Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UOliDz9RdIQDZZEvThKFiDTJvrY.roa
File: UOliDz9RdIQDZZEvThKFiDTJvrY.roa (raw, json)
Hash identifier: 8hC/Vmb6DykSTKpI3HuPnXWDF8L0XEeNHlS8rG8da7w=
Subject key identifier: 50:E9:62:0F:3F:51:74:84:03:65:91:2F:4E:12:85:88:34:C9:BE:B6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 27BC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UOliDz9RdIQDZZEvThKFiDTJvrY.roa
Signing time: Fri 01 Sep 2023 10:04:29 +0000
ROA not before: Fri 01 Sep 2023 10:04:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10172 (0x27bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=50E9620F3F5174840365912F4E12858834C9BEB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b4:23:1b:d4:9e:ab:ac:fd:5c:26:4e:5a:7a:
e6:ee:cc:85:12:50:75:7a:ef:c8:61:62:71:f0:3f:
1d:ef:d5:da:fb:e2:79:b0:18:60:ad:bc:33:8f:8a:
71:e6:8c:cb:a1:c3:ee:bd:07:8a:0e:2d:c3:1d:cb:
44:da:72:95:c5:ac:c6:8a:7e:a9:12:2d:4e:49:28:
d7:66:3d:b1:c8:60:48:17:6d:cf:67:e8:a9:8f:44:
a9:5c:16:75:59:bc:ec:a7:eb:a3:8c:a9:42:1b:78:
d8:ac:62:eb:57:30:09:eb:7c:64:bf:36:57:5e:6c:
be:2b:00:d5:ab:dd:18:ff:84:d5:c1:9f:22:96:4b:
a7:d2:1c:b0:41:f7:84:05:d9:bc:18:c7:6d:ff:18:
64:32:e7:12:d3:62:07:f4:4a:33:7d:c2:75:b7:7c:
73:08:e6:c9:90:e8:68:cd:f4:41:99:c8:c8:cb:d6:
91:a9:1b:76:0a:73:88:9d:ff:66:d6:75:5d:b5:3c:
3d:01:7e:8f:de:d1:db:66:49:91:fd:95:da:b7:f9:
23:e9:46:83:87:73:2b:4a:e5:cc:f0:f3:d6:4d:1e:
2b:ce:02:75:f2:78:7e:c2:ba:9f:54:d0:a1:ff:ef:
99:b1:fa:c9:e5:07:93:4c:bc:ca:55:8f:b2:ff:b3:
93:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E9:62:0F:3F:51:74:84:03:65:91:2F:4E:12:85:88:34:C9:BE:B6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UOliDz9RdIQDZZEvThKFiDTJvrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.64.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:8f:ab:59:f3:50:11:e4:f5:c1:52:ff:0e:d9:0b:20:09:c9:
59:cb:00:97:af:ea:31:44:dc:f7:45:53:49:29:ca:f2:29:8e:
68:81:25:4f:8f:51:c8:aa:03:9c:2c:f9:dd:f8:ec:65:ea:d5:
a4:05:8c:0b:2d:ad:1f:5c:9d:00:e1:bf:9b:bd:81:be:6c:5a:
9e:03:7e:ad:a7:5b:64:e4:ce:c3:f0:aa:26:16:2b:6e:c8:18:
7a:be:e1:07:70:09:01:2b:c6:df:6c:97:1e:cb:72:46:43:d5:
f5:8f:c4:33:f6:46:6d:f6:cf:7f:cf:14:82:6e:56:a2:47:78:
53:80:78:09:58:b1:eb:91:c9:47:ef:29:24:f4:fd:24:12:44:
59:27:91:4c:56:b4:6a:92:6d:b4:55:5e:48:6b:52:2a:25:59:
6e:8a:f8:eb:8c:05:74:df:14:77:e1:73:06:93:7b:9a:7e:2a:
da:38:f6:a4:40:02:d7:e2:dd:b2:bd:04:55:90:d2:4d:61:ae:
dd:8a:e9:fa:0f:15:4f:42:4d:0b:b2:6a:58:2c:3b:70:40:53:
b9:44:56:40:5a:86:63:a6:3b:27:88:40:31:82:ae:cd:7d:15:
27:e8:11:82:f8:b6:a7:a2:0d:de:4a:3e:28:7b:aa:e1:1b:8d:
45:f3:32:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:03 2025 by rpki-client