Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gO7N7eQfwRXpOPOLd9l2oP8nlT8.roa
File: gO7N7eQfwRXpOPOLd9l2oP8nlT8.roa (raw, json)
Hash identifier: H3FpTGspZa5rjw3kPT95ETG5uhV88sxrlTed+079JBA=
Subject key identifier: 80:EE:CD:ED:E4:1F:C1:15:E9:38:F3:8B:77:D9:76:A0:FF:27:95:3F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A0C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gO7N7eQfwRXpOPOLd9l2oP8nlT8.roa
Signing time: Fri 01 Sep 2023 10:07:25 +0000
ROA not before: Fri 01 Sep 2023 10:07:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10764 (0x2a0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=80EECDEDE41FC115E938F38B77D976A0FF27953F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:01:b7:80:6d:f2:8b:d1:4b:77:a1:be:b6:57:
a0:fb:1f:33:6b:f1:a7:14:17:83:a4:5f:b9:bc:d4:
05:0e:b9:72:53:46:02:c5:3b:b6:46:93:14:d8:34:
53:c0:0c:81:d0:af:d3:9d:83:73:a9:eb:6c:dc:96:
c0:1b:62:cf:d3:42:fa:95:eb:1f:a4:15:b8:52:f1:
c0:31:e4:58:aa:10:cb:af:a6:b3:3c:5e:35:91:e0:
14:2d:d0:17:20:ed:e0:7a:12:b4:69:9d:78:93:b0:
1e:7f:50:c1:bb:3c:29:40:49:d1:f0:b0:48:08:90:
4c:13:e1:8d:d4:8d:43:45:e0:d8:d0:1b:61:30:8a:
d0:ad:2a:ce:b0:57:e7:3a:d1:6d:93:bd:2e:59:7f:
b9:0d:2e:1b:00:fc:ef:f4:6b:73:5e:ef:54:20:f0:
e5:80:ca:c0:ea:fa:a1:6e:fc:40:30:c5:54:aa:7c:
47:b1:19:d0:27:1a:b0:08:c4:5c:ec:82:c3:cb:a2:
d9:f4:6f:fa:94:9b:4a:7a:36:5b:ba:41:8c:c5:b0:
86:f5:e1:0e:0e:62:4b:b6:e0:2a:95:d5:74:fc:7a:
09:20:9f:2f:0c:59:5f:f5:7c:cc:76:99:35:c1:b8:
4c:e6:a0:92:79:52:22:e5:94:05:12:91:f4:ed:e9:
4c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EE:CD:ED:E4:1F:C1:15:E9:38:F3:8B:77:D9:76:A0:FF:27:95:3F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gO7N7eQfwRXpOPOLd9l2oP8nlT8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.68.0/22
Signature Algorithm: sha256WithRSAEncryption
27:45:3a:c8:ac:af:16:f7:02:66:1b:83:5f:f8:1a:b3:3c:3d:
d1:a7:c0:56:98:f5:96:55:14:c7:30:10:20:7e:dc:c7:59:cb:
aa:2f:7a:36:4d:52:71:32:96:10:10:c0:7f:a1:40:de:c5:2b:
e0:b7:e9:9a:c1:a7:a5:f5:ba:95:d5:da:64:a8:9f:67:5c:2a:
71:5a:f1:28:89:42:09:7c:73:4a:b5:d4:fb:75:40:5a:d8:c3:
a1:b4:7f:56:6b:2a:3d:f4:20:c8:48:7b:57:eb:f0:2f:22:ba:
80:3c:ff:34:09:b7:45:ba:d1:fa:88:06:1f:40:0d:ca:56:0c:
c3:41:22:0e:96:0d:f8:70:3d:0f:c3:f1:aa:23:7f:ae:c8:6b:
ec:d8:32:ff:8c:53:ce:9f:77:9c:61:3e:b7:60:70:c0:c8:85:
9a:79:48:fc:ea:7b:06:d2:79:83:05:3d:29:40:57:96:bf:1f:
7a:bc:85:f0:02:bf:40:3c:e8:97:53:38:d4:cf:9c:74:bd:24:
8f:4b:a2:1f:fb:35:98:90:a8:bf:13:5f:57:c0:59:b9:c1:49:
a2:0d:06:5b:c0:9a:35:03:4b:b7:80:c0:ef:7d:79:9b:a4:6a:
c8:f2:c2:6a:15:4d:1f:ac:dc:0a:7e:98:21:ee:de:15:bb:a0:
95:4f:47:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:26 2025 by rpki-client