Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/c0vnT2D4U6bj70pvwtvLcwLQF3A.roa
File: c0vnT2D4U6bj70pvwtvLcwLQF3A.roa (raw, json)
Hash identifier: SWncjSPBfTTv8SWv69z2EWmUT8vcz02k0el/vG8UC10=
Subject key identifier: 73:4B:E7:4F:60:F8:53:A6:E3:EF:4A:6F:C2:DB:CB:73:02:D0:17:70
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22E6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/c0vnT2D4U6bj70pvwtvLcwLQF3A.roa
Signing time: Fri 25 Nov 2022 04:41:46 +0000
ROA not before: Fri 25 Nov 2022 04:41:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8934 (0x22e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=734BE74F60F853A6E3EF4A6FC2DBCB7302D01770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:79:56:84:93:f5:b6:85:cf:af:0f:84:ef:d6:
5e:2d:2c:14:7a:d1:ef:c1:4a:69:16:8f:a7:28:39:
95:a0:80:61:71:b7:0e:13:26:9b:54:31:25:c7:2f:
c8:b5:46:38:f2:e2:54:6c:44:ca:5b:6b:82:00:ec:
be:d0:73:53:97:12:7a:f7:7e:8a:59:c6:d8:15:8d:
ec:f1:34:7f:9f:da:54:cb:13:b0:67:43:c9:c9:aa:
ce:fc:5e:9b:78:67:30:ec:81:73:b9:95:71:71:58:
d9:08:59:93:ad:53:1d:ec:57:11:30:cd:81:6d:37:
78:8e:7d:e9:48:a8:ca:21:9c:92:42:40:8c:0a:fc:
8d:60:2a:64:f1:17:0c:9e:62:8c:d9:13:f5:cc:5b:
41:11:f8:7c:e0:96:07:4b:b8:57:a2:9e:f5:20:c2:
42:99:fc:1f:3a:c6:0f:0c:cd:7f:b1:c4:38:da:f8:
41:f9:c5:d5:9a:69:b9:3d:9d:b5:ee:d9:5e:07:8c:
81:50:cb:23:83:11:a0:35:c9:aa:83:93:e0:eb:19:
32:81:1a:c4:9d:b7:76:53:44:f9:9c:c5:df:77:36:
48:9b:dd:32:eb:3e:40:77:67:1c:a6:de:3e:46:3e:
54:90:37:44:d2:99:ba:a2:86:2a:9a:99:d6:0e:9a:
a7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4B:E7:4F:60:F8:53:A6:E3:EF:4A:6F:C2:DB:CB:73:02:D0:17:70
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/c0vnT2D4U6bj70pvwtvLcwLQF3A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.160.0/21
Signature Algorithm: sha256WithRSAEncryption
91:47:26:31:f6:23:fe:67:a8:aa:a8:79:27:d3:b8:68:34:5c:
99:c5:aa:db:5f:b4:66:02:6c:bf:f5:40:31:28:07:4c:12:49:
72:2a:24:90:ae:5a:68:32:b2:35:dd:14:f0:8c:8b:44:eb:34:
29:e1:99:94:44:9f:26:7f:70:9b:cd:7d:a5:d4:cc:01:74:d2:
bd:b5:f8:26:06:db:c8:d8:b1:a5:2e:e4:e9:f1:8a:85:bf:1f:
34:15:0b:a3:bf:80:5f:c2:a1:bc:52:ad:03:55:38:03:43:a6:
50:31:a3:2e:9e:42:89:f9:12:15:a3:3f:1a:ab:1b:09:74:ab:
8e:eb:5c:aa:f4:7a:d5:3f:28:cc:53:4a:05:c4:90:7b:80:11:
cd:da:f1:61:59:93:7f:bd:a1:1b:59:12:b9:ee:fe:44:b7:e1:
ac:39:ad:80:9e:2d:80:5a:c0:7c:c7:d3:eb:21:e4:42:a0:67:
00:6b:a9:e7:26:90:81:f7:6e:bd:af:ec:db:b1:80:fb:ba:08:
a8:f6:d7:e9:ba:6d:5d:da:66:b0:0a:08:4a:df:d3:66:99:c7:
6c:e1:7e:54:c3:b8:9a:ca:1d:86:a6:7a:37:3d:13:bb:47:5f:
81:ca:33:54:57:82:af:e8:e4:cf:2f:88:be:44:71:75:36:d3:
7d:71:e5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:20 2025 by rpki-client