Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aaq_rZh7j-1lowZPOB5yBaNe-0w.roa
File: aaq_rZh7j-1lowZPOB5yBaNe-0w.roa (raw, json)
Hash identifier: YqmTkOmfE819NrTXyyyACQ0oNCi49j3aCVVWMV/bkus=
Subject key identifier: 69:AA:BF:AD:98:7B:8F:ED:65:A3:06:4F:38:1E:72:05:A3:5E:FB:4C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 290D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aaq_rZh7j-1lowZPOB5yBaNe-0w.roa
Signing time: Fri 01 Sep 2023 10:06:06 +0000
ROA not before: Fri 01 Sep 2023 10:06:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10509 (0x290d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=69AABFAD987B8FED65A3064F381E7205A35EFB4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:08:38:f9:f4:6b:95:79:7d:99:75:d4:67:43:
7c:c8:fa:6c:9f:ba:16:19:2e:8b:fb:c3:9f:ff:73:
b6:0b:ae:cd:d2:81:84:d4:71:4b:c6:44:cb:3c:aa:
45:3a:07:c7:93:91:41:10:5f:d5:ac:d1:2e:15:de:
74:e0:c1:fc:b3:5a:2f:d8:ac:8a:97:97:81:60:43:
bc:f8:ed:fd:ae:ca:81:27:59:16:dc:f4:06:54:05:
b4:3a:e3:1f:35:2b:8d:4c:4d:07:d8:fb:57:be:51:
a3:20:55:af:67:4d:ba:fa:6b:77:ee:11:c7:91:ee:
5f:fc:3d:b2:49:36:7a:31:0b:bd:86:46:c2:17:55:
60:29:05:d7:e3:0b:db:40:b6:cf:71:1e:0b:d2:9c:
03:31:18:36:cd:0b:dc:cf:a0:2c:1b:6b:f8:25:02:
a0:36:9d:1f:57:da:4a:83:04:44:9c:2f:8f:3d:34:
58:10:27:fb:b9:68:37:0b:1a:44:4d:01:4d:aa:14:
34:34:f8:68:1b:e4:f9:2a:9b:a9:d3:8b:e8:80:63:
8d:76:14:69:07:e0:76:e5:7e:fd:b8:12:82:96:50:
53:6b:7f:10:d4:66:bb:b5:ef:b2:fe:e4:5b:a8:f1:
32:dc:71:18:a2:0f:71:70:49:87:77:b3:bd:6d:4a:
c3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:AA:BF:AD:98:7B:8F:ED:65:A3:06:4F:38:1E:72:05:A3:5E:FB:4C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aaq_rZh7j-1lowZPOB5yBaNe-0w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.88.0/21
Signature Algorithm: sha256WithRSAEncryption
18:18:18:0c:13:1c:d9:9d:a2:ff:9d:80:aa:93:7b:88:5e:22:
c3:8e:36:b9:7e:a7:18:90:49:cc:8c:0e:0a:35:0b:b9:1b:bb:
e9:6d:4f:52:aa:7e:37:b4:bc:20:33:de:1a:a2:39:52:4c:9d:
94:d9:18:06:80:ac:a3:f5:e8:55:6a:1a:c6:ed:f9:64:6e:49:
a0:a0:96:54:3c:6e:d3:77:86:d9:10:72:68:92:7a:80:6f:b0:
8e:07:93:3a:78:74:bb:17:72:85:75:e5:d5:a9:9e:cd:67:0b:
a8:0a:23:66:4d:09:b1:b3:da:8c:71:ef:3e:34:ba:95:a2:50:
b2:48:00:e9:8d:1a:09:7f:f4:39:90:eb:50:28:86:7e:a1:dd:
e1:0d:a0:8c:ca:b6:4c:b9:fc:f9:a9:c4:c6:38:a2:c5:9f:f5:
f4:b3:0a:99:91:d8:d7:a7:27:81:5e:29:4e:52:b9:19:41:70:
a6:31:79:93:43:cc:34:af:a6:14:40:b0:c0:09:10:6f:93:e7:
f7:21:b6:99:a5:96:81:e1:74:65:ad:3d:f6:73:84:90:c8:56:
11:cc:32:24:0d:bb:d4:0a:b4:0e:a6:f8:93:73:aa:b3:ab:f8:
71:b8:e5:e0:bd:3a:11:4f:ad:30:91:76:81:c7:b3:55:07:ee:
51:84:bb:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:27 2025 by rpki-client