Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kzRHSbs4yP0RZ-uBjALFDsgliUA.roa
File: kzRHSbs4yP0RZ-uBjALFDsgliUA.roa (raw, json)
Hash identifier: a7/NlK+W1gjlH5sulYQDyBGWfAHCH5K28F5Ng8r14ws=
Subject key identifier: 93:34:47:49:BB:38:C8:FD:11:67:EB:81:8C:02:C5:0E:C8:25:89:40
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E37
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kzRHSbs4yP0RZ-uBjALFDsgliUA.roa
Signing time: Tue 29 Sep 2020 09:55:29 +0000
ROA not before: Tue 29 Sep 2020 09:55:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3639 (0xe37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=93344749BB38C8FD1167EB818C02C50EC8258940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:32:4e:21:85:c3:46:18:7e:b7:06:f0:ef:39:
be:37:59:64:2c:c3:4c:ef:20:1d:29:9f:e5:40:32:
78:d7:60:c4:19:80:15:86:79:dd:89:9f:9c:71:77:
91:48:9c:92:b5:14:87:07:7f:ad:ec:e6:bb:4b:2f:
0e:23:e4:53:1e:f6:62:65:63:d3:9d:2e:87:4d:bd:
64:7c:7d:e4:4a:7d:34:4c:94:f9:a1:3f:39:89:50:
d4:53:ca:33:9e:10:07:b2:b9:9a:c2:2c:dd:04:5d:
3b:ca:8b:f1:1f:fc:e9:0f:e3:04:b8:37:32:5b:e7:
ad:13:6d:60:e1:31:6c:5e:b1:40:fa:7b:29:81:b4:
7f:3b:52:25:0e:f7:e2:08:d1:93:09:32:44:ea:8e:
13:76:a3:1f:33:a7:73:76:2f:72:2d:54:c4:0c:41:
cd:e5:7b:6b:d1:40:23:d6:1b:fb:96:db:3a:a7:d7:
20:14:25:35:b6:5a:c2:e1:24:c7:bc:f7:8e:98:cb:
e6:99:dc:d9:99:cf:79:33:4d:ce:31:5c:b3:63:ce:
ec:19:3d:d8:d1:46:a1:8c:53:0e:84:b0:46:17:06:
21:8a:85:5d:d4:e1:78:b0:af:49:54:1e:7a:bb:47:
de:a0:a8:af:35:d8:9f:cb:da:32:88:d0:bf:eb:1b:
f2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:34:47:49:BB:38:C8:FD:11:67:EB:81:8C:02:C5:0E:C8:25:89:40
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kzRHSbs4yP0RZ-uBjALFDsgliUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.152.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:67:2b:c2:6f:b9:f6:45:11:5c:87:13:0f:e6:d8:f0:ee:f1:
56:52:51:9c:d5:47:56:d3:e3:9c:8f:5b:53:df:73:17:9d:68:
27:07:70:c5:2b:31:2a:61:49:3d:f3:85:5e:cc:23:32:6c:cc:
b4:cb:2e:26:83:2a:63:8d:74:84:a5:8f:ea:73:1b:e2:ed:87:
15:8a:0d:95:da:40:4d:79:5e:b9:b6:0b:00:fa:b2:fc:bc:55:
4a:d7:e0:b5:2d:84:47:40:95:2a:ce:a0:fe:5e:e1:6c:25:82:
10:ba:63:f4:c6:11:7e:72:b7:ef:58:76:26:d9:f6:97:6f:8f:
02:2a:0f:a5:37:5e:cf:8c:65:ff:b3:a1:66:b5:3e:3d:c8:8d:
bc:67:46:92:9c:ed:ed:c3:80:a0:68:c7:b8:5b:81:23:8f:fb:
78:c5:fb:8a:c7:5a:62:54:c3:b6:70:40:df:ba:dd:db:e2:ee:
03:67:66:9e:6a:9b:ac:fa:00:2f:56:20:45:28:0b:f9:a9:49:
a0:6b:4c:e3:ab:cb:88:a8:8b:5c:af:e3:4b:4d:35:c3:fc:e9:
e1:1e:7f:17:ae:4c:18:7e:a8:64:b5:84:04:db:89:82:cb:69:
8d:c7:22:16:26:20:e8:4b:29:5e:b8:4a:ca:1c:78:ce:20:13:
66:d3:06:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:43 2025 by rpki-client