Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d8s_Z5h9SFC5BeybSQnYFT7nPo4.roa
File: d8s_Z5h9SFC5BeybSQnYFT7nPo4.roa (raw, json)
Hash identifier: 0FShBCyeNV9FwKOpEyxOCHJW0UPStB04qum9U7Bq/Cw=
Subject key identifier: 77:CB:3F:67:98:7D:48:50:B9:05:EC:9B:49:09:D8:15:3E:E7:3E:8E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28A6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d8s_Z5h9SFC5BeybSQnYFT7nPo4.roa
Signing time: Fri 01 Sep 2023 10:05:37 +0000
ROA not before: Fri 01 Sep 2023 10:05:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10406 (0x28a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=77CB3F67987D4850B905EC9B4909D8153EE73E8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:43:18:90:69:c2:e5:a5:c5:e2:9e:78:c7:5e:
c5:8e:d0:18:f9:bd:54:fc:4f:cb:66:e5:30:ab:8e:
77:39:b4:59:47:35:74:66:a6:33:11:91:1e:28:86:
fc:70:27:8f:9b:4b:68:e7:bb:d0:33:48:ec:53:64:
5d:7c:d7:6b:74:8e:1e:85:8e:d7:9e:ac:80:b4:2b:
0f:34:7a:e6:99:fd:e5:87:b2:0e:3e:86:26:9d:7f:
5c:b7:97:aa:a6:7f:a6:87:ee:53:47:07:4a:58:36:
f6:62:09:4a:35:34:97:0d:69:c5:73:68:6c:0a:db:
37:85:7f:db:50:83:d3:a6:26:8a:63:38:dc:2b:bd:
66:cc:89:00:01:69:d8:4c:ed:19:a0:65:38:a6:d2:
14:6e:a1:92:d9:34:59:35:b6:1d:01:68:20:84:d3:
80:6d:d3:00:75:7b:fd:76:25:38:18:3b:ab:47:8c:
fa:5c:3b:94:63:1d:54:a1:70:b3:72:b9:fc:46:4b:
74:59:34:14:27:56:fb:a8:09:e5:56:6b:b2:85:4b:
75:d9:0e:9e:6b:56:c5:5b:80:4c:3d:d1:d4:f5:cb:
cb:b8:41:2d:16:0f:80:35:49:87:8e:3e:be:a0:4a:
5d:f6:9c:cd:3c:6d:09:8e:64:0c:a9:8a:45:c5:45:
43:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:CB:3F:67:98:7D:48:50:B9:05:EC:9B:49:09:D8:15:3E:E7:3E:8E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d8s_Z5h9SFC5BeybSQnYFT7nPo4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.128.0/21
Signature Algorithm: sha256WithRSAEncryption
40:5d:97:c3:f2:ef:b0:8e:07:aa:86:da:9a:a7:a0:54:f9:3e:
a7:fd:4c:d4:1f:28:33:59:af:0c:e0:e5:b3:2d:80:ca:01:43:
cc:a0:fc:95:fc:72:9d:dd:89:73:50:a2:6f:97:7b:82:13:e0:
5e:c3:72:a8:1b:00:ce:39:ba:2d:7e:0f:85:5c:63:84:de:57:
3e:f3:a1:49:fb:91:9b:53:c6:2c:23:51:f8:17:c8:72:ed:64:
7d:6b:5b:26:af:6d:f3:f1:32:df:88:be:ff:46:03:d6:f4:c5:
95:00:8c:9b:1c:77:b7:68:26:45:ad:b5:73:8c:6e:6a:e4:af:
95:c6:fb:00:5c:26:15:75:56:10:59:1e:e3:39:d3:c1:f0:df:
6c:7f:9b:5c:a8:76:1e:18:a9:56:9f:34:3f:10:25:8d:07:87:
97:e0:b8:d9:e4:06:90:6c:61:9e:84:b4:5c:5d:54:2c:33:c5:
c7:d4:3f:dd:6e:cf:a6:42:e0:74:0e:49:df:2e:91:e2:11:cd:
24:32:14:0e:d2:7e:1e:b6:41:67:27:c3:b4:19:ac:23:71:aa:
d2:26:f6:d0:9a:4c:0c:f9:40:5b:e9:f7:fd:08:8c:42:19:ec:
d1:b4:57:94:5a:21:24:13:ec:10:b8:f8:f8:51:7b:ba:a6:37:
e5:e2:5a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:47 2025 by rpki-client