Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa
File: YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa (raw, json)
Hash identifier: Y0z6Zz1BK8YCkybk8qv5gwZDd3JFfjgW9f/DrgPSHuw=
Subject key identifier: 60:E5:12:D2:65:9E:15:86:00:C0:DD:FF:F1:12:9F:B0:93:29:AA:00
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A50
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa
Signing time: Fri 01 Sep 2023 10:07:45 +0000
ROA not before: Fri 01 Sep 2023 10:07:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10832 (0x2a50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=60E512D2659E158600C0DDFFF1129FB09329AA00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:62:0b:d5:62:43:8c:16:f4:39:1f:b8:e9:af:
88:98:e4:ac:c9:44:99:97:9f:0e:e1:ed:e0:30:bd:
14:af:bd:5b:da:a8:08:d0:3e:e8:21:6a:1b:30:0f:
63:44:52:be:8c:23:0a:a9:aa:9c:1b:24:74:95:92:
d6:34:91:4c:c8:51:c0:12:c0:f7:20:38:47:4e:a3:
d2:0e:57:ae:c3:a0:a8:14:5d:86:5d:55:cc:62:0a:
89:33:d9:62:0e:16:be:e9:05:de:88:ff:f5:2e:06:
46:09:0d:29:3c:05:99:4c:a4:30:6c:2c:b1:bf:3e:
08:2e:4c:0e:de:ec:82:25:63:c9:d0:a7:fd:10:7a:
73:f2:15:8d:da:7e:11:e7:13:fe:c9:1c:bc:4c:e5:
a8:0b:b4:e4:9b:fb:96:77:3d:9c:11:7e:7c:91:f4:
3f:05:8d:ef:0b:2b:02:aa:fd:29:f2:87:8d:0a:5d:
97:85:d1:9c:6b:27:3d:a5:c6:ec:b3:a2:be:f0:0c:
72:7d:a7:dc:b9:b1:06:1a:14:65:f2:97:e9:ba:8b:
6e:e2:3e:5b:f4:08:26:b1:c9:5b:a1:23:80:ec:37:
fe:07:34:d3:db:4c:f3:f1:64:ec:1c:c7:ad:5a:70:
1e:a3:e5:c7:c6:10:2f:89:9a:f7:e1:3e:ac:ca:8e:
34:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E5:12:D2:65:9E:15:86:00:C0:DD:FF:F1:12:9F:B0:93:29:AA:00
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.96.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:11:d7:a6:07:a3:e7:22:a7:b1:7c:38:9d:43:c0:cc:ca:02:
23:4d:80:54:6d:13:c7:b8:f9:ce:03:53:10:df:0f:02:04:a5:
f4:2b:1c:83:94:50:a9:1f:c2:c0:e7:e4:3a:b0:0c:c9:3f:38:
48:74:ee:01:18:64:09:7b:87:46:88:09:fc:99:17:77:48:be:
f9:3d:d8:fc:ec:23:23:27:73:87:84:be:ea:fe:4c:69:5a:88:
a3:20:73:07:8b:95:95:67:87:7b:e0:b3:7e:a8:0c:3f:1b:e9:
78:ee:e9:17:92:21:ae:65:b1:f2:26:31:6c:ef:df:e6:91:d2:
31:ae:ef:e9:15:dd:91:73:66:30:a4:d2:65:e2:6f:fb:9f:e3:
e6:0a:56:99:39:35:6e:a8:32:be:3f:48:16:84:27:cf:d7:b6:
15:bb:34:83:70:bb:ba:af:74:b8:a0:04:d4:cb:a6:3b:91:09:
92:52:85:57:4e:ae:12:6c:ce:f8:6b:68:29:33:28:25:17:af:
b2:a8:1c:2b:4e:5d:a3:f6:a4:89:d4:8f:8b:46:e0:95:85:dd:
de:14:11:96:0d:6d:96:28:b7:0e:85:5d:1a:ea:bc:62:31:c5:
83:d0:bb:01:f0:9a:18:d5:b0:e7:d4:72:24:33:cd:f8:ff:27:
cc:f2:52:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:41 2025 by rpki-client