Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WEDDxl45Kr2U5oqq0xz6mQM98kc.roa
File: WEDDxl45Kr2U5oqq0xz6mQM98kc.roa (raw, json)
Hash identifier: F90Tv05OIvCFCAqvnOp0HOwmhxdCq6B2jg4FDtxbe+8=
Subject key identifier: 58:40:C3:C6:5E:39:2A:BD:94:E6:8A:AA:D3:1C:FA:99:03:3D:F2:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1767
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WEDDxl45Kr2U5oqq0xz6mQM98kc.roa
Signing time: Sun 07 Feb 2021 12:18:59 +0000
ROA not before: Sun 07 Feb 2021 12:18:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5991 (0x1767)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:18:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5840C3C65E392ABD94E68AAAD31CFA99033DF247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f5:4d:84:05:8a:54:e8:f7:44:8e:03:6a:e6:
2e:08:70:73:1f:0e:e5:6c:64:94:10:f9:4d:73:e6:
dd:31:21:52:a8:ea:a8:9d:0f:1d:50:36:18:32:73:
07:b5:8f:1a:f0:46:24:fc:3e:93:69:61:87:22:cf:
49:0c:f4:74:0e:b7:b7:fe:eb:0d:e4:44:46:d4:8e:
a0:3b:d8:07:71:88:82:ee:2f:a2:11:60:24:80:3a:
ad:10:1e:1c:ed:33:62:ff:a9:8d:b3:14:07:23:3e:
5d:9b:45:39:66:53:d9:b6:8a:5b:1f:a7:4f:66:bd:
88:67:36:07:88:c5:61:2a:3c:9f:47:e0:2a:09:43:
76:b5:0d:41:bb:9f:64:72:d4:a9:e5:9c:a1:6b:12:
e3:ab:37:f4:d6:f5:80:8d:ee:f2:9c:11:35:09:24:
6d:18:3f:cd:fa:b6:ce:f8:54:7e:94:6f:86:63:82:
97:22:1f:ab:e0:3c:0a:5c:0a:cd:dc:0a:90:87:a5:
85:3a:86:97:4f:54:68:43:18:f0:77:e4:16:ff:5a:
a8:80:46:8e:23:51:6e:54:03:ea:92:2d:27:3e:01:
85:71:f3:4a:19:dc:43:52:97:70:41:b7:7d:ed:cd:
dd:9e:29:29:93:bd:d4:d4:59:ef:3d:e7:04:30:8b:
82:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:40:C3:C6:5E:39:2A:BD:94:E6:8A:AA:D3:1C:FA:99:03:3D:F2:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WEDDxl45Kr2U5oqq0xz6mQM98kc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.242.0/23
Signature Algorithm: sha256WithRSAEncryption
78:aa:c4:d0:60:6d:c6:3b:7e:ef:ec:3e:76:27:ab:38:7f:bf:
4e:a7:6a:3e:3f:cf:44:46:ad:b4:40:c0:c5:5f:f9:61:df:d5:
31:34:ac:0e:7a:05:25:cd:2d:76:73:5b:3c:16:ad:84:29:fb:
a7:ca:7c:1e:86:81:5a:4e:81:5b:2a:09:73:56:49:db:44:ff:
d4:5e:91:4d:bb:bc:60:63:f7:84:d4:e4:19:ef:10:fe:68:6a:
9e:f2:33:55:f3:2e:a8:3f:ea:a8:78:5a:a6:2a:2b:09:13:d3:
9d:ae:51:b1:17:7c:f6:a5:1b:92:33:54:a4:c7:80:63:42:95:
08:da:3b:73:a4:88:1d:47:76:fa:97:79:28:4f:a2:5d:35:9f:
17:d0:d8:d9:8c:94:5b:54:eb:cc:82:be:17:14:c6:8b:d9:4e:
a7:b5:4d:4d:f6:2c:d1:fb:22:0b:1c:46:20:e4:50:0d:de:0e:
41:c3:da:fc:f6:88:57:41:0f:6a:dc:e3:62:99:e8:5b:12:de:
43:d8:b3:8d:db:d8:53:a3:0a:7e:a8:d0:45:1a:3f:e2:d5:71:
b0:39:9d:6f:d4:df:be:a8:34:58:f8:1d:0f:b7:44:1f:04:1e:
02:3d:8d:f1:34:73:0e:c1:c6:b6:f4:be:96:34:28:0f:22:ce:
55:0d:34:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:54 2025 by rpki-client