Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hOs7f8rPT62ePk2zYQyNA-U2ug0.roa
File: hOs7f8rPT62ePk2zYQyNA-U2ug0.roa (raw, json)
Hash identifier: V7wOKVGOoCYhlDwNHGmhYXwxyY0JO7hZbEKJmhI6ivc=
Subject key identifier: 84:EB:3B:7F:CA:CF:4F:AD:9E:3E:4D:B3:61:0C:8D:03:E5:36:BA:0D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 285F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hOs7f8rPT62ePk2zYQyNA-U2ug0.roa
Signing time: Fri 01 Sep 2023 10:05:16 +0000
ROA not before: Fri 01 Sep 2023 10:05:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10335 (0x285f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=84EB3B7FCACF4FAD9E3E4DB3610C8D03E536BA0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3d:c3:f0:6e:35:2e:71:d2:eb:4a:60:22:79:
39:59:e8:88:5c:64:f7:bc:02:df:f2:0f:f8:66:d9:
a6:e6:d2:d7:a1:6b:4f:8b:54:75:3a:b5:0b:40:2d:
64:44:7e:9c:a5:b8:62:14:f9:d0:0c:83:2e:f2:ec:
c3:cb:e3:8c:92:86:9e:57:8e:b2:fd:21:85:26:3d:
3c:7e:c7:35:5c:09:a0:e6:ff:04:24:96:b8:3e:1c:
fc:2c:9d:b8:fa:8c:8a:49:64:49:7e:ef:43:0e:12:
fc:5f:c1:3c:47:2d:93:2a:fa:0d:e5:58:87:18:d8:
b2:0f:9c:7f:4a:eb:62:d3:72:32:5b:0f:69:6a:d0:
0e:5d:c5:00:04:01:d1:07:23:9f:02:b3:a4:3e:01:
ca:da:72:28:bf:63:05:9a:d9:20:24:09:c8:b3:fe:
6e:0f:a2:e8:a4:9e:5c:eb:aa:49:31:d3:67:e1:38:
5f:ae:6b:a8:57:97:27:08:4f:d8:14:f2:1e:30:35:
72:ff:53:b7:ac:c6:56:90:42:1a:b5:c0:c0:14:1e:
ca:52:cc:25:f8:65:4d:b9:46:48:d0:f1:17:3b:5e:
6d:38:8e:14:15:99:c2:e1:08:53:12:25:be:af:48:
84:61:83:8f:c4:ab:1b:34:e0:46:b2:7f:7c:d3:d1:
db:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EB:3B:7F:CA:CF:4F:AD:9E:3E:4D:B3:61:0C:8D:03:E5:36:BA:0D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hOs7f8rPT62ePk2zYQyNA-U2ug0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.44.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:b0:23:40:ae:db:8d:05:c7:81:cb:00:4c:76:d8:29:0a:fd:
e2:15:0d:68:96:c9:5d:e7:00:e1:62:1e:1f:1a:a0:a2:50:b8:
9c:4d:9d:33:85:c2:36:00:99:af:2c:51:87:21:1b:fa:03:88:
4c:78:18:4b:cc:c7:16:db:50:0e:d2:76:c3:8e:93:d2:73:b9:
c2:68:a7:ae:56:fa:c3:9c:bd:42:45:55:8f:a8:6c:5f:27:47:
ca:be:ef:31:4d:69:50:17:71:d9:a2:ba:05:27:e5:c0:c2:7d:
9d:bd:aa:c2:93:bd:0f:0e:55:38:37:65:40:ca:4b:6b:97:3c:
6e:b4:6e:87:c3:97:c3:d4:f4:93:a3:59:5c:d9:c6:74:b5:d8:
fe:25:81:04:98:0d:23:bd:5e:91:31:08:79:72:0c:84:f0:42:
41:76:3e:22:18:a1:45:a2:5d:01:12:1c:a3:c3:7d:5f:d7:f0:
1c:ca:3a:34:ab:f2:2c:bc:41:7f:7e:a7:81:4a:9b:68:79:dc:
32:ea:90:be:eb:7d:6b:79:d9:9b:c1:f7:37:9d:90:01:a3:66:
55:e9:1c:fb:55:84:d3:53:f9:b2:90:90:f5:c1:55:92:75:aa:
94:2d:ec:2f:a7:6a:80:5e:5d:e8:19:c9:a7:ca:3f:b0:74:eb:
98:90:2e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:03 2025 by rpki-client