Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i0XPKvrROt83WDlxUEd7VT_gK3w.roa
File: i0XPKvrROt83WDlxUEd7VT_gK3w.roa (raw, json)
Hash identifier: 3xCojhmgCR8HCOzLi0NziGSgdew5xamBSjqQ2rmwmWw=
Subject key identifier: 8B:45:CF:2A:FA:D1:3A:DF:37:58:39:71:50:47:7B:55:3F:E0:2B:7C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2B0B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i0XPKvrROt83WDlxUEd7VT_gK3w.roa
Signing time: Fri 01 Sep 2023 10:09:47 +0000
ROA not before: Fri 01 Sep 2023 10:09:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 211.76.124.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11019 (0x2b0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:09:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8B45CF2AFAD13ADF3758397150477B553FE02B7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:17:7c:db:71:5e:9e:52:a8:fd:ce:7f:6a:
21:b4:4a:77:3b:af:ff:11:5d:8d:d4:c1:a2:8a:bf:
b0:a9:5e:c0:e9:88:00:26:3b:0a:a1:f9:de:bc:c8:
62:ff:99:cc:c6:4a:27:c2:05:6f:38:70:be:e5:26:
11:d4:e6:d4:89:1c:71:23:00:6f:b8:49:f7:d9:15:
31:f0:e9:cd:75:bf:e1:79:10:65:1b:d3:6e:cf:ab:
44:39:80:aa:de:4f:7f:2d:5c:d2:71:61:25:de:31:
52:5f:30:58:6b:48:f4:01:f7:86:c1:e2:7b:fa:61:
8e:55:fe:95:03:35:99:32:05:62:6c:90:cb:ae:70:
f4:f7:a0:cf:f9:c6:09:c2:10:7d:74:5a:7b:36:31:
4e:30:71:52:b8:57:49:e8:27:3a:3c:72:48:de:83:
8b:4c:e0:92:f7:5c:c1:84:0f:cf:02:d2:f5:0b:3e:
b8:04:de:0e:f2:1b:79:5a:8f:71:99:66:d1:e4:7e:
39:a1:5e:61:06:84:0e:9f:93:97:a8:53:3c:01:9a:
f8:79:93:4c:07:f6:b7:a3:11:83:3c:d9:3c:04:c6:
08:62:bb:fd:89:b1:23:87:49:62:79:5c:b7:73:70:
b6:e0:34:a0:02:c6:b7:7e:a4:60:80:e0:44:de:67:
5b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:45:CF:2A:FA:D1:3A:DF:37:58:39:71:50:47:7B:55:3F:E0:2B:7C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i0XPKvrROt83WDlxUEd7VT_gK3w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.124.128/25
Signature Algorithm: sha256WithRSAEncryption
bb:32:b2:43:7f:b8:59:cc:f4:37:99:03:5a:e4:88:ff:7a:ff:
b8:11:25:e2:14:c5:01:ab:7a:d8:69:08:5f:47:8d:ef:ee:f7:
65:e8:e4:75:04:57:26:ab:ad:98:4f:f7:dd:57:f4:b8:a8:22:
90:f4:36:d1:75:0e:65:c7:4a:ed:8f:dc:9a:ab:bf:e1:16:4d:
6d:a4:b7:73:d0:3f:4a:2a:12:c6:a1:f9:c5:6e:e2:89:d8:da:
e4:fe:e4:7d:a5:be:83:43:b3:4c:67:78:4e:8c:a5:53:09:24:
98:9f:ea:cf:c1:2c:70:b0:3c:15:a7:68:c8:ee:b1:d8:8f:6e:
76:27:bf:f1:f9:3e:96:6f:c2:f4:02:db:b2:05:98:91:5f:69:
bc:5d:2e:fb:f8:e0:db:28:0c:9b:19:0b:8b:b4:54:09:2d:8a:
8c:fe:28:2c:4f:e1:44:25:ec:7b:dd:58:1b:88:ef:3e:48:98:
2d:cf:44:f8:50:75:92:51:e0:c2:d7:63:ef:87:f8:dc:de:c4:
ec:aa:08:f4:62:f3:82:93:b5:99:14:f0:2a:2d:dd:e9:ad:8e:
c0:e1:03:5a:5e:5b:d1:42:65:40:7b:f4:f1:d1:8b:d8:b7:e3:
9c:34:33:93:69:53:c9:55:ee:7e:94:f7:2c:de:d8:4c:01:45:
06:6c:0f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:12 2025 by rpki-client