Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/glr-_7UKLdevwY1xNtKohqL0bI4.roa
File: glr-_7UKLdevwY1xNtKohqL0bI4.roa (raw, json)
Hash identifier: GNsfxFV44CDnZzD8qPyuHY++M3RDAaT7B4lmxrFSFCg=
Subject key identifier: 82:5A:FE:FF:B5:0A:2D:D7:AF:C1:8D:71:36:D2:A8:86:A2:F4:6C:8E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AE2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/glr-_7UKLdevwY1xNtKohqL0bI4.roa
Signing time: Fri 01 Sep 2023 10:08:24 +0000
ROA not before: Fri 01 Sep 2023 10:08:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10978 (0x2ae2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=825AFEFFB50A2DD7AFC18D7136D2A886A2F46C8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:09:c5:38:29:82:46:f8:34:70:0b:b5:34:b5:
5f:cd:38:b1:4f:a1:4d:1f:d8:46:62:65:e3:f8:1f:
ca:09:71:78:b4:0e:61:8e:18:65:87:a3:da:c4:66:
77:eb:e6:ef:6c:27:fd:be:98:88:5b:94:7d:0a:c8:
b7:bc:41:ad:38:f1:a8:47:ca:8a:db:38:84:67:b3:
a4:f8:e4:38:91:77:f0:13:28:17:9d:e1:20:b9:00:
e5:ce:4f:4a:7d:16:2d:92:9a:51:da:d3:d7:97:32:
7b:4d:63:65:26:f0:22:8b:2f:95:8e:a7:e6:3c:04:
06:7f:cf:fa:5c:0c:c8:f9:47:19:64:ba:c3:a7:66:
59:82:91:f1:f2:a0:b8:bb:4b:22:8e:da:50:1c:7d:
62:b2:a0:c1:94:d9:f1:f2:32:f0:c1:39:3d:2c:13:
54:01:7f:cd:2d:99:b7:55:e8:f8:a3:60:9b:9b:c9:
c8:29:e6:60:77:42:11:76:9b:0a:85:d1:4f:0c:f4:
0d:84:f1:3d:50:d6:40:82:a0:d3:83:8f:0a:38:ae:
29:a3:a6:fd:70:7f:a6:b7:71:ea:b6:79:a2:00:5f:
fb:d4:ea:bb:61:1e:b5:ee:b1:f3:3e:ce:69:a6:62:
23:3c:10:b4:58:e4:15:9f:4a:c7:56:5e:15:96:30:
77:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5A:FE:FF:B5:0A:2D:D7:AF:C1:8D:71:36:D2:A8:86:A2:F4:6C:8E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/glr-_7UKLdevwY1xNtKohqL0bI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.208.0/21
Signature Algorithm: sha256WithRSAEncryption
80:5d:52:09:c9:97:d7:f9:01:1b:de:c7:93:a0:76:38:1b:2c:
79:32:c1:9b:ed:ad:a9:2a:6f:7c:6a:b5:d9:81:24:26:e2:85:
21:94:25:7e:e3:02:bd:60:4d:31:40:47:5a:49:b9:65:0f:8c:
48:a9:7d:4a:37:d7:ad:77:79:8d:4f:f2:21:a5:17:a5:3d:19:
8e:d5:91:78:3a:2d:a3:e5:81:22:3c:af:1f:99:b2:d4:4b:05:
61:74:06:68:00:3a:33:0e:1c:f8:8d:d0:09:85:53:10:88:77:
77:ab:f2:0d:86:84:d3:4b:30:fa:c9:1f:68:80:70:96:b3:f8:
57:b3:27:de:f4:35:eb:e2:90:71:b6:a7:28:a4:6e:8b:d7:22:
fb:19:ff:a1:7c:10:c5:ac:85:1d:17:46:3e:d4:34:f0:df:88:
e7:b4:95:78:bd:d3:0f:10:38:db:d6:8f:6e:ac:9a:26:f2:a1:
97:46:c0:30:e3:c2:40:5d:cc:f2:3e:39:b3:e7:df:83:1e:68:
75:05:7c:ab:0b:76:ab:90:be:46:31:9c:e8:13:f4:1a:25:4f:
59:65:39:13:90:9d:72:d4:df:c0:18:49:25:d5:90:ba:f3:01:
b1:e9:20:92:29:f8:8f:c9:ad:fb:ba:d8:d2:98:3f:08:31:78:
25:11:1e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:33 2025 by rpki-client