Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dTYrx2eLTTOeN5QjZ2oig6nOb9w.roa
File: dTYrx2eLTTOeN5QjZ2oig6nOb9w.roa (raw, json)
Hash identifier: zgtEXVl2s6hm8oqegbJb2CJos//odqbaUOWfOZB/QUE=
Subject key identifier: 75:36:2B:C7:67:8B:4D:33:9E:37:94:23:67:6A:22:83:A9:CE:6F:DC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 168B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dTYrx2eLTTOeN5QjZ2oig6nOb9w.roa
Signing time: Sun 07 Feb 2021 12:12:42 +0000
ROA not before: Sun 07 Feb 2021 12:12:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5771 (0x168b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:12:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=75362BC7678B4D339E379423676A2283A9CE6FDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4d:6f:b1:db:3d:92:a0:57:60:2e:a1:a6:84:
d4:6c:56:7f:b0:43:29:8d:4f:b4:c9:cf:cd:fb:2b:
ba:b5:53:a6:53:d3:76:b4:f7:2f:56:d8:da:ec:58:
5f:b8:81:1b:a1:c9:4c:15:7d:80:f2:9c:91:f7:11:
9c:2d:a0:a0:49:5f:1c:16:17:58:ea:62:d1:8e:ac:
1f:e2:e9:fe:e8:af:f8:1e:70:d2:99:91:91:a9:e2:
48:de:bd:ce:e3:be:34:3c:0f:96:4e:f5:c8:4e:ce:
a6:56:91:d6:77:7e:b6:b2:d7:46:3f:34:b9:c2:9e:
26:b6:cd:50:7e:f9:f9:70:0b:9f:ca:b9:88:5b:81:
dd:3b:07:32:62:ab:0b:05:33:54:a5:a6:47:e6:3a:
72:b9:a2:47:f4:00:a5:fe:cb:3b:80:76:7c:0c:92:
2e:88:9a:08:34:5c:e1:c0:ba:8a:b5:e0:74:e5:dd:
6b:ac:62:f3:65:be:2f:6e:79:3e:c7:50:36:09:e1:
b7:41:62:d3:5f:46:07:e8:13:ca:89:44:87:2c:9d:
69:4f:c3:27:a7:fb:64:8f:6a:61:47:c7:d9:7a:2f:
a3:eb:32:35:66:23:89:43:1e:8c:88:6c:99:70:e8:
12:d7:a8:8f:9d:ad:1c:5a:b7:4c:c5:9b:a5:b7:1f:
52:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:36:2B:C7:67:8B:4D:33:9E:37:94:23:67:6A:22:83:A9:CE:6F:DC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dTYrx2eLTTOeN5QjZ2oig6nOb9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.228.0/22
Signature Algorithm: sha256WithRSAEncryption
39:dd:99:dc:a1:e2:a1:4b:fc:14:8d:0b:cf:97:e9:3b:0a:70:
63:b3:b5:34:be:cf:79:8d:cf:ec:ec:99:2c:2c:ce:01:40:02:
b5:56:65:88:61:a4:7a:64:a0:f8:41:66:05:5a:86:05:67:3c:
4e:17:29:a0:7f:3a:d7:6f:a4:83:e7:ff:79:66:e6:dd:e6:00:
0b:3a:dc:77:05:01:7a:60:de:0d:4c:1f:8e:55:84:3c:05:0a:
31:51:7b:34:98:5d:6e:3d:fe:e6:08:67:08:6f:33:af:48:7c:
4d:c3:f1:d9:06:aa:36:d4:38:f5:89:40:08:be:bd:13:ae:bf:
94:e1:dc:c7:21:61:61:b0:e5:2a:93:ce:b0:11:e4:4b:80:b5:
68:4d:e1:f5:bc:ab:f2:04:ee:cf:c6:37:fc:bf:1a:bc:93:ff:
51:9e:22:c8:8f:c6:08:92:1c:bf:40:6c:92:70:4f:37:25:8c:
82:fa:04:6f:81:05:8a:79:25:eb:e9:a4:1b:55:5d:dc:cc:a9:
02:86:a6:26:17:3a:de:29:8d:dd:ff:7c:ae:f9:88:5e:9f:a2:
6d:03:09:9e:ae:03:1d:a9:7c:45:b7:60:dd:08:8b:95:42:7b:
cf:4e:a2:7b:6b:bc:c2:6f:b0:cc:53:a4:7f:49:25:d8:8d:44:
8c:2f:8f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:55 2025 by rpki-client