Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UvOiUp9Ubsj5_7C711IOeAgFYeI.roa
File: UvOiUp9Ubsj5_7C711IOeAgFYeI.roa (raw, json)
Hash identifier: E8qrK/nzXWG9/rb0C5pe+62xEpn6HchMTwEpW19WCFA=
Subject key identifier: 52:F3:A2:52:9F:54:6E:C8:F9:FF:B0:BB:D7:52:0E:78:08:05:61:E2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28BA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UvOiUp9Ubsj5_7C711IOeAgFYeI.roa
Signing time: Fri 01 Sep 2023 10:05:42 +0000
ROA not before: Fri 01 Sep 2023 10:05:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.234.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10426 (0x28ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=52F3A2529F546EC8F9FFB0BBD7520E78080561E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c0:e8:d8:c1:4e:ae:52:12:81:1d:f2:1a:87:
75:64:8e:ad:e2:45:58:53:04:d9:06:d8:b8:de:de:
47:2f:a7:86:13:73:2b:58:f9:4c:0d:4e:7e:a7:c8:
34:fd:6d:23:5c:f4:45:5c:0a:3a:c4:55:42:95:46:
ee:ad:48:3a:50:c0:46:e9:2f:b8:6d:10:03:86:fb:
76:8f:41:15:51:1b:23:e4:d9:55:27:76:c9:44:bd:
f7:fa:06:f0:e6:a4:aa:47:20:b0:db:d6:7a:41:00:
b8:ac:d1:09:c2:24:cf:d8:b0:02:c2:4e:f2:a1:c3:
f0:65:b4:d3:32:37:ce:99:2a:68:a5:5f:74:3e:59:
b4:b0:0e:dc:01:7f:7e:2e:d4:24:84:6c:62:9c:d3:
c5:ba:00:f0:40:c2:d7:b4:a1:7f:2a:eb:de:05:ec:
7d:01:38:79:57:d2:9a:2f:d3:f3:b8:43:ec:0a:e7:
0a:7c:7f:53:fb:7f:b4:30:fb:9f:4f:c1:b1:00:bb:
8b:b8:32:e3:18:a8:8e:b4:de:39:09:4e:0d:63:39:
60:c9:56:44:f2:e8:b5:5f:1a:c8:a9:53:e8:44:b4:
4f:b3:0c:f3:0d:ab:d0:fd:ab:91:3b:f6:d9:0a:c3:
d3:2a:6d:a1:c6:4c:87:b4:73:d4:03:a2:b6:51:d4:
93:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F3:A2:52:9F:54:6E:C8:F9:FF:B0:BB:D7:52:0E:78:08:05:61:E2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UvOiUp9Ubsj5_7C711IOeAgFYeI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.234.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:ab:ae:de:cd:13:d2:86:8f:f6:09:90:54:75:45:bf:00:ae:
15:fa:74:05:2e:a2:6d:4c:64:cc:f7:24:cc:f8:fd:b7:eb:87:
39:66:55:e8:b4:d5:80:2d:ec:ae:a1:80:8b:ed:c3:bd:07:81:
b5:89:57:46:c1:97:2f:d6:2c:4a:74:c2:e6:e1:a3:24:58:1b:
92:27:cb:40:2c:c7:6a:97:48:6a:78:54:bc:07:da:69:6a:b9:
ba:2a:db:b4:f5:f3:30:3f:a6:52:d3:cb:cb:ee:ce:c1:2e:b5:
20:bf:50:b9:0b:e9:af:e4:37:7d:2d:f4:e3:9c:39:f5:74:b7:
e5:6c:6d:6c:61:8b:96:d6:5f:3e:d1:c0:38:56:af:8c:2c:ea:
62:7e:73:1d:6f:43:c7:1d:d3:49:cc:31:e5:33:aa:28:98:11:
bb:28:25:1a:d2:ce:3f:6f:31:65:98:67:86:8a:a1:b2:3a:1b:
84:bb:75:64:60:ba:91:76:1a:e5:78:96:58:93:89:06:e9:38:
38:de:c9:76:95:6d:23:f4:28:90:4f:53:ec:46:4e:8c:cb:1a:
c7:79:c9:2e:03:29:9a:b8:2e:91:2d:08:c0:bc:83:20:ab:80:
57:a0:e2:93:c1:57:89:54:fd:05:b5:e1:df:a8:ff:da:28:36:
ea:3b:56:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:39 2025 by rpki-client