Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/do5SV5Ze54vKvaRIliBUJm7vnjE.roa
File: do5SV5Ze54vKvaRIliBUJm7vnjE.roa (raw, json)
Hash identifier: s5j/O7fDjDbczRWPkpGgAtknqL9OsuNrQUJ/+vg7hIs=
Subject key identifier: 76:8E:52:57:96:5E:E7:8B:CA:BD:A4:48:96:20:54:26:6E:EF:9E:31
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 13DF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/do5SV5Ze54vKvaRIliBUJm7vnjE.roa
Signing time: Sun 07 Feb 2021 11:56:30 +0000
ROA not before: Sun 07 Feb 2021 11:56:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5087 (0x13df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:56:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=768E5257965EE78BCABDA448962054266EEF9E31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:ad:54:b9:09:99:be:d8:1b:b1:8d:83:e0:
24:a3:7f:3a:f9:38:73:d1:49:24:00:a9:c5:33:2d:
20:b4:7b:7d:43:43:f3:a4:ea:16:cf:a5:8b:79:2b:
c3:71:8a:13:29:06:23:81:2a:c5:3e:70:fa:98:de:
1d:d6:58:db:4b:99:56:66:c8:eb:8e:b5:bd:b6:a3:
52:fc:cd:83:3c:68:5a:59:7b:12:ac:01:be:04:0e:
8e:30:96:d2:bf:6c:45:b0:52:27:78:34:6e:7e:fa:
7d:20:0d:e0:a0:a1:f5:9b:a0:c4:5d:8f:2e:13:24:
ab:65:8a:3f:5f:74:a5:04:3f:71:0a:66:84:bf:0c:
bb:50:10:8e:02:4d:26:a2:b6:4d:33:26:8a:22:31:
d8:2e:29:89:d8:a8:6a:87:2f:97:30:36:5d:36:29:
02:f9:cd:fe:71:b2:2f:bb:d6:a7:0d:30:75:78:60:
fd:15:df:00:09:27:05:76:16:7e:4e:90:1f:9f:5f:
2d:91:74:52:41:a3:bb:82:7e:2c:0c:17:0d:fc:0c:
87:d2:be:1f:85:b6:31:a6:6a:81:08:18:7a:40:1d:
8e:6c:b1:42:a3:5c:1b:9d:af:4c:a3:f4:d9:72:88:
0d:5a:0a:ed:5f:3f:33:ec:6a:f4:76:80:cd:c7:cd:
92:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8E:52:57:96:5E:E7:8B:CA:BD:A4:48:96:20:54:26:6E:EF:9E:31
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/do5SV5Ze54vKvaRIliBUJm7vnjE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.100.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:e6:fd:77:6e:51:c6:b3:1f:25:ae:0c:50:d0:77:71:b4:41:
c6:2f:ab:0e:95:5f:de:29:a3:01:14:3a:e7:8b:48:b2:2b:27:
f9:15:2f:f3:37:6c:f9:50:df:89:6b:e4:6c:d2:f1:e6:48:a2:
94:c1:d1:9d:ae:d9:2b:e7:79:44:32:29:77:0f:b5:00:84:a3:
7d:3c:db:ac:a3:8b:21:57:60:1d:b3:55:71:a6:71:1d:36:c1:
36:86:1b:cb:92:63:e1:fa:f1:e6:95:ea:56:95:50:ba:1d:38:
b7:b6:4a:4b:a3:ce:fa:4d:06:80:96:e8:a9:8f:3a:df:6e:2f:
8b:27:66:4e:5e:b8:08:8c:44:f4:9d:03:d7:09:3c:d9:2c:b1:
f5:32:b2:aa:6d:3d:0e:62:cf:68:33:4a:22:c4:ad:82:ca:93:
ac:04:f6:f1:05:8b:d7:15:12:79:37:b1:66:40:04:b7:ff:24:
2e:47:7d:1e:a9:0f:87:1b:dc:0c:fb:3a:46:88:79:31:9e:69:
2d:d2:a3:d1:ec:3f:83:22:6e:27:82:88:16:2b:f4:d5:b7:8e:
ca:c6:5c:e1:9f:8e:e2:d3:cc:bc:bd:15:5b:32:fb:d6:47:93:
05:a2:c4:72:f4:8f:94:53:4a:66:fd:18:a4:9c:6b:ec:28:17:
6f:96:f3:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:20 2025 by rpki-client