Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZAr2XC0lC9PzXeZQ0Ec_V8YXUio.roa
File: ZAr2XC0lC9PzXeZQ0Ec_V8YXUio.roa (raw, json)
Hash identifier: 480rd4914HKb0UWuNVk++Ci1Yop1aSYSHvK284Ey4QE=
Subject key identifier: 64:0A:F6:5C:2D:25:0B:D3:F3:5D:E6:50:D0:47:3F:57:C6:17:52:2A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F2B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZAr2XC0lC9PzXeZQ0Ec_V8YXUio.roa
Signing time: Tue 26 Jul 2022 03:36:39 +0000
ROA not before: Tue 26 Jul 2022 03:36:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.40.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7979 (0x1f2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jul 26 03:36:39 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=640AF65C2D250BD3F35DE650D0473F57C617522A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:42:38:49:5c:bd:c4:e5:12:8e:60:ab:7e:48:
25:8d:9b:84:9e:ff:01:e0:12:cf:09:8f:d0:a7:dc:
8c:99:cc:51:30:71:6d:ed:cb:91:0b:76:c5:7f:7e:
ed:dd:ce:ee:6d:00:ae:cf:76:05:dd:3b:fd:4d:28:
0e:db:c8:35:bd:ab:b6:17:49:d8:34:a8:30:c1:a9:
10:b3:36:89:87:c9:a8:5d:03:db:77:04:49:ff:43:
a0:11:53:45:e3:7a:61:58:fe:29:15:6f:a4:e9:82:
4e:ea:1a:d1:e9:49:9b:81:e3:2c:7b:50:ad:40:77:
88:ae:cf:3a:ce:e0:93:04:8c:e2:eb:fd:68:88:56:
b8:2a:0e:c7:a3:ae:c1:a5:7f:f2:78:d6:93:05:31:
02:1b:e0:85:49:9a:75:d9:cb:1c:02:2e:fc:de:7e:
86:3d:73:28:9a:18:ae:ec:8d:49:71:03:2a:73:16:
2e:f3:e4:1b:80:7d:91:19:e7:b7:7e:8a:8e:55:b9:
27:57:5d:bc:35:7e:f5:8a:9c:66:c5:4f:28:b6:20:
06:8d:16:f4:33:e5:c8:b6:ce:b0:da:af:12:60:4c:
d5:2a:24:08:80:e7:65:fb:eb:11:50:0d:23:66:84:
3d:af:7f:8f:80:12:ab:65:4b:4f:1b:77:73:51:fb:
db:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0A:F6:5C:2D:25:0B:D3:F3:5D:E6:50:D0:47:3F:57:C6:17:52:2A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZAr2XC0lC9PzXeZQ0Ec_V8YXUio.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.40.0/22
Signature Algorithm: sha256WithRSAEncryption
51:0f:a4:56:56:52:91:b4:00:90:79:43:b5:56:c7:73:70:95:
b7:a6:35:d4:34:fe:57:45:3e:fb:72:5a:9d:86:10:3a:b1:c5:
43:f3:d1:58:b4:35:ed:95:64:82:d1:19:10:74:05:35:07:ce:
7b:4f:44:d0:44:29:0f:48:38:03:25:07:4b:42:a4:e1:92:45:
c5:cc:bf:45:d3:9f:b4:8c:f5:78:f9:44:7d:83:f8:9d:96:43:
27:f7:1d:4b:7d:31:82:c9:ce:a8:0b:65:c5:51:7f:0e:a8:2d:
5e:44:d1:73:be:70:a9:e9:8d:8d:66:50:71:30:c4:64:ee:c8:
00:ce:98:e6:e0:df:59:ef:d2:c5:16:bd:73:fc:77:f8:fb:fe:
85:bd:7b:a1:45:ae:32:9d:ca:32:0c:39:19:c9:06:ff:30:b9:
30:ae:a1:2a:9d:19:80:9b:20:3c:3e:39:78:5a:db:15:32:d4:
78:58:de:a1:fa:c7:53:84:df:37:77:c8:99:c2:24:cd:23:bf:
a8:25:a6:70:99:b2:63:5f:bd:60:9d:a3:65:2d:b5:2e:ce:b6:
02:ab:9a:c3:ed:12:d0:a6:05:e9:94:dc:9b:c3:9e:4e:5e:48:
42:b6:bf:18:0d:85:55:12:b4:03:40:ec:78:a5:20:0b:72:d4:
37:fd:c4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:31 2025 by rpki-client