Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/himzDphV4JvUDzT85BJMqLedb1U.roa
File: himzDphV4JvUDzT85BJMqLedb1U.roa (raw, json)
Hash identifier: xR5DIg/RpC815SFKjJdqrchwq9QrqBM+Wr7qWf9w3Mo=
Subject key identifier: 86:29:B3:0E:98:55:E0:9B:D4:0F:34:FC:E4:12:4C:A8:B7:9D:6F:55
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B9F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/himzDphV4JvUDzT85BJMqLedb1U.roa
Signing time: Wed 29 Sep 2021 02:46:48 +0000
ROA not before: Wed 29 Sep 2021 02:46:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7071 (0x1b9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8629B30E9855E09BD40F34FCE4124CA8B79D6F55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f2:ea:33:cd:1a:66:3f:26:d5:5c:74:6e:a1:
60:f3:5b:87:95:f3:c7:bf:08:24:6c:d0:33:53:b7:
7c:12:83:cf:6a:c7:a6:ab:f7:1b:3c:b8:31:ef:1f:
ab:77:a4:2f:bb:6f:0b:e2:32:57:b6:32:27:ec:7b:
bc:59:d5:2b:bb:87:e3:e1:4a:6e:f2:95:6b:03:e4:
d4:0a:97:2b:5c:e1:8f:19:46:c9:fb:ce:97:4a:69:
0a:91:44:c0:03:5c:c5:43:34:19:f4:01:84:02:ff:
79:d7:48:51:e6:64:38:8b:f1:03:56:97:b6:da:a2:
b7:3c:d0:2b:22:b3:23:9d:36:fd:6c:8a:07:57:df:
b4:27:e3:b6:dc:d5:5b:db:40:9a:0d:d7:6a:ea:8e:
6f:52:5a:bf:62:91:9d:5f:74:6c:9b:8d:71:9a:40:
6c:64:8c:61:7c:2c:20:a6:2b:c1:ca:41:a5:1f:1d:
24:bf:c0:db:20:e1:f1:30:3f:7f:b3:08:ab:7b:ee:
b7:bc:b8:4c:a5:c3:fa:bb:d2:f0:d0:8c:69:b8:42:
f9:74:a4:01:42:b2:ee:d6:f2:af:3b:f6:10:56:30:
d4:de:f9:4a:a5:1d:a1:ef:9f:8d:46:64:21:c2:e5:
c4:72:4e:0f:5c:9e:31:be:af:55:aa:f4:eb:a8:2a:
39:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:29:B3:0E:98:55:E0:9B:D4:0F:34:FC:E4:12:4C:A8:B7:9D:6F:55
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/himzDphV4JvUDzT85BJMqLedb1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.232.0/22
Signature Algorithm: sha256WithRSAEncryption
66:a9:62:66:13:76:2f:ae:17:16:98:88:75:9c:7e:69:3d:f2:
54:77:7e:f9:81:6e:22:fd:52:64:7f:2b:b8:e0:02:f8:cc:cc:
4e:1a:83:4d:94:ff:e5:83:62:3b:40:fa:0c:48:af:60:1d:88:
cc:b5:8b:be:11:39:d0:ae:e1:ab:54:84:14:3c:a5:d6:0d:af:
3d:a3:cb:22:14:e1:d1:0b:87:fa:ff:c6:a3:0e:c4:57:c5:e4:
03:c8:a5:0f:fb:8e:e0:82:f9:f2:9b:4b:b0:01:d4:c5:e2:c7:
6e:bb:33:67:ab:56:35:2b:f9:60:bd:ca:11:04:46:7a:3c:76:
54:50:9e:00:6e:b3:a6:34:ba:51:aa:03:1f:19:b7:3f:71:55:
f1:64:e7:c4:5e:d8:21:5b:a9:c7:38:d1:53:cd:a9:ce:be:52:
84:5f:13:58:33:64:61:c4:b2:2b:b2:bc:a9:bf:99:72:0e:e2:
33:13:66:6e:f5:e4:6f:31:6c:0a:4b:86:2a:a7:e2:ec:c9:39:
60:70:df:7e:a7:e5:1a:76:e1:3e:c0:e7:ca:78:d9:da:13:9a:
b6:ef:83:9d:8d:11:c9:5d:84:ef:06:45:90:dd:9f:e5:9c:f8:
2e:f7:7f:a9:78:75:a6:2f:e3:b1:74:2e:48:7d:5a:e4:3c:2b:
09:06:85:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:07 2025 by rpki-client