Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cQk8V4NycPVotDsGB6aGvoCBCOk.roa
File: cQk8V4NycPVotDsGB6aGvoCBCOk.roa (raw, json)
Hash identifier: cHxML/mBQcUe0bPHlj1JaBhwGTFGVVUW9YdQNPGvPh0=
Subject key identifier: 71:09:3C:57:83:72:70:F5:68:B4:3B:06:07:A6:86:BE:80:81:08:E9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1941
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cQk8V4NycPVotDsGB6aGvoCBCOk.roa
Signing time: Sun 07 Feb 2021 13:07:10 +0000
ROA not before: Sun 07 Feb 2021 13:07:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 118.232.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6465 (0x1941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 13:07:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71093C57837270F568B43B0607A686BE808108E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ec:87:58:d9:cb:63:9e:5c:9c:95:0c:98:c9:
66:12:8e:80:5c:81:df:02:28:9c:ff:dc:53:0f:ba:
52:09:61:9b:d9:00:27:83:5e:06:15:81:af:62:51:
d9:0e:12:9b:fa:4d:6b:d3:fe:40:21:4e:25:98:38:
e0:f8:63:b1:06:0a:67:02:f9:7f:7b:bf:5f:1b:b4:
6c:51:d2:df:e5:e0:f0:8f:eb:53:09:59:f6:d8:91:
97:28:98:f3:6a:0e:dd:45:af:39:ae:45:cd:15:4d:
28:fa:8a:d6:8c:95:55:19:a6:fd:9b:f6:a3:5f:b6:
62:9c:68:6c:b8:b1:bc:bc:48:49:99:58:66:2c:b9:
51:b4:ce:ac:b1:70:21:4d:b0:7b:16:6f:a3:8a:39:
d8:1e:ac:7b:45:84:99:ce:ab:6d:16:e7:8e:ec:13:
7c:6a:1b:b6:bd:10:55:02:3b:2e:33:4e:71:1c:70:
c2:0b:58:47:63:85:8c:eb:d4:25:d8:1d:e2:08:31:
f6:33:7d:7e:5a:56:ee:c3:b0:a4:0a:18:cc:25:50:
8a:a1:8d:08:fc:21:6b:6f:d9:89:f7:b4:bd:b0:45:
4f:4d:f8:6f:0e:a4:43:19:57:f1:73:aa:04:50:a7:
5f:41:9f:2c:20:4b:c9:8a:3c:37:a6:b5:e7:55:2f:
b9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:09:3C:57:83:72:70:F5:68:B4:3B:06:07:A6:86:BE:80:81:08:E9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cQk8V4NycPVotDsGB6aGvoCBCOk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.220.0/22
Signature Algorithm: sha256WithRSAEncryption
69:18:91:a6:0f:f6:28:6a:7e:4c:67:62:18:81:74:bb:1e:a2:
cb:ff:2c:ce:ee:3f:5c:6b:46:1b:84:9c:d7:b4:0f:45:3e:8a:
5d:f1:5b:43:81:49:86:2f:78:1c:d5:cd:f3:6a:94:14:41:8b:
50:24:21:67:26:0b:33:5c:f6:7c:1c:e3:c2:75:e6:95:50:9a:
2b:61:44:ce:f6:1d:4d:70:22:23:99:63:bb:1d:19:14:01:9e:
f8:17:7c:e5:76:e2:43:89:d3:57:f1:b8:04:db:a4:ee:04:dc:
c9:85:d9:34:0a:2e:8c:5f:8c:97:8a:8c:59:04:35:f6:2a:cc:
06:c2:40:cc:95:46:77:eb:42:71:e5:b9:46:17:ca:5d:2f:25:
22:58:95:6d:5e:8c:3c:d8:0a:7b:47:1a:65:f5:80:3b:6a:a4:
b7:50:eb:96:2b:48:b4:ed:82:27:60:6c:0e:47:b4:81:fa:94:
e5:02:5f:d5:44:13:88:e0:97:87:82:03:82:35:14:60:b6:5e:
53:d3:11:1e:c0:38:8d:21:15:1b:05:d6:7c:4c:2e:0f:71:0f:
77:9d:be:6e:93:f3:a1:b0:9a:5b:1c:d6:e8:fd:09:a1:a4:b3:
b7:d0:05:21:5e:af:9e:e3:72:55:15:9a:18:d2:ae:ce:6c:c2:
a0:db:3d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:30 2025 by rpki-client