3:ff:3c:84:5b:a3:00:36:fb:6a:d8:
9f:ae:75:e1:f0:17:d1:04:a0:3f:66:2c:54:6a:f1:
86:82:05:e6:53:2a:24:ab:89:bc:5d:98:62:38:79:
e7:cd:00:8d:95:e0:e2:a1:23:d0:e7:dc:7a:ef:0e:
62:38:6e:4f:50:6c:0a:8e:16:59:25:04:a1:6e:dc:
06:30:08:60:a2:6b:b1:5c:89:47:db:ec:b8:87:62:
2f:62:41:59:88:92:7f:2f:c4:e2:a3:1c:5a:81:1b:
0b:45:24:c6:1f:e0:4b:47:af:c3:ea:1b:f5:c2:7f:
ab:d7:21:b8:ac:b7:5a:48:6a:72:0a:c4:0b:35:75:
dc:c5:91:a8:d5:0c:27:f2:cf:b6:d3:db:ff:f0:5a:
e0:18:d7:31:9f:75:2e:a9:8d:f1:8d:ec:eb:24:f5:
ef:93:f2:d1:f6:6a:e6:c7:48:7c:2f:cb:59:61:e0:
3a:39:b2:79:7d:8e:47:f4:d9:a9:78:37:6a:75:3a:
ac:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E3:C9:B0:9B:2C:D9:52:DD:8B:AB:7F:6D:92:D5:E6:53:7B:51:64
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RuPJsJss2VLdi6t_bZLV5lN7UWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.52.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:7a:85:fb:55:8c:79:ed:eb:e9:16:33:0e:f5:41:ef:5f:52:
39:7a:36:82:80:59:95:35:73:04:77:e5:1b:df:16:bb:63:72:
42:9b:4d:38:09:d5:8e:6e:68:a1:00:50:d9:ee:1b:19:4f:d3:
8e:bf:b8:a7:65:bd:8c:18:5e:7c:8f:7d:41:6f:92:38:dd:f0:
f9:0a:06:06:e0:c4:39:46:3f:24:0e:d4:97:81:b5:81:54:61:
e8:21:50:9d:40:dd:63:bf:81:fe:a7:ab:76:86:94:78:59:6e:
3d:6d:9b:cc:39:9c:d2:24:6d:83:22:cc:45:58:1f:02:d9:33:
bc:33:21:0b:e6:3a:1f:1b:30:66:8e:5b:b1:e0:80:10:7f:f7:
e2:02:9f:08:d4:15:47:b3:d2:33:03:0d:f2:e1:28:fc:90:66:
2a:38:e4:62:1e:69:68:42:67:31:59:13:2f:50:fd:b5:dd:4f:
2b:90:c6:44:cc:e7:ec:3a:6d:41:3c:d7:52:ac:61:ef:fe:80:
bc:18:65:28:7f:b8:5f:6b:35:27:1c:36:59:12:1e:91:ae:2a:
3a:a8:e7:ba:35:85:85:5a:44:3a:87:b6:f2:e5:e6:9f:0a:36:
86:56:f1:38:47:b9:8f:f4:64:81:c9:2d:6c:1b:4c:5d:c5:8f:
7e:28:5f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:25 2025 by rpki-client