Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W3bEiOg6r7RBx5mPL1OQtrGEHqE.roa
File: W3bEiOg6r7RBx5mPL1OQtrGEHqE.roa (raw, json)
Hash identifier: f7hkFriu66FmigOXBZRfh7KX1fDz43d5dXjBO0dMRv4=
Subject key identifier: 5B:76:C4:88:E8:3A:AF:B4:41:C7:99:8F:2F:53:90:B6:B1:84:1E:A1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AED
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W3bEiOg6r7RBx5mPL1OQtrGEHqE.roa
Signing time: Fri 01 Sep 2023 10:08:27 +0000
ROA not before: Fri 01 Sep 2023 10:08:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10989 (0x2aed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5B76C488E83AAFB441C7998F2F5390B6B1841EA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:af:ea:12:63:c7:3b:33:e6:b5:60:4b:e0:e1:
de:39:4d:1c:be:9e:fe:21:ca:75:de:a8:94:57:31:
5c:f7:c9:06:c3:ba:fe:96:18:1e:ef:1e:af:e4:90:
88:75:d5:56:df:af:47:4a:20:a1:31:65:d9:25:4c:
a5:c7:9b:04:62:2f:9e:5e:61:8d:22:c8:0e:1b:29:
c1:fe:1e:4b:9f:a7:b5:fe:0a:5c:78:76:e1:3b:76:
44:da:c1:1d:18:93:62:59:e3:6d:c5:1e:19:43:21:
f3:a9:ed:43:23:a5:95:cb:dd:08:e7:17:23:84:7f:
25:1f:a5:66:49:97:4e:6f:ce:c0:bb:c4:1a:fd:5f:
90:31:14:d0:f6:29:29:53:aa:46:c0:c2:fe:6c:6f:
d2:3d:6b:11:db:bd:95:36:bb:00:4c:cf:9f:1b:50:
c8:03:b0:5f:e1:41:e1:7b:a7:8b:18:1a:af:33:4e:
6f:a1:59:7a:20:75:89:91:5c:ed:ca:e2:f1:30:9f:
f7:94:5e:96:ef:d2:a1:9d:8c:47:48:95:77:2c:b8:
04:d9:0e:fc:68:08:2b:f8:ce:3c:30:4b:34:85:99:
d9:d1:e7:b4:f4:41:db:9b:df:58:22:4d:38:12:dc:
2c:20:9b:9b:10:0d:87:76:40:d4:47:bb:ae:7a:cf:
47:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:76:C4:88:E8:3A:AF:B4:41:C7:99:8F:2F:53:90:B6:B1:84:1E:A1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W3bEiOg6r7RBx5mPL1OQtrGEHqE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.248.0/21
Signature Algorithm: sha256WithRSAEncryption
79:2f:42:9d:45:5c:48:0f:90:6d:10:41:08:e2:7e:45:35:61:
ad:33:2b:ee:24:31:cd:26:48:4d:cb:d5:0e:f4:9a:09:64:17:
c8:10:d4:1b:ec:66:e7:cc:f4:35:90:e9:d5:c4:d4:88:a3:76:
31:ed:69:c8:a7:dc:bb:c6:50:41:3e:73:61:ff:d1:1d:1c:b3:
3c:8b:e8:9e:86:ff:60:f3:62:90:2e:04:d3:0d:3f:37:e2:ff:
ae:2c:42:7f:29:5b:dd:b2:93:cd:1d:aa:f0:9f:9b:33:9a:d4:
7b:d5:d6:0a:42:48:c1:19:2e:32:79:5c:28:d6:6c:e4:85:c4:
ba:6e:e6:40:6c:e9:a4:1c:84:ed:74:c0:35:1e:f3:c8:65:d7:
68:81:be:bc:c2:9f:77:5d:97:cc:a6:05:5b:ba:64:ca:cb:1c:
ac:6e:63:dd:c7:92:a6:dc:d2:cb:4c:c6:f5:f6:52:a2:64:5c:
f4:d8:31:a4:83:50:3a:26:78:de:b4:46:16:45:a3:5e:b7:c4:
05:e9:f9:ce:c4:06:c0:be:7b:98:d2:21:ca:7d:97:07:ea:bc:
ae:66:50:38:4c:ab:18:64:ee:68:87:6d:44:f8:3e:c4:fb:9f:
33:83:c7:5a:a5:0b:62:75:ba:74:85:7b:73:c7:b1:89:9f:16:
60:24:e5:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:32 2025 by rpki-client